- Course
Securing Data and Secrets on AWS
Preparing to take the AWS Certified Security – Specialty exam? This course will teach you best practices for encryption, key management, and securing information on AWS with a particular emphasis on the Data Protection domain objectives of the exam.
Intermediate
- Course
Securing Data and Secrets on AWS
Preparing to take the AWS Certified Security – Specialty exam? This course will teach you best practices for encryption, key management, and securing information on AWS with a particular emphasis on the Data Protection domain objectives of the exam.
Intermediate
Get started today
Access this course and other top-rated tech content with one of our business plans.
Try this course for free
Access this course and other top-rated tech content with one of our individual plans.
This course is included in the libraries shown below:
- Cloud
- Data
- Security
What you'll learn
AWS provides several different services that work together to help you protect your sensitive information. In this course, Securing Data and Secrets on AWS, you’ll learn how to leverage these services to implement secure architectures for applications and data storage on AWS. First, you’ll explore best practices for encryption and key management. Next, you’ll discover how to properly secure secrets such as parameters in your application’s source code. Finally, you’ll learn how to protect sensitive data using techniques such as cross-region replication and proactively monitor your data for security issues using Amazon Macie. When you’re finished with this course, you’ll have the skills and knowledge of a security engineer needed to answer questions from the “Data Protection” domain of the AWS Certified Security – Specialty exam.
Securing Data and Secrets on AWS
Intermediate
Table of contents
-
Introduction to Encryption | 3m 27s
-
Default Encryption on AWS | 2m 47s
-
Encryption Options across AWS Services | 6m 47s
-
Introduction to Key Management Service (KMS) | 2m 20s
-
KMS in Depth | 6m 8s
-
Envelope Encryption with Customer Master Keys | 1m 59s
-
Key Policies and Grants | 5m 33s
-
Introduction to CloudHSM | 2m 41s
-
Review | 1m 14s
Danny Jessee is a senior software developer and cloud engineer in the Washington, DC metro area. He specializes in updating legacy applications to take advantage of the cloud and building custom solutions leveraging technologies such as SharePoint, ServiceNow, and AWS. He has numerous AWS certifications, has spoken at national SharePoint conferences, and enjoys sharing his knowledge and experience with developers and IT professionals around the world. In his spare time, he enjoys running and meteorology.