AWS Certified CloudOps Engineer Associate (SOA-C03) Security and Compliance

Course outline

Section 1: Implementing authentication in AWS

  1. Understanding AWS Identity and Access Management

  2. Lab: Implementing authentication in AWS

  3. Working with external identity providers

  4. Lab: Implementing AD Connector

Section 2: Implementing authorization in AWS

  1. Understanding authorization in AWS

  2. Lab: Working with identity-based policies

  3. Understanding IAM roles

  4. Lab: Working with IAM roles - part 1

  5. Lab: Working with IAM roles - part 2

Section 3: Troubleshooting authentication and authorization in AWS

  1. Implementing AWS services for access troubleshooting

  2. Lab: Troubleshooting AWS authorization issues

  3. Understanding AWS Trusted Advisor

  4. Lab: Working with AWS Trusted Advisor

Section 4: Working in a multi-account AWS environment

  1. Implementing security for multi-account environments

  2. Lab: Deploying service control policies (SCPs)

Section 5: Implementing data classification in AWS

  1. Introducing data classification in AWS

  2. Lab: Working with data classification in AWS

Section 6: Securing data in transit and at rest

  1. Working with data encryption

  2. Lab: Deploying an AWS Certificate Manager certificate

Section 7: Securing secrets in AWS

  1. Working with AWS Secrets Manager and Parameter Store

  2. Lab: Implementing AWS Secrets Manager

Section 8: Implementing security monitoring in AWS

  1. Working with AWS security services

  2. Lab: Implementing Amazon GuardDuty

  3. Working with AWS Security Hub

  4. Lab: Implementing AWS Security Hub