Practitioner Level

Practical Event-Driven Security with AWS

By Alex Higgins

Secure your application with AWS when moving to the cloud

See Pricing
4 hours
  • 51 Lessons
  • 7 Course Quizzes

About the course

Cloud applications are enabling businesses to move faster than ever, and with that comes a growing demand for security solutions that are able to keep up.

This course will introduce you to AWS services that are used to monitor and report on application and infrastructure events, detect changes to infrastructure, and send required notifications. Through the learnings from this course, you can finally rest assured that your application is secure in the cloud.

In this course you’ll learn to:

  • Understand and use AWS CloudTrail, including how to consolidate all logs in a central account.
  • Gain an understanding of AWS Config and write custom rules using AWS Lambda.
  • Configure CloudWatch to set up notifications on alarms, and secure VPCs with flow logs.
  • Set up AWS WAF to secure your CloudFront and API Gateway distributions.
  • Set up the official CIS Quickstart in your AWS account to ensure you follow best practices.

This course is made for developers wanting to understand how to secure their applications and security architects interested in how to remain secure when moving to the cloud. We recommend that you have some basic knowledge of AWS services, including Lambda and VPCs before getting started with this course. Additionally, some JavaScript knowledge will be helpful as we have used JavaScript for a few custom security Lambdas.

Contact SalesSee Pricing
  • Chapter 1 2 Lessons Course Introduction 3:35

    Introduction to Event-driven Security

    2:41

    A Note About Demo Lessons

    0:54
  • Chapter 2 8 Lessons CloudTrail 58:05

    CloudTrail Overview

    1:00

    Introduction

    4:13

    Setting Up CloudTrail

    6:30

    Querying Events

    9:59

    Athena Queries

    8:14

    Cross Account CloudTrail

    12:04

    CloudTrail Summary

    1:05

    Chapter 2 Quiz

    15:00 Quiz
  • Chapter 3 8 Lessons CloudWatch 58:58

    CloudWatch Overview

    1:14

    Introduction

    3:52

    Events

    10:51

    Auto-Remediation

    9:30

    Metrics and Alarms

    10:13

    CloudWatch Dashboards

    6:38

    CloudWatch Summary

    1:40

    Chapter 3 Quiz

    15:00 Quiz
  • Chapter 4 8 Lessons GuardDuty Overview 46:10

    GuardDuty Overview

    0:52

    Introduction

    4:06

    Configuring GuardDuty

    5:53

    Trusted IPs

    7:19

    Monitoring With CloudWatch

    5:06

    Multi-Account Configuration

    6:48

    GuardDuty Summary

    1:06

    Chapter 4 Quiz

    15:00 Quiz
  • Chapter 5 8 Lessons Macie 48:46

    Macie Overview

    1:18

    Introduction

    5:24

    Basic Configuration

    5:16

    Compliance Dashboard

    7:06

    Queries

    6:47

    Notifications

    6:24

    Macie Summary

    1:31

    Chapter 5 Quiz

    15:00 Quiz
  • Chapter 6 8 Lessons AWS Config 55:30

    AWS Config Overview

    1:07

    Introduction

    4:54

    Basic Configuration

    6:36

    Custom Rules

    12:17

    Auto Remediation

    7:11

    Aggregating Results

    7:15

    Summary

    1:10

    Chapter 6 Quiz

    15:00 Quiz
  • Chapter 7 7 Lessons WAF 42:52

    WAF Overview

    1:16

    Introduction

    3:14

    Setting Up Cloudfront

    7:05

    WAF Configuration

    8:58

    Real Time Alerts

    5:52

    Summary

    1:27

    Chapter 7 Quiz

    15:00 Quiz
  • Chapter 8 8 Lessons Security Hub 37:57

    Security Hub Overview

    0:47

    Security Hub Introduction

    1:37

    Security Baselines

    4:31

    CIS Benchmarks

    5:18

    Setting Up Security Hub

    4:56

    Security Hub Integrations

    4:30

    security-hub-summary

    1:18

    Chapter 8 Quiz

    15:00 Quiz
  • Chapter 9 1 Lesson Course Conclusion 1:39

    Course Conclusion

    1:39

What you will need

  • An understanding of the cloud or experience working with the cloud.

  • Understanding of VPC's and Subnets.

  • Beginner JavaScript understanding is recommended.

  • AWS Certified Solutions Architect - Associate (not required but highly suggested).

  • JavaScript experience with custom AWS Config rules.

What you can expect

  • An understanding of AWS CloudTrail, including how to consolidate all logs in a central account.

  • An understanding of AWS Config, including writing custom rules using AWS Lambda.

  • Learn how to configure CloudWatch, including sending out notifications on alarms and securing VPC's with flow logs.

  • Learn how to set up AWS WAF to secure your CloudFront and API Gateway distributions

  • Learn how to set up the official CIS Quickstart in your AWS account to ensure you follow best practices.

Practice alongside courses in Cloud Playground

What is Cloud Playground? Cloud Playground lets you build skills in real-world AWS, Google Cloud, and Azure environments. Spin up risk-free Sandboxes, Servers and Terminals and follow along with courses, test a new idea or prepare for exams.

Get Started
Who’s going to be learning?
MyselfMy Organization
Sign In
Welcome Back!

Psst…this one if you’ve been moved to ACG!

Don't have an account?