Amazon

AWS Certified Security - Specialty

(AWS-SCS02.AE1)
Lessons
Lab
TestPrep
AI Tutor (Add-on)
Get A Free Trial

Skills You’ll Get

Download Course Outline

1

Introduction

  • What Does This Course Cover?
  • AWS Certified Security Study Guide—Specialty (SCS-C02) Exam Objectives
  • Objective Map
2

Security Fundamentals

  • Understanding Security
  • Basic Security Concepts
  • Foundational Networking Concepts
  • Main Classes of Attacks
  • Risk Management
  • Well-Known Security Frameworks and Models
  • Summary
  • Exam Essentials
3

Cloud Security Principles and Frameworks

  • Introduction
  • Cloud Security Principles Overview
  • The Shared Responsibility Model
  • AWS Compliance Programs
  • AWS Well-Architected Framework
  • The AWS Marketplace
  • Summary
  • Exam Essentials
4

Management and Security Governance

  • Introduction
  • Multi-Account Management Using AWS Organizations
  • Secure and Consistent Infrastructure Deployment in AWS
  • Evaluating Compliance
  • Architecture Review and Cost Analysis
  • Summary
  • Exam Essentials
5

Identity and Access Management

  • Introduction
  • IAM Overview
  • How AWS IAM Works
  • Access Management in Amazon S3
  • Identity Federation
  • Protecting Credentials with AWS Secrets Manager
  • IAM Security Best Practices
  • Common Access Control Troubleshooting Scenarios
  • Summary
  • Exam Essentials
6

Security Logging and Monitoring

  • Introduction
  • Stage 1: Resources State
  • Stage 2: Events Collection
  • Stage 3: Events Analysis
  • Stage 4: Action
  • Summary
  • Exam Essentials
7

Infrastructure Protection

  • Introduction
  • AWS Networking Constructs
  • Network Address Translation
  • Security Groups
  • Network Access Control Lists
  • Amazon VPC Transit Gateways
  • Elastic Load Balancing
  • VPC Endpoints
  • VPC Flow Logs
  • AWS Web Application Firewall
  • AWS Shield
  • AWS Network Firewall
  • Amazon Inspector
  • AWS Systems Manager Patch Manager
  • EC2 Image Builder
  • Network and Connectivity Troubleshooting Scenarios
  • Summary
  • Exam Essentials
8

Data Protection

  • Introduction
  • AWS Key Management Service
  • Managing Keys in AWS KMS
  • Understanding the Cloud Hardware Security Module
  • AWS Certificate Manager
  • AWS Secret Protection Mechanisms
  • Protecting Your S3 Buckets
  • Amazon Macie
  • Protecting Data on the Move in AWS
  • Data Protection Troubleshooting Scenarios
  • Summary
  • Exam Essentials
9

Threat Detection and Incident Response

  • Introduction
  • Threat Detection
  • Threat Detection Services
  • Incident Response
  • Creating Your Incident Response Plan
  • Reacting to Specific Security Incidents
  • Automating Incident Response
  • Summary
  • Exam Essentials
  • Note
A

Appendix B: Creating Your Security Journey in AWS

  • Introduction
  • How to Prioritize Your Security Initiatives
  • It’s a Journey
  • Security Maturity Model
B

Appendix C: AWS Security Services Portfolio

  • Amazon Cognito
  • Amazon Detective
  • Amazon GuardDuty
  • Amazon Inspector
  • Amazon Macie
  • Amazon Security Lake
  • Amazon Verified Permissions
  • AWS Artifact
  • AWS Audit Manager
  • AWS Certificate Manager
  • AWS CloudHSM
  • AWS Directory Service
  • AWS Firewall Manager
  • AWS Identity and Access Management
  • AWS IAM Identity Center
  • AWS Key Management Service
  • AWS Network Firewall
  • AWS Organizations
  • AWS Payment Cryptography
  • AWS Private Certificate Authority
  • AWS Resource Access Manager
  • AWS Secrets Manager
  • AWS Security Hub
  • AWS Shield
  • AWS Web Application Firewall
C

Appendix D: DevSecOps in AWS

  • Introduction
  • Dev + Sec + Ops
  • AWS Developer Tools
  • Creating a CI/CD Using AWS Tools
  • Evaluating Security in Agile Development
  • Creating the Correct Guardrails Using SAST and DAST
  • Security as Code: Creating Guardrails and Implementing Security by Design
13

Practice Exam 1

14

Practice Exam 2

Related Courses

All Courses
We use cookies for improving site experience and analytics. Learn More