For direct assistance contact us! +91-9999508202 [email protected]

AWS Cloud security


AWS Cloud Security Professional explores Amazon Web Services, it offers a scalable advanced cloud platform designed for availability and reliability. It also provides the tools that allow you to run a wide range of applications. Helping to protect the confidentiality, integrity & availability (CIA) of your systems and data is of the Mazer importance.

The AWS infrastructure has been designed to be one of the most flexible and safe cloud platform available until now. AWS is designed to provide a salable, highly flexible platform that allows clients to deploy different apps and store data securely.
AWS Cloud Security professional training is more focused on enhancing the base and rapid deployment capabilities of Amazon web services to build a solid foundation for individuals who are new to the cloud computing platform and AWS. The candidate will learn how he/she, as an AWS client, can have the Safest cloud solution possible for a variety of implementation.

This course digs into the flexibility and agility needed to plant & deploy the most appropriate security & access controls for every business function in the AWS environment by deploying varying degrees of restrictive access to environments based on data sensitivity.
Through on-screen demos and detailed instruction takes you through the critical facets of AWS’s best preparations and services in the areas of common shared security and compliance, Identity and Access Management, infrastructural protection; data security; and event management & monitoring to ensure that your AWS environment remains secure.



AWS Cloud Security Professional 1









AWS Cloud Security Professional 2
module 1 : Understand Cloud Computing Concepts

Cloud Computing Definitions, Cloud Computing Roles ( like cloud service customer, cloud service provider, cloud service partner, cloud
service broker)
Key Cloud Computing Characteristics ( on-demand self-service, broad network access, multi-tenancy, rapid elasticity and scalability, resource pooling, measured service)
Building Block Technologies ( virtualization, storage, networking, databases, orchestration)

AWS Cloud Security Professional 3
module 2 : Cloud Reference Architecture

Cloud Computing Activities ,Cloud Service Capabilities ( application
capability types, platform capability types, infrastructure capability types)

Cloud Service Categories ( Software as a Service (SaaS), Infrastructure as a Service (IaaS),Platform as a Service (PaaS)) Cloud Deployment Models (public, private,hybrid, community)

Cloud Shared Considerations (interoperability, portability, reversibility,
availability, security, privacy, resiliency,performance, governance, maintenance and versioning, service levels and Service Level Agreements (SLA), auditability, regulatory)

Impact of Related Technologies ( machine learning, artificial intelligence, blockchain, Internet of Things (IoT), containers, quantum computing)



AWS Cloud Security Professional 4
module 3 : Understand Security Concepts Relevant to Cloud Computing

Cloud Secure Data Lifecycle ,Cloud based Disaster Recovery (DR) and Business Continuity (BC) planning, Cost Benefit Analysis ,Functional Security Requirements ( portability, interoperability, vendor lock-in)

Security Considerations for Different Cloud Categories (Software as a Service (SaaS), Infrastructure as a Service (IaaS), Platform as a Service (PaaS))


AWS Cloud Security Professional 5
module 4 : Cloud Reference Architecture

Verification Against Criteria ( International Organization for Standardization/International Electrotechnical Commission (ISO/IEC) 27017, Payment Card Industry Data Security Standard (PCI DSS))

System/subsystem Product Certifications ( Common Criteria (CC), Federal Information Processing Standard (FIPS) 140-2)


AWS Cloud Security Professional 6
module 5 : Identity and access management

Understanding Users and Credentials, explores users and credentials as well as the account root user. In addition, you’ll learn to configure user accounts and credentials; learn about password policies; and review Identity and Access Management (IAM) best practices



AWS Cloud Security Professional 7
module 6 : network access control lists

 NACLs and Security Groups, covers network access control lists (NACLs)and security groups with a focus on understanding security zoning, network segmentation, and best Practices for network security in the cloud.



AWS Cloud Security Professional 8
module 7 : Auditing VPC

Module Introduction
VPC Configuration
VPC Options
Ingress/Egress Points Overview
Internet Gateway
VPN Gateway
AWS Direct Connect
VPC Peering Connections
VPC Endpoints
EC2 ClassicLink
Demo: Ingress/Egress Points
Security Features Overview
Route Tables
Network Access Control Lists
VPC Flow Log



AWS Cloud Security Professional 9
module 8 : Auditing EC2

Shared Responsibility Security Model
Hypervisor and Keypairs
Security Group Function and Best Practices
Security Group Audit Script Example
Demo: AWS Config and Trusted Advisor
Introduction: Inventory And Tagging
CLI Inventory Examples
Tag Function and Best Practices
Tag Audit Script and Trusted Advisor



AWS Cloud Security Professional 10
module 9 : Auditing EBS

Key Management, explores AWS Key Management Services (KMS); how to protect EC2 key pairs; how to use encrypted EBS volumes; how to work with Server-Side Encryption (SSE) in S3; and concludes with a look at AWS CloudHSM Security. 


AWS Cloud Security Professional 11
module 10 : Auditing S3

Introduction and Basics
S3 Storage Classes
Security and Access Control Introduction
S3 Object Encryption & Uploading and Object with Server Side Encryption
S3 Inventory Examples & Best Practices



AWS Cloud Security Professional 12
module 11 : Enterprise cloud defense in depth

 AWS WAF and AWS Shield, focuses on having a working knowledge of the mechanics of and working with the AWS Web Application Firewall (WAF) and AWS Shield. The lesson explores distributed denial of service (DDoS) protection and response; the AWS WAF Advanced API; deploying malware protection best practices; and surveying layered defense in the cloud.

 Cryptographic Services, covers the basics of cryptographic services; IPsec fundamentals, IPsec in AWS; and AWS Certificate Manager.

Logging and Monitoring, covers topics including visibility and reporting; security reporting and logging in AWS; activating Flow Logs and Region-based CloudTrail; AWS Auditing; Pre-Audit Tasks, and concludes with a look at additional security services offered in an AWS environment.

who should attend this training?
  • Freshers

  • Solution Architect

  • System Administrators

  • Network Administrators

  • SecOps Engineers

  • SysOps admins

  • Cloud Security Auditors

  • Security Professionals

why should i take this training?

The era of the technology is now growing everyday businesses are now focusing on cloud deployment models. Learn to develop the access control policies as per compliances, develop the strategies and audit policies the defend the overall cloud.  

prerequisite of the training ?

The person should familiar with basic cloud operations 

What is the duration of the training ?
It’s an Instructor-led online training and
the total duration of the training is 25 hours.

AWS cloud security

professional enquiry

6 + 3 =

Our clients


Today I’ve completed my one 2 one online training by Mr Naresh sir from Certcube Labs .
This is the first time I have attended a class in this format and wondered how effective it would be. It was very effective and therefore I would definitely be interested in attending other classes in the same format. The instructor was very knowlegeable and provided a wealth of information about the current version, especially since the last version I used was several releases ago.
Satyam Singh

BCA, Delhi University

A good place to learn every small detail in cybersecurity.Really nice and helpful teacher.


Btech, BITS Mesra

together Let’s Create the future

6 + 15 =