Udemy
  •  
  •  
  •  
  •  
  •  
  •  
  •  
  •  
  •  
  •  
  •  
  •  
  •  
Development
Web Development Data Science Mobile Development Programming Languages Game Development Database Design & Development Software Testing Software Engineering Software Development Tools No-Code Development
Business
Entrepreneurship Communication Management Sales Business Strategy Operations Project Management Business Law Business Analytics & Intelligence Human Resources Industry E-Commerce Media Real Estate Other Business
Finance & Accounting
Accounting & Bookkeeping Compliance Cryptocurrency & Blockchain Economics Finance Finance Cert & Exam Prep Financial Modeling & Analysis Investing & Trading Money Management Tools Taxes Other Finance & Accounting
IT & Software
IT Certifications Network & Security Hardware Operating Systems & Servers Other IT & Software
Office Productivity
Microsoft Apple Google SAP Oracle Other Office Productivity
Personal Development
Personal Transformation Personal Productivity Leadership Career Development Parenting & Relationships Happiness Esoteric Practices Religion & Spirituality Personal Brand Building Creativity Influence Self Esteem & Confidence Stress Management Memory & Study Skills Motivation Other Personal Development
Design
Web Design Graphic Design & Illustration Design Tools User Experience Design Game Design Design Thinking 3D & Animation Fashion Design Architectural Design Interior Design Other Design
Marketing
Digital Marketing Search Engine Optimization Social Media Marketing Branding Marketing Fundamentals Marketing Analytics & Automation Public Relations Advertising Video & Mobile Marketing Content Marketing Growth Hacking Affiliate Marketing Product Marketing Other Marketing
Lifestyle
Arts & Crafts Beauty & Makeup Esoteric Practices Food & Beverage Gaming Home Improvement Pet Care & Training Travel Other Lifestyle
Photography & Video
Digital Photography Photography Portrait Photography Photography Tools Commercial Photography Video Design Other Photography & Video
Health & Fitness
Fitness General Health Sports Nutrition Yoga Mental Health Dieting Self Defense Safety & First Aid Dance Meditation Other Health & Fitness
Music
Instruments Music Production Music Fundamentals Vocal Music Techniques Music Software Other Music
Teaching & Academics
Engineering Humanities Math Science Online Education Social Science Language Learning Teacher Training Test Prep Other Teaching & Academics
AWS Certification Microsoft Certification AWS Certified Solutions Architect - Associate AWS Certified Cloud Practitioner CompTIA A+ Cisco CCNA Amazon AWS AWS Certified Developer - Associate Microsoft AZ-900
Graphic Design Photoshop Adobe Illustrator Drawing Digital Painting InDesign Canva Design Theory Character Design
Life Coach Training Personal Development Neuro-Linguistic Programming Personal Transformation Life Purpose Mindfulness CBT Meditation Coaching
Web Development JavaScript React CSS Angular Node.Js PHP Django Vue JS
Google Flutter Android Development iOS Development React Native Swift Dart (programming language) Mobile Development Kotlin SwiftUI
Digital Marketing Google Ads (Adwords) Social Media Marketing Marketing Strategy Google Ads (AdWords) Certification Internet Marketing YouTube Marketing Google Analytics Copywriting
Microsoft Power BI SQL Tableau Business Analysis Data Modeling Business Intelligence MySQL Data Analysis Blockchain
Business Fundamentals Entrepreneurship Fundamentals Business Strategy Freelancing Online Business Startup Business Plan Blogging Home Business
Unity Unreal Engine Game Development Fundamentals C# 3D Game Development C++ Mobile Game Development Unreal Engine Blueprints 2D Game Development
30-Day Money-Back Guarantee
IT & Software IT Certifications AWS Certification

AWS Certified Security Specialty 2021

All you need to master AWS Certified Security Specialty certification.
Rating: 4.5 out of 54.5 (4,130 ratings)
23,551 students
Created by Zeal Vora
Last updated 9/2021
English
English [Auto], French [Auto]
30-Day Money-Back Guarantee

What you'll learn

  • Will be prepared to give AWS Certified Security Specialty Exam
  • You will be able to Master the Security aspect of AWS
  • Gain deep insights about Enterprise grade Security implementation.
  • Will be able to detect attacks and protect the AWS infrastructure from Hackers.
Curated for the Udemy Business collection

Requirements

  • Basics of AWS
  • AWS Solutions Architect Associate or Equivalent Knowledge

Description

AWS Certified Security - Specialty certification is one of the widely recognized security certifications across the industry. With the number of security breaches increasing every year, there is a huge demand for individuals who understands the security side of things, specifically Cloud-based Infrastructures.

