Preparing to take the AWS Certified Security – Specialty exam? This course will teach you best practices for encryption, key management, and securing information on AWS with a particular emphasis on the Data Protection domain objectives of the exam.
AWS provides several different services that work together to help you protect your sensitive information. In this course, Securing Data and Secrets on AWS, you’ll learn how to leverage these services to implement secure architectures for applications and data storage on AWS. First, you’ll explore best practices for encryption and key management. Next, you’ll discover how to properly secure secrets such as parameters in your application’s source code. Finally, you’ll learn how to protect sensitive data using techniques such as cross-region replication and proactively monitor your data for security issues using Amazon Macie. When you’re finished with this course, you’ll have the skills and knowledge of a security engineer needed to answer questions from the “Data Protection” domain of the AWS Certified Security – Specialty exam.
Danny Jessee is a senior cloud engineer and software developer in the Washington, DC metro area. He specializes in updating legacy applications to take advantage of the cloud and building custom solutions leveraging technologies such as ServiceNow and SharePoint. He is a ServiceNow Certified System Administrator and has six AWS certifications including the AWS Certified Security - Specialty and AWS Certified DevOps Engineer - Professional. He has spoken at national SharePoint conferences and enjoys sharing his knowledge and experience with IT professionals around the world. In his spare time, he enjoys running and meteorology.
Course Overview Hi everyone. My name is Danny Jessee. Welcome to my course, Securing Data and Secrets on AWS. I have six AWS certifications, including the AWS Certified Security Specialty, and work as a senior cloud engineer and software developer in the Washington DC area. Now more than ever, cloud engineers must understand how to properly secure sensitive data and workloads running on AWS. In this course, we will cover the various data encryption and protection mechanisms within AWS and prepare you to answer questions from the data protection domain of the AWS Certified Security Specialty exam. Some of the major topics that we will cover include leveraging the various encryption options available within AWS Services, creating and storing customer master keys in the AWS Key Management Service, designing secure parameter stores, replicating data for protection using AWS Services, and identifying and protecting sensitive data using Amazon Macie. By the end of this course, you will be able to design secure storage solutions for data in S3, create and manage your own encryption keys, and understand best practices for storing, classifying, and retrieving sensitive data in AWS. Before beginning this course, you should have some experience working with the various security offerings within AWS, as well as a working knowledge of AWS Services, such as S3, RDS, and EC2. You should also have a few years of IT experience and a basic understanding of fundamental security concepts, such as encryption. I hope you'll join me on this journey to learn about the data security offerings in the AWS Cloud with this course, Securing Data and Secrets on AWS at PluralSight.