LearnNowOnline

Learn your way! Get started

SCS-C01: AWS Certified Security Specialist, Part 3 of 6: Infrastructure and Security

with expert Zeal Vora

Watch trailer

Course at a glance

Included in these subscriptions:

  • Dev & IT Pro Video
  • Dev & IT Pro Power Pack
Release date 8/11/2022
Level Intermediate
Runtime 6h 30m
Closed captioning N/A
Transcript N/A
eBooks / courseware N/A
Hands-on labs N/A
Sample code Included
Exams N/A
Enterprise Solutions

Need reporting, custom learning tracks, or SCORM? Learn More

Course description

Amazon Web Services Certified Security Specialty is an exam intended to validate an individuals experience in a security role. This course covers Domain 3 Infrastructure Security which counts for 26% of the exam.

Prerequisites

two years of hands-on experience securing AWS and 5 years or more in IT security experience designing and implementing security solutions.

Meet the expert

Zeal works primarily as a Cloud Security Consultant guiding organizations to re-build their infrastructure with security in mind. Zeal also holds more then 13+ certifications ranging from RedHat Certified Architect to AWS Security.

Course outline

Module 7

Bastion Host (47:44)
  • Introduction (00:08)
  • Bastion Host NE (14:32)
  • VPN (05:45)
  • AWS Client VPN (06:43)
  • Demo: ClientVPN (20:27)
  • Summary (00:08)
Site to Site Tunnel (27:57)
  • Introduction (00:08)
  • Site to Site Tunnel (07:02)
  • VPC Peering (08:00)
  • Egress Only IGW (05:32)
  • VPC Endpoints (07:05)
  • Summary (00:08)
Gateway VPC Endpoints (20:17)
  • Introduction (00:08)
  • Gateway VPC Endpoints (14:14)
  • VPC Endpoint Policies (05:46)
  • Summary (00:08)

Module 8

Interface Endpoints (21:45)
  • Introduction (00:08)
  • Interface Endpoints (09:00)
  • Demo: Interface Endpoints (06:55)
  • VPC Endpoint Policies (05:33)
  • Summary (00:08)
Network ACL (34:51)
  • Introduction (00:08)
  • What is NACL (09:40)
  • NACL Rule Ordering (13:00)
  • Stateful vs Stateless Firewalls (11:55)
  • Summary (00:08)
IDS and IPS in AWS (34:59)
  • Introduction (00:08)
  • IDS and IPS in AWS (05:15)
  • EBS-Architecture (13:48)
  • Intro to CDN (08:02)
  • Demo Cloudfront (07:37)
  • Summary (00:08)

Module 9

Edge Locations (45:14)
  • Introduction (00:08)
  • Edge Locations (07:47)
  • Demo: CloudFront (08:37)
  • CloudFront OAI (07:04)
  • CloudFront Signed URLs (09:52)
  • Field Level Encryption CloudFront (11:37)
  • Summary (00:08)
DOS Attack (16:53)
  • Introduction (00:08)
  • DOS attack demo (08:20)
  • AWS Shield (04:05)
  • Mitigating DDoS (04:11)
  • Summary (00:08)
Introduction to API (35:22)
  • Introduction (00:08)
  • Introduction to API (15:13)
  • How API works (09:33)
  • Building Function (03:11)
  • Building API with API Gateway (07:08)
  • Summary (00:08)

Module 10

Lambda and S3 (23:29)
  • Introduction (00:08)
  • Lambda and S3 (05:43)
  • EC2 Key-Pair Troubleshooting (09:07)
  • EC2 Tenancy (05:36)
  • AWS Artifact (02:45)
  • Summary (00:08)
Lambda@Edge (23:38)
  • Introduction (00:08)
  • Lambda@Edge (10:49)
  • Demo: Lambda@Edge (06:18)
  • AWS Simple Email Service (06:15)
  • Summary (00:08)
DNS Attributes in VPC (21:08)
  • Introduction (00:08)
  • DNS Support in VPC (06:42)
  • Route53 Query Logging (09:39)
  • Demo: Route53 Query Logging (04:30)
  • Summary (00:08)
Step Function (37:06)
  • Introduction (00:08)
  • Step Function (07:06)
  • Network Firewall Overview (08:53)
  • Demo: Network Firewall (20:50)
  • Summary (00:08)