This course is specially designed for the aspirants who intend to give the AWS Certified Security Specialty 2021 certification as well for those who want to master the security side of AWS.

Throughout the course, we explore various Real World scenarios and look into why do website gets hacked, what could have been done to prevent it, and learn the best practices related to Security for your AWS environment.

Since this is a Specialty level certification, it is very important that the candidate has a prior hands-on experience in AWS, and this also acts as a pre-requisite to this certification. We do start our journey into the security side of things from scratch.

With tons of quizzes in order to prepare you for exams, Real-world scenarios, and great Support from our Instructor in-case of doubts, this course is all you need to master the Security side of AWS and gain the certification.

I look forward to seeing you join us in this exciting journey on AWS Security.

Who this course is for:

  • Those interested in gaining the AWS Security Specialty Certification
  • Those who wants to gain deep security insights related to AWS

Featured review

Joaquin Don S. Barandino
Joaquin Don S. Barandino
33 courses
5 reviews
Rating: 5.0 out of 52 years ago
I did not take the Security Specialty exam yet but I just passed the SA Associate exam today. I used this course to learn more about security since I realized from the practice exams that a lot of it has something to do with security. Spot on, this course has been a very big help. Thanks, Zeal! :)

Course content

7 sections • 237 lectures • 26h 42m total length

  • Understanding AWS Security Specialty exams
    Preview04:48

  • Introduction to Domain 1
    03:18
  • Case Study of Hacked Server
    08:05
  • Dealing with AWS Abuse Notice
    07:28
  • AWS GuardDuty
    10:10
  • Whitelisting Alerts in AWS GuardDuty
    08:32
  • Document - GuardDuty Alert Lists
    00:00
  • Centralized Dashboards for GuardDuty Findings
    05:53
  • Understanding Incident Response Terminology
    12:41
  • Incident Response Use-Cases for Exams
    03:00
  • Use Case - Dealing with Exposed Access Keys
    16:26
  • Use Case - Dealing with compromised EC2 Instances
    05:16
  • Incident Response in Cloud
    11:32
  • Penetration Testing in AWS (New)
    06:56
  • Quiz - Domain 1: Incident Response
    5 questions
  • Notes - Domain 1
    00:10

