Skip to content
SKU: AWS-SISGOV

$695.00

Security is foundational to AWS. Governance at scale is a new concept for automating cloud governance that can help companies retire manual processes in account management, budget enforcement, and security and compliance. By automating common challenges, companies can scale without inhibiting agility, speed, or innovation. In addition, they can provide decision makers with the visibility, control, and governance necessary to protect sensitive data and systems.

Select a date below

Categories:
Topics:

Dates are listed in Pacific Time Zone

= Guaranteed to run date

Description

Print Friendly, PDF & Email

Overview:

Security is foundational to AWS. Governance at scale is a new concept for automating cloud governance that can help companies retire manual processes in account management, budget enforcement, and security and compliance. By automating common challenges, companies can scale without inhibiting agility, speed, or innovation. In addition, they can provide decision makers with the visibility, control, and governance necessary to protect sensitive data and systems.

In this course, students will learn how to identify and engage opportunities for governance at scale in new and existing AWS environments. Such solutions will enable developer speed and agility, and incorporate preventive and detective controls. As a result, this model will help students provide the right operational capabilities to achieve proper governance. By the end of this course, students will be able to apply governance best practices to a typical organization’s journey and identify opportunities to improve success with AWS.

Course Objectives:

In this course, students will learn to:

  • Establish a landing zone with AWS Control Tower
  • Configure AWS Organizations to create a multi-account environment
  • Implement identity management using AWS Single Sign-On (SSO) users and groups
  • Federate access using AWS SSO
  • Enforce policies using pre-packaged guardrails
  • Centralize logging using AWS CloudTrail and AWS Config
  • Enable cross-account security audits using AWS Identity and Access Management (IAM)
  • Define workflows for provisioning accounts using AWS Service Catalog and AWS Security Hub

Audience:

This course is intended for:

  • Security Engineers
  • Delivery and Implementation Engineers
  • Professional services
  • Cloud Center of Excellence (CCOE)
  • Cloud practice stakeholders

Pre-requisites:

We recommend that attendees of this course have completed the following digital training:

  • Security Fundamentals
  • Security Essentials
  • AWS Cloud Management Assessment (optional)
  • Introduction to AWS Control Tower (optional)
  • Automated Landing Zone (optional)
  • Introduction to AWS Service Catalog (optional)

Outline:

Module 0: Course and Student Introductions

Module 1: Governance at scale

Module 2: Governance Automation

Module 3: Preventive Controls

Lab 1: Deploy Resources on AWS Service Catalog

Module 4: Detective Controls

Lab 2: Taking action with AWS Systems Manager

Lab 3: Compliance and Security Automation w/AWS Config

Module 5: Resources

Additional information

Length

1 day