Ultimate AWS Certified Security Specialty [NEW 2023] SCS-C01

February 21, 2023 Courses
Ultimate AWS Certified Security Specialty [NEW 2023] SCS-C01

English | MP4 | AVC 1280×720 | AAC 44KHz 2ch | 218 lectures (13h 45m) | 4.61 GB

Become AWS Certified Security Specialty certified. Full Amazon Web Services Security deep-dive training for SCS-C01

Welcome! I’m here to help you prepare and PASS the newest AWS Certified Security Specialty exam.

The course is MOSTLY SLIDES-BASED: If you’re new to AWS, just finished AWS Certified Solutions Architect Associate and need to acquire some hands-on experience, I strongly recommend doing the following courses: AWS Certified Developer Associate, AWS Certified SysOps Administrator Associate, AWS Certified DevOps Engineer.

Expert course – you MUST have AT LEAST the AWS Certified Solutions Architect Associate: a lot of pre-requisite knowledge is assumed for that course. If you don’t feel confident, please review the AWS Certified Solutions Architect Associate course first. Other certifications and extra-hands on experience is a huge plus.

This course is FAST-PACED: You must be ready to learn fast. I will not waste time over some basics. The slides are downloadable. I advise you to use the slides for some offline review after your session. I also recommend to not hesitate to go over some lectures you might have not understood fully.

NO PRACTICE EXAM INCLUDED: This course does not contain a practice exam. Please enroll in a separate course for that. This course focuses on teaching you the knowledge to ace the exam.

The AWS Certified Security Specialty certification is a fun certification and a challenging exam. It requires some substantial hands-on and real-world experience for you to pass. This course is going to help you solidify the knowledge you already have and put it in perspective through the study of various solutions architectures and services.

With the right dedication and thanks to this course, you should be prepared for your exam and maximize your chances of passing your AWS Certified Security Specialty certification!

Table of Contents

Important Course Information
1 Important Course Information
2 Note Other Courses Abbreviations

Code and Slides Download
3 Course Learning Contest
4 Code and Slides Download

Domain 1 – Incident Response
5 [CCPSAA] GuardDuty Overview
6 GuardDuty – Advanced
7 [CCP] Security Hub Overview
8 Security Hub – Advanced
9 [CCP] Detective Overview
10 Detective – Architectures
11 [CCPSOA] Penetration Testing on AWS
12 Compromised AWS Resources
13 Compromised AWS Credentials
14 EC2 Key Pairs & Remediating Exposed EC2 Key Paris
15 EC2 Instance Connect
16 EC2 Serial Console
17 Lost EC2 Key Pair – Linux
18 Lost EC2 Key Pair – Windows
19 EC2 Rescue Tool for Linux & Windows
20 AWS Acceptable Use Policy (AUP)
21 AWS Abuse Report

