Securing Data and Secrets on AWS

Preparing to take the AWS Certified Security – Specialty exam? This course will teach you best practices for encryption, key management, and securing information on AWS with a particular emphasis on the Data Protection domain objectives of the exam.
Course info
Level
Intermediate
Updated
Jun 5, 2020
Duration
1h 19m
Table of contents
Description
Course info
Level
Intermediate
Updated
Jun 5, 2020
Duration
1h 19m
Description

AWS provides several different services that work together to help you protect your sensitive information. In this course, Securing Data and Secrets on AWS, you’ll learn how to leverage these services to implement secure architectures for applications and data storage on AWS. First, you’ll explore best practices for encryption and key management. Next, you’ll discover how to properly secure secrets such as parameters in your application’s source code. Finally, you’ll learn how to protect sensitive data using techniques such as cross-region replication and proactively monitor your data for security issues using Amazon Macie. When you’re finished with this course, you’ll have the skills and knowledge of a security engineer needed to answer questions from the “Data Protection” domain of the AWS Certified Security – Specialty exam.

About the author
About the author

Danny Jessee is a senior cloud engineer and software developer in the Washington, DC metro area. He specializes in updating legacy applications to take advantage of the cloud and building custom cloud and SharePoint solutions. He has six AWS certifications including the AWS Certified Security - Specialty and AWS Certified DevOps Engineer - Professional. He has spoken at national SharePoint conferences and enjoys sharing his knowledge and experience with developers around the world. He can be reached on Twitter @dannyjessee and his blog is at dannyjessee.com. In his spare time, he enjoys running and meteorology.

More from the author
Tooling up for SharePoint Framework
Beginner
1h 10m
May 28, 2020
Section Introduction Transcripts
Section Introduction Transcripts

Course Overview
Hi everyone. My name is Danny Jessee. Welcome to my course, Securing Data and Secrets on AWS. I have six AWS certifications, including the AWS Certified Security Specialty, and work as a senior cloud engineer and software developer in the Washington DC area. Now more than ever, cloud engineers must understand how to properly secure sensitive data and workloads running on AWS. In this course, we will cover the various data encryption and protection mechanisms within AWS and prepare you to answer questions from the data protection domain of the AWS Certified Security Specialty exam. Some of the major topics that we will cover include leveraging the various encryption options available within AWS Services, creating and storing customer master keys in the AWS Key Management Service, designing secure parameter stores, replicating data for protection using AWS Services, and identifying and protecting sensitive data using Amazon Macie. By the end of this course, you will be able to design secure storage solutions for data in S3, create and manage your own encryption keys, and understand best practices for storing, classifying, and retrieving sensitive data in AWS. Before beginning this course, you should have some experience working with the various security offerings within AWS, as well as a working knowledge of AWS Services, such as S3, RDS, and EC2. You should also have a few years of IT experience and a basic understanding of fundamental security concepts, such as encryption. I hope you'll join me on this journey to learn about the data security offerings in the AWS Cloud with this course, Securing Data and Secrets on AWS at PluralSight.