  • Introduction to Vulnerability, Exploit, Payload
    05:57
  • VEP Practical - Hacking inside a test farm
    08:02
  • Understanding Automated Vulnerability Scanners
    08:23
  • Common Vulnerabilities Exposures & CVSS
    08:38
  • Introduction to AWS Inspector
    06:49
  • AWS Inspector Vulnerability Scans
    10:34
  • AWS Security Hub
    09:19
  • Overview of Layer 7 Firewalls
    06:48
  • Understanding AWS WAF
    13:00
  • Implementing AWS WAF with ALB
    15:53
  • Overview of AWS Systems Manager
    07:42
  • Configure SSM Agent
    06:17
  • Overview of Sessions Manager
    10:03
  • SSM - Run Command
    05:55
  • Overview of Patch Manager
    09:12
  • EC2 Systems Manager - Parameter Store
    06:37
  • Systems Manager Automation
    06:17
  • Systems Manager Inventory
    08:02
  • Creating our First Inventory in SSM
    04:11
  • Overview of Unified CloudWatch Agent
    07:48
  • Unified CloudWatch Agent - Practical
    09:32
  • Document - Unified CloudWatch Agent
    00:11
  • Amazon EventBridge
    09:34
  • AWS Athena
    12:14
  • Athena - Code Samples
    00:15
  • Overview of AWS CloudTrail
    09:28
  • Improved Governance - AWS Config 01
    12:08
  • Improved Governance - AWS Config 02
    14:07
  • Trusted Advisor
    08:47
  • CloudTrail - Log File Integrity Validation
    08:40
  • Document - S3 Log File Validation
    00:02
  • Digest Delivery Times
    02:17
  • Overview of AWS Macie (New)
    08:47
  • Creating our First Alert with AWS Macie (New)
    07:52
  • S3 Event Notification
    08:35
  • Overview of VPC Flow Logs
    12:59
  • VPC Flow Logs In-Detail
    06:11
  • Centralized Logging Architecture
    09:09
  • Cross-Account Logging for CloudTrail and Config
    08:23
  • Document - Centralized Logging Policy
    00:12
  • Overview of Cross-Account Log Data Sharing
    04:09
  • Cross-Account CloudWatch Logs - Part 01
    12:06
  • Cross-Account CloudWatch Logs - Part 02
    12:18
  • Document - Cross Account CloudWatch Logs
    00:35
  • AWS SNS
    08:56
  • Quiz - Domain 2: Logging & Monitoring
    19 questions
  • Notes - Domain 2
    00:00

  • Implementing Bastion Hosts
    11:31
  • Preview05:56
  • Understanding AWS Client VPN Endpoints
    06:57
  • Creating Client VPN Endpoints
    20:46
  • Document - Commands to Setup ClientVPN Endpoint
    00:30
  • Overview of AWS VPN Tunnels
    07:08
  • Using AWS VPN for On-Premise to AWS connectivity
    09:26
  • Configuring first IPSec tunnel with OpenSwan - Part 01
    13:49
  • Document - IPSec Configuration
    00:21
  • Configuring first IPSec tunnel with OpenSwan - Part 02
    04:43
  • VPC Peering
    08:08
  • Overview of VPC Endpoints
    07:11
  • Implementing Gateway VPC Endpoints
    14:20
  • VPC Endpoint Policies
    05:36
  • Overview of Interface VPC Endpoints
    09:03
  • Implementing Interface Endpoints
    07:03
  • Network ACL
    09:17
  • Understanding Stateful vs Stateless Firewalls
    13:48
  • IDS / IPS in AWS
    05:22
  • EBS Architecture & Secure Data Wiping
    13:48
  • Understanding the Content Delivery Networks
    08:10
  • Demo - CloudFront Distribution
    07:52
  • Understanding Edge Locations
    07:47
  • Deploying Cloudfront Distribution - Part 01
    07:22
  • Deploying Cloudfront Distribution - Part 02
    05:23
  • Understanding the Origin Access Identity
    07:02
  • Understanding importance of SNI in TLS protocol
    09:26
  • Overview of CloudFront Signed URLs
    07:18
  • Implementing CloudFront Signed URLs
    07:08
  • Field Level Encryption in CloudFront
    11:48
  • Real World example on DOS Implementation
    08:42
  • AWS Shield
    04:17
  • Mitigating DDOS Attacks
    04:19
  • Document - DDoS References
    00:00
  • Introduction to Application Programming Interface (API)
    15:30
  • Understanding the working of API
    09:54
  • Building Lambda Function for our API
    03:12
  • Building our first API with API Gateway
    07:08
  • Lambda & S3
    06:14
  • EC2 Key-Pair Troubleshooting
    11:03
  • EC2 Tenancy Attribute
    05:58
  • AWS Artifact
    03:23
  • Lambda@Edge
    10:58
  • Lambda@Edge Practical
    06:18
  • AWS Simple Email Service (SES) (New)
    06:25
  • DNS Resolution in VPC
    06:17
  • DNS Query Logging
    09:45
  • Implementing Route53 Query Logging
    04:39
  • Notes - Domain 3
    00:00
  • Quiz - Domain 3: Infrastructure Security
    22 questions