Domain 2 – Logging and Monitoring
22 Definitions & Terms
23 [CCPSAASOA] Amazon Inspector
24 [SOADOP] Amazon Inspector Hands On
25 [SOA] Logging in AWS for security and compliance
26 [SOA] Systems Manager Overview
27 [SOA] Start EC2 Instances with SSM Agent
28 [SOA] AWS Tags & SSM Resource Groups
29 [SOA] SSM Documents & SSM Run Command
30 [SOA] SSM Automations
31 [SAADVASOA] SSM Parameter Store Overview
32 [SAADVASOA] SSM Parameter Store Hands On (CLI)
33 [SOA] SSM Inventory & State Manager
34 [SOA] SSM Patch Manager and Maintenance Windows
35 [SOA] SSM Patch Manager and Maintenance Windows – Hands On
36 [SOA] SSM Session Manager Overview
37 [SOA] SSM Session Manager Hands On
38 [SOA] SSM Cleanup
39 [SOA] CloudWatch – Unified CloudWatch Agent – Overview
40 [SOADOP] CloudWatch – Unified CloudWatch Agent – Hands On
41 CloudWatch Unified Agent – Troubleshooting
42 [SAADVASOA] CloudWatch Logs
43 [SAADVASOA] CloudWatch Logs Hands On
44 [SAADVASOA] CloudWatch Alarms
45 [SAADVASOA] CloudWatch Alarms Hands On
46 CloudWatch Contributor Insights
47 [SAADVASOA] Amazon EventBridge
48 [SAADVASOA] Amazon EventBridge – Hands On
49 [SAASOA] Amazon Athena
50 [SAASOA] Amazon Athena – Hands On
51 Amazon Athena – Troubleshooting
52 [SAASOA] AWS Config
53 [SAASOA] AWS Config – Hands On
54 AWS Config – Use Cases
55 [CCPSAASOA] Trusted Advisor + Hands On
56 [SAA] CloudTrail
57 [CCPSAADVASOA] CloudTrail Hands On
58 [SOA] CloudTrail for SysOps
59 CloudTrail to CloudWatch Metrics Filter – Example
60 Monitoring Account Activity
61 [CCPSAASOA] Macie
62 Macie – Advanced
63 [SAADVASOA] S3 Event Notifications
64 [SAADVASOA] S3 Event Notifications – Hands On
65 [SAASOA] VPC Flow Logs
66 [SAASOA] VPC Flow Logs Hands On
67 VPC Flow Logs – Advanced
68 [SAASOA] VPC Traffic Mirroring
69 VPC Traffic Mirroring – Architectures
70 [SAA] OpenSearch
71 OpenSearch – Advanced
72 Audit Manager

Domain 3 – Infrastructure Security
73 [SAASOA] Bastion Host
74 [SAASOA] Bastion Host – Hands On
75 [SAASOA] Site to Site VPN
76 [SAASOA] Site to Site VPN – Hands On
77 [CCP] Client VPN
78 Client VPN – Client Authentication Types
79 [SAASOA] VPC Peering
80 [SAASOA] VPC Peering – Hands On
81 [SOA] DNS Resolution Options in VPC
82 [SOA] DNS Resolution Options in VPC – Hands On
83 VPC Endpoints – Overview
84 VPC Endpoint Policies
85 VPC Endpoint – Examples
86 [SOA] PrivateLink
87 [SOA] PrivateLink – Hands On
88 [SAASOA] NACL & Security Groups
89 [SAASOA] NACL & Security Groups – Hands On
90 Security Groups Outbound Rules & Managed Prefixes
91 [CCPSAADVASOA] CloudFront Overview
92 [CCPSAADVASOA] CloudFront Hands On
93 [SAADVASOA] CloudFront – Geo Restriction
94 [DVA] CloudFront – Signed URL & Cookies
95 [DVA] CloudFront – Signed URL & Cookies – Hands On
96 [DVA] CloudFront – Field Level Encryption
97 CloudFront – Origin Access Control and Origin Access Identity (OAC & OAI)
98 CloudFront – Other
99 WAF
100 [SAA] Shield
101 [SAA] AWS Firewall Manager
102 [SAA] WAF & Shield – Hands On
103 AWS Shield Advanced – Metrics
104 [SAA] DDoS Attack Protection
105 [SAADVA] API Gateway
106 [SAADVA] API Gateway – Hands On
107 API Gateway – Advanced
108 [CCPSOA] AWS Artifact
109 Route 53 – Query Logging
110 Route 53 DNSSEC
111 [SAASOA] AWS Network Firewall
112 AWS Network Firewall – Advanced
113 Amazon SES

