This is the third in a series of four courses that will prepare you for the AWS Certified DevOps Engineer Certification. In this course, we'll cover the domain objectives for the security, governance, and validation portion of the exam.
Course Overview Hey this is Mike Pfeiffer, and welcome to this course on Security, Governance, and Validation on AWS. This is the third course in a series that covers all of the domain objectives for the AWS Certified DevOps Engineer professional exam. Security is one of the primary considerations for organizations adopting cloud services, and when it comes to working with the AWS cloud platform, there's a lot of patterns and best practices that you need to follow in order to make sure that your environment is configured properly. Obtaining the AWS DevOps professional certification is a great way to demonstrate your skills when it comes to implementing a secure solution that is built based on best practices. In this course we'll start off by looking at some essential AWS security best practices, we'll see how to use the identity and access management service to implement roles and policies, and we'll set up multifactor authentication, and we'll discuss other standard practices, like following the principle of least privilege and securing access to your AWS resources. Next we'll move on to implementing delegation and federation, so we'll see how to delegate access to resources in separate AWS accounts, and we'll set up identity federation, so we can allow access to AWS resources, to user accounts, and our own corporate Active Directory environments. Then we'll get into protecting data at flight and at rest, and we'll set up EBS volume encryption, server-side encryption in Amazon S3, and database encryption with Amazon RDS, the relational database service. Finally, we'll learn how to enable IT governance with AWS services. We'll take a look at common IT governance domains and how to address security requirements using the services available from AWS. Now before beginning this course, you should have familiarity with AWS operations or development, and if you're studying for the DevOps exam, you should have already watched the first two courses in this series that cover Continuous Delivery and Automation and Monitoring, Metrics, and Logging. But whether you're planning on taking the DevOps exam or not, I hope you'll join me in this course that'll give you practical skills for implementing security on AWS.