  • Overview of AWS Organizations
    07:06
  • Creating our first AWS Organization & SCP
    05:43
  • Organizational Unit (OU) in AWS organization
    06:14
  • IAM Policy Evaluation Logic
    11:57
  • Identity and Resource Based Policies
    07:53
  • Understanding IAM Policies
    15:25
  • IAM Policies - Part 02
    11:56
  • Delegation - Cross Account Trust - Part 1
    07:17
  • Creating Cross-Account IAM Roles
    08:46
  • Cross Account IAM Policy Document
    00:02
  • External ID in Delegation
    09:35
  • EC2 Instance Meta-Data
    07:50
  • Revising IAM Role
    07:44
  • Understanding working of an IAM role
    04:33
  • IPTABLES & Instance Meta-Data
    05:37
  • Document - Commands
    00:04
  • IAM - Version Element
    10:13
  • IAM Policy Variables
    04:50
  • Document - IAM Policy Variable
    00:02
  • Principal and NotPrincipal Element
    07:32
  • Document - Resource Policy for Principal Element
    00:04
  • Implementing NotPrincipal Element
    03:55
  • Document - NotPrincipal S3 Bucket Policy
    00:03
  • Conditionl Element
    07:23
  • Document - Condition Policy Examples
    00:03
  • AWS Security Token Service
    17:14
  • Understanding Federation - Part 01
    06:30
  • Understanding Federation - Part 02
    08:10
  • Document - ADFS with AWS
    00:00
  • Understanding SAML for SSO
    10:49
  • Overview of AWS Single Sign-On
    06:43
  • Implementing AWS SSO
    08:06
  • Integrating AWS SSO with AWS CLI
    05:05
  • AWS Cognito
    11:57
  • Understanding Active Directory
    04:19
  • Introduction to AWS Directory Service
    08:50
  • Domain Joining EC2 instance with Directory Service
    10:51
  • Document - Joining Linux Instance with SimpleAD
    00:00
  • Trusts in Active Directory
    07:32
  • S3 Bucket Policies
    12:42
  • Bucket Policy Document
    00:08
  • Regaining Access to Locked S3 Bucket
    05:11
  • Bucket Policy Document - Deny Statements
    00:07
  • Cross Account S3 Bucket Configuration
    12:55
  • Document - Cross Account S3 Bucket Policy.
    00:13
  • Canned ACLs
    09:09
  • Document - Canned ACLs Commands
    00:07
  • Understanding Presigned URLs
    09:13
  • S3 Versioning
    09:51
  • S3 - Cross Region Replication
    04:19
  • S3 Object Lock
    08:55
  • MFA Protected API Access
    10:01
  • Document - MFA CLI Commands
    00:07
  • IAM Permission Boundaries
    09:47
  • IAM and S3
    06:42
  • Document - IAM Policies
    00:10
  • Troubleshooting IAM Policies
    01:47
  • Document - Troubleshooting Policies
    00:14
  • Troubleshooting Answers - Solution 01
    04:46
  • Troubleshooting Answers - Solution 02
    05:28
  • Troubleshooting Answers - Solution 03
    04:24
  • Troubleshooting Answers - Solution 04
    01:24
  • Troubleshooting Answers - Solution 05
    03:32
  • Quiz - Domain 4: Identity & Access Management
    13 questions
  • AWS Control Tower
    15:30
  • IAM Service Role and Pass Role
    12:57
  • Document Code - Pass Role Policy
    00:05
  • Notes - Domain 4
    00:00