Domain 4 – Identity & Access Management
114 IAM Policies in Depth
115 IAM Condition Operators
116 IAM Global condition context keys
117 IAM Permission Boundaries
118 IAM Policy Evaluation Logic
119 Identity-Based Policies vs. Resource-Based Policies
120 ABAC (Attribute based access control)
121 IAM MFA
122 IAM Credentials Report
123 IAM Roles and PassRole to Services
124 [SOA] STS Overview
125 STS Version 1 & Version 2
126 STS External ID
127 STS – Revoking IAM Role Temporary Security Credentials
128 [SAASOA] Organizations
129 [CCPSAASOA] Organizations – Hands On
130 [SOA] AWS Organizations – IAM Policies & Tag Policies
131 Sample SCP
132 EC2 Instance Metadata Overview
133 EC2 Instance Metadata – IMDSv1 vs IMDSv2
134 S3 – Authorization Evaluation Process
135 S3 – Cross Account Access and Canned ACL
136 S3 – Samples S3 Bucket Policies
137 S3 – VPC Endpoint Strategy
138 S3 – Regain Access to Locked S3 Bucket
139 S3 – Block Public Access Settings
140 [SAADVASOA] S3 Access Points
141 [SOA] S3 Access Points – Hands On
142 [SOA] S3 Multi-Region Access Points
143 [SOA] S3 Multi-Region Access Points – Hands On
144 [SAASOA] S3 Object Lock & Glacier Vault Lock
145 [SAADVASOA] S3 CORS
146 [SAADVASOA] S3 CORS – Hands On
147 [DVASOA] Cognito User Pools
148 [DVASOA] Cognito Identity Pools
149 Cognito User Pool User Groups
150 Identity Federation & Cognito
151 [SAASOA] AWS IAM Identity Center
152 AWS Directory Services
153 AWS Control Tower

Domain 5 – Data Protection
154 [SAADVASOA] Encryption 101
155 CloudHSM
156 CloudHSM – Advanced
157 KMS
158 [SAA] KMS Multi Region Key
159 [DVA] KMS Envelope Encryption
160 [SOA] KMS Key Rotation
161 KMS Key Deletion
162 KMS Key Policies Deep Dive
163 KMS Grants
164 KMS Condition Keys
165 KMS Key Policies Evaluation Process
166 KMS Key Cross-Account Access
167 KMS Asymmetric Encryption
168 KMS API Calls Limits and Data Key Caching
169 KMS with EBS
170 KMS with ABAC
171 KMS with Parameter Store
172 [SAA] Secrets Manager
173 [SAA] Secrets Manager – Hands On
174 Secrets Manager – Advanced
175 [SAADVASOA] S3 Encryption
176 S3 Encryption Summary
177 [SAADVASOA] S3 Default Encryption
178 S3 Bucket Policies Examples
179 [DVA] S3 Bucket Key
180 Large File Upload to S3 with KMS Key
181 S3 Batch Encryption
182 [CCP] Elastic Load Balancing Overview
183 [SAADVASOA] Network Load Balancer Overview
184 Network Load Balancer Advanced
185 [SAADVASOA] ELB Sticky Sessions
186 [SAADVASOA] ELB SSL Certificates
187 ELB – SSL Certificates – Advanced
188 Network Load Balancer – TLS Listeners
189 AWS Certificate Manager (ACM)
190 [DVASOA] AWS Certificate Manager (ACM) – Hands On
191 ACM – Advanced

Other Services
192 [SAASOA] Direct Connect
193 [SAASOA] Direct Connect + S2S VPN
194 [SAADVA] Elastic Container Registry (ECR)
195 ECR Security
196 ECS Secret Management
197 EKS Concepts
198 Lambda Security
199 [DVA] Lambda in VPC
200 AWS Signer
201 [SAA] Glue Overview
202 Glue Security
203 Workspaces Security
204 ASG Instance Refresh
205 EBS – Data Volume Wiping
206 CloudShell
207 RDS & Aurora Security
208 IoT Core Security
209 [CCPSOA] EC2 Image Builder
210 EC2 Image Builder – Troubleshooting
211 Redshift Security

Exam Preparation
212 State of Learning Checkpoint – AWS Certified Security Specialty
213 Exam Signup
214 Save 50% on your AWS Exam Cost
215 Get an Extra 30 Minutes on your AWS Exam – Non Native English Speakers only

Congratulations – AWS Certified Security Specialty
216 Congratulations – AWS Certified Security Specialty
217 THANK YOU!
218 Bonus Lecture

Homepage

Resolve the captcha to access the links!