AWS Security Governance at Scale
E-Learning
Description
Security is foundational to AWS. Governance at scale is a new concept for automating cloud governance that can help companies retire manual processes in account management, budget enforcement, and security and compliance. By automating common challenges, companies can scale without inhibiting agility, speed, or innovation. In addition, they can provide decision makers with the visibility, control, and governance necessary to protect sensitive data and systems. In this course, you will learn how to facilitate developer speed and agility, and incorporate preventive and detective controls. By the end of this course, you will be able to apply governance best practices.
Security is foundational to AWS. Governance at scale is a new concept for automating cloud governance that can help companies retire manual processes in account management, budget enforcement, and security and compliance. By automating common challenges, companies can scale without inhibiting agility, speed, or innovation. In addition, they can provide decision makers with the visibility, control, and governance necessary to protect sensitive data and systems.
In this course, you will learn how to facilitate developer speed and agility, and incorporate preventive and detective controls. By the end of this course, you will be able to apply governance best practices.
In this course, you will learn to:
Establish a landing zone with AWS Control Tower
Configure AWS Organizations to create a multi-account environment
Implement identity management using AWS Single Sign-On users and groups
Federate access using AWS SSO
Enforce policies using prepackaged guardrails
Centralize logging using AWS CloudTrail and AWS Config
Enable cross-account security audits using AWS Identity and Access Management (IAM)
Define workflows for provisioning accounts using AWS Service Catalog and AWS Security Hub
This course is intended for:
Solutions architects, security DevOps, and security engineers
| Lesson Id | Title | Description |
|---|---|---|
| 1 | Course Introduction |
Instructor introduction Learning objectives Course structure and objectives Course logistics and agenda |
| 2 | Module 1: Governance at Scale |
Governance at scale focal points Business and Technical Challenges |
| 3 | Module 2: Governance Automation |
Multi-account strategies, guidance, and architecture Environments for agility and governance at scale Governance with AWS Control Tower Use cases for governance at scale |
| 4 | Module 3: Preventive Controls |
Enterprise environment challenges for developers AWS Service Catalog Resource creation Workflows for provisioning accounts Preventive cost and security governance Self-service with existing IT service management (ITSM) tools |
| 5 | Module 4: Detective Controls |
Operations aspect of governance at scale Resource monitoring Configuration rules for auditing Operational insights Remediation Clean up accounts |
| 6 | Module 5: Resources | Explore additional resources for security governance at scale |