  • Introduction to Cryptography
    12:14
  • Understanding communication Protocols
    04:46
  • Plain Text vs Encrypted Text Based Protocols
    07:07
  • Understanding the Disk Level encryption schemas
    08:34
  • CloudHSM
    06:36
  • AWS Key Management Service
    09:14
  • AWS Key Management Service - Part 02
    08:20
  • AWS Key Management Service - Part 03
    07:26
  • Overview of Asymmetric Key Encryption
    11:22
  • Asymmetric Keys with KMS
    10:40
  • Document - Asymmetric Encryption Commands
    00:09
  • Digital Signing with KMS
    08:47
  • Document - Digital Signing with KMS Commands
    00:09
  • AWS Key Management Service - Data Key Caching
    09:26
  • AWS Key Management Service - Scheduled CMK Deletion
    03:59
  • AWS Key Management Service - CMK Deletion & EBS Use-Case
    04:51
  • Reducing Risk of Unmanageable CMK
    03:21
  • KMS - Authentication and Access Control
    05:34
  • KMS Policy Evaluation Logic - Use Case Solution - 01
    03:01
  • Document - KMS Use Case 01
    00:19
  • KMS Policy Evaluation Logic - Use Case Solution - 01
    04:25
  • KMS Policy Evaluation Logic - Use Case 02
    01:56
  • Document - KMS Use Case 02
    00:13
  • KMS Policy Evaluation Logic - Use Case Solution - 02
    03:08
  • KMS Policy Evaluation Logic - Use Case - 03
    00:44
  • Document - KMS Use Case 03
    00:13
  • KMS Policy Evaluation Logic - Use Case Solution - 03 (New)
    01:41
  • KMS Grants
    12:08
  • Document - KMS Grants Commands
    00:09
  • Importing Key Material to KMS
    07:45
  • Document - Imported Key Material Commands
    00:05
  • KMS ViaService
    08:20
  • Document - KMS ViaService Policy
    00:09
  • Migrating Encrypted KMS Data Across Regions
    07:32
  • Benefits of CloudHSM over KMS
    02:27
  • S3 Encryption
    13:20
  • Revising Classic Load Balancers
    10:36
  • Overview of Load Balancer Types
    04:58
  • Overview of Application Load Balancer
    07:41
  • Path Based Routing in ALB
    10:46
  • ELB Access Logs
    10:44
  • Revising ELB Listener Configuration
    08:41
  • ELB Listeners - Understanding HTTP vs TCP Listeners
    08:59
  • Understanding AWS Certificate Manager
    05:22
  • Deploying SSL/TLS certificate with ACM
    03:07
  • Configuring ELB with HTTPS for SSL Offloading
    04:54
  • Glacier Vault and Vault Lock
    07:46
  • DynamoDB Encryption
    02:57
  • Overview of AWS Secrets Manager
    05:59
  • RDS Integration with AWS Secrets Manager
    10:07
  • Encryption Context in KMS
    10:37
  • Document - Encrypted Context Commands
    00:13
  • Quiz - Domain 5: Data Protection
    18 questions
  • Notes - Domain 5
    00:00

  • Important Pointers - Domain 1
    07:31
  • Final Exam Practice Test - Domain 1
    8 questions
  • Important Pointers - Domain 2
    10:23
  • Final Exam Practice Test - Domain 2
    29 questions
  • Important Pointers - Domain 3
    11:43
  • Final Exam Practice Test - Domain 3
    35 questions
  • Important Pointers - Domain 4
    09:30
  • Final Exam Practice Test - Domain 4
    21 questions
  • Important Pointers - Domain 5
    12:06
  • Final Exam Practice Test - Domain 5
    33 questions
  • Updated - Important Pointers for Exams
    04:44
  • Updated Practice Tests
    29 questions
  • Notes - Important Pointers for Exams
    00:00

Instructor

Zeal Vora
Premium Instructor
Zeal Vora
  • 4.5 Instructor Rating
  • 40,097 Reviews
  • 192,042 Students
  • 16 Courses

Zeal is one of the renowned Premium Instructor at Udemy. Zeal works primarily as a Cloud Security Consultant and helps organizations re-build their infrastructure with security in mind. With more than 16+ courses and 162,000+ students, he is one of the leading instructors in the field of Cloud & Security.

He can be connected on the Twitter handle @zealvora

Happy Learning! 

  • Udemy Business
  • Teach on Udemy
  • Get the app
  • About us
  • Contact us
  • Careers
  • Blog
  • Help and Support
  • Affiliate
  • Impressum Kontakt
  • Terms
  • Privacy policy
  • Cookie settings
  • Sitemap
Udemy
© 2021 Udemy, Inc.