Clientele ➞

Security Testing in AWS Cloud

1 (1)

Duration: 2 Days

Description

Security Testing in AWS Cloud is a hands-on training created to quickly get you up and running with being secure on the AWS cloud infrastructure. You will learn what it really means to be secure while creating, managing and operating your applications in the cloud. While the training content is unique we have included all the relevant best practices. The training is going to be a mix of theory and practical labs over a period of 2 days.

Why learn about Security Testing in AWS Cloud?

  • The role of a QA person changes in Cloud infrastructure. AWS manages the underlying infrastructure but you must secure anything you put on the infrastructure. This includes your virtual instances and anything you install on them, any accounts that access your instances, the security group that allows outside access to your instances, the VPC subnet that the instances reside within if you’ve chosen this option, the external access to your S3 buckets, etc.
  • This means that there are several security decisions you need to make and controls you must configure. 
  • This course will be handled by experienced trainers who not only have immense knowledge on the subject but also bring in a lot of valuable and relevant work experience.

Objectives

  • You will be able to secure your cloud infrastructure
  • You will be able to do security testing on your cloud infrastructure
  • You will learn how to objectively evaluate risk and threats that concern your data
  • Learning about security will give you assurance about your cloud infrastructure

Who Should Attend

  • Someone who is responsible for setting up AWS infrastructure for his / her organization and worries about how secure it is.
  • QA personnel that are tasked with testing applications hosted on AWS (or any other cloud).
  • Someone who has dabbled with AWS but struggles to validate if their data and servers will be safe against attacks, viruses, etc.
  • Those who want to learn about AWS security in a structured manner so that they can validate their architecture or maybe even aim for compliance.

Prerequisites

  • A thorough understanding of how basic AWS services work. Or have taken the Cloud Computing with AWS – Level 2 course.
  • Understand terms like Cloud, EC2, S3, SSH, RDP and have knowledge of basic networking fundamentals.

Course Outline

Day 1

 

  • Why does Cloud require Security?
    • To protect data
    • To protect applications
    • To protect infrastructure
  • Security in the AWS Cloud/ Infra As A Service
    • Does AWS care about security? In other words how does AWS take care of security
    • Shared sense of security.
      • You take care of application and network security
      • Amazon takes care of infrastructure security.
    • Data Security in transmission
    • Data Security at rest
  • Basics of Infrastructure Security
    • Basics of Firewalls
      • Types of Firewalls
    • File and User Permissions
    • Network Services and Local Services
  • AWS Security Groups
    • Hands on
      • Setting up Security Groups
    • AWS VPC
      • Set up a virtual private cloud and connect it with your internal network using IPSec VPNs
    • Hands On port scanning
      • Scan for open ports.
      • Confirm that Security Groups are working properly
  • Secure Remote Administration of Server
    • Linux (SSH, SCP, SFTP)
    • Windows? (VNC)
    • Hands on
      • Login to a new Linux based EC2 instance.
      • Login to a new Windows based EC2 instance.
  • Access Control for your AWS Management Console
    • AWS Identity and Access Management (IAM)
      • Safeguarding your AWS credentials
      • Best practices for IAM
      • Hands On

 

Day 2

 

  • Securing the Server OS
    • Patching and Upgrading
    • Hardening the Server
    • Hands On
      • Step by step guide to hardening the server and keeping it hardened
  • Securing the Server Software
    • Secure Installations
    • Access Control
    • Authentication and Encryption
    • More about encryption approaches and techniques
  • Maintaining Security
    • Logging
    • Backups
  • Security Testing (Hands On at least 3 hours)
    • Test the security of your instance
      • Create a basic test plan
      • Tools to do network scanning
      • Tools to do application scanning

About The Trainer

Himanshu Sachdeva
Senior Cloud Solutions Architect

Himanshu has been developing / architecting IT applications for over 9 years & is working in cloud computing domain for about 5 years. He holds expertise in various cloud platforms including Amazon Web Services, Force.com, Google App Engine etc. and has designed large & complex applications for some of the major international companies. He was involved in algorithmic research during earlier part of his career & carries strong foundation in field of computing. Himanshu is very passionate about technology & keeps himself abreast of latest tech trends.

View Linkedin Profile


Sankeerth Reddy G
Senior Cloud Solutions Architect

sankeerthSankeerth is an Amazon Certified Solutions Architect with many years of experience working with Amazon Web Services (AWS). He also has certification from MongoDB and specializes in running MongoDB cluster on AWS. He has experience in architecting and managing MongoDB cluster with Multiple Shards on AWS, which does 1000+ requests per second at peak. He currently leads a CloudThat consulting team and has been involved in various large and complex global clients, some of them being in the top 100 most visited sites in USA. He has architected various solutions on AWS, and managed deployments using AWS. In his previous tenure at TCS, he has worked on developing and deploying internal applications on AWS cloud.

View Linkedin Profile


2204524-12Bhavesh Goswami
Co-Founder & CEO

Bhavesh Goswami the Co-Founder & CEO of CloudThat Technologies, is a leading expert in Cloud Computing space with over a decade of experience. He was in the initial development team of Amazon Simple Storage Service (S3) at Amazon Web Services (AWS) in Seattle. He honed his Cloud Computing skills at Amazon where he helped ship the first version of S3 in 2006. Later he moved to Microsoft after over three years at Amazon to take up the challenge to help manage Cosmos, the Cloud storage and Big Data computational engine that power all of the Microsoft’s Online Services, including Bing.

In 2010, after living in USA over 10 years, he came to India in search of a challenge. He realized that the rapidly changing technology landscape and the busy schedule of IT professionals were not conducive to acquire new skills. Thus, he started CloudThat Technologies, a company focused on quickly empowering professionals & corporates on Cloud & Big Data through training & consulting services. He has personally trained over 1000 people on various Cloud technologies like AWS, Microsoft Azure, Google App Engine and more since early 2012.

Bhavesh has spoken at various Cloud and Big Data conferences and events like ‘7th Cloud Computing & Big Data’ and have been the Key Note Speaker at ‘International Conference on Computer Communication and Informatics’. He has authored numerous research papers and patents in various fields. He is passionate about technology and keeps the company up to date on latest Cloud technologies & market trends.

Bhavesh earned MS in Computer Science from University of South Florida, where he was awarded Scholarships for Teaching Assistantship and Research Assistantship in 2003. He gained his Bachelor of Engineering in Information Technology from Nirma University in 2001.

View Linkedin Profile

Other Details

Questions?

For latest batch dates, fees, location, technical queries and general inquiries, contact our sales team at: +91 8880002200 or email at sales@cloudthat.in

Upcoming Batches

TBA
Fill out my online form.
Recently Viewed Courses.
  • Security Testing in AWS Cloud

  • Favorite Courses
    No Favourites added yet.

    Our Partners