Join Bart Castle as he teaches you how to design and configure basic access management solutions by using AWS authentication and authorization components. Learn how to delegate permissions by using IAM roles, how to implement dynamic security policy statements by using IAM conditions and variables, and how to work with managed and inline security policies in the management console. Gain an understanding of users, groups, roles, security policies, Amazon Resource Names (ARNs), and the three main resources you can use to administer AWS resources: the management console, command line, and system developer kit.

Join Bart Castle as he teaches you what to look for when designing or planning for advanced authentication options at Amazon Web Services (AWS). Gain an understanding of multi-factor authentication (MFA), single sign-on, and integrated solutions and learn how they help extend security controls for cloud workloads.

Join Bart Castle as he teaches you how to work with AWS Identity and Access Management (IAM) security policies. Learn about the structure and composition of security policy statements and their elements, like Effect, Action, and Resource. Cover other optional elements and how to use them to achieve common security objectives.

Join Bart Castle as he teaches you Amazon Web Services (AWS) account management designs and best practices. Learn about planning for the right levels of isolation to meet modern organizations' security, compliance, and control requirements. Gain an understanding of the shared responsibility trade-off between AWS and its consumers.

Join Bart Castle as he teaches you how to plan for configuration and change management at Amazon Web Services (AWS). Learn common change management approaches in AWS Cloud and how to use AWS GuardDuty to monitor some of your most important security event log files.

Join Bart Castle as he teaches you how to plan for configuration and audit management at Amazon Web Services (AWS). Learn how to leverage Artifact and AWS Config to generate audit and management reports and how to plan for compliance management in AWS.

Join Bart Castle as he teaches you how to evaluate deployment management options at Amazon Web Services (AWS). Learn how to determine when you should use EC2, Systems Manager, CloudFormation, OpsWorks, or ElasticBeanstalk to manage deployment and configuration management activities.

Join Bart Castle as he teaches you how to implement a self-service portfolio using AWS Service Catalog and CloudFormation. Learn how to register CloudFormation templates as products, how to list those products in a portfolio, and how to manage product versions, variables, permissions and more.

Join Bart Castle as he teaches you how to implement cost and spend management controls at Amazon Web Services (AWS). Learn how to configure billing management administration, how to implement spend alert notifications, how to set up a budget and monitor it, how to use Lambda functions to react to spend overages, and how to mitigate costs by terminating resources automatically.

Join Bart Castle as he teaches you how to maintain visibility over your organization's spending at AWS. Learn how to work with cost and usage reports (CUR) to generate reproducible reports, export them to S3, and set up an Athena-based analysis solution for further reviewing. Gain an understanding of how these tools can ensure visibility over critical aspects of your AWS deployment.

Join Bart Castle as he covers common data security practices at Amazon Web Services (AWS). Learn how to leverage encryption and other security controls to secure DynamoDB table data and RDS databases. Gain the skills you need to add authentication and reliability controls.

Join Bart Castle as he teaches you how to approach security for data in transit to, from, and within AWS regions, services, and networks. Learn how Amazon authenticates, secures, and controls access to service APIs. Gain an understanding of what factors contribute to data migration and transportation solutions involving Snowball, Storage Gateway, the Import/Export Service, and the Database Migration Service.

Join Bart Castle as he teaches you how to manage data encryption operations at Amazon Web Services (AWS). Learn how to plan for the use of KMS and HSM services. Gain an understanding of the encryption key management options available at AWS and common KMS key management and encryption activities, such as creating, deleting, labeling, and auditing keys and key usage.

Join Bart Castle as he teaches you about common Elastic Block Store (EBS) encryption activities and concepts. Learn how to create and work with encrypted volumes using the management console and the AWS Command Line. Gain an understanding of how encrypted volumes affect other EBS aspects like snapshots and AMIs.

Join Bart Castle as he teaches you how to work with encrypted EBS-backed Amazon Machine Images (AMIs). Learn how to encrypt an existing EBS-backed root volume and how to create an AMI from that volume. Gain an understanding of encryption and the limitations of EBS root-volume encryption.

Join Bart Castle as he teaches you how to create an encrypted file system within an existing EC2-attached EBS volume. Learn how to create a volume and a file system and how to mount them automatically on system startup.

Join Bart Castle as he teaches you about critical S3 security best practices for ensuring confidentiality. Learn how to ensure that S3 object data isn't publicly accessible, how to secure S3 object data by using AES encryption, and how to plan for the appropriate combination of client-side encryption, server-side encryption, and key management options.

Join Bart Castle as he teaches you how to improve and manage S3 bucket and object integrity and availability. Learn how to implement S3 lifecycle policies and bucket replication, how to validate object upload and download integrity with checksums, and how to integrate archive practices by using the Glacier storage-class and vaults.

Join Bart Castle as he teaches you how to configure and deploy the Amazon Web Services (AWS) Storage Gateway appliance. Learn how to provision gateway volumes, how to configure the gateway software on an EC2 Linux instance, and how to create and connect to an NFS-based share on the new gateway appliance.

Join Bart Castle as he teaches you common hardening and security practices for EC2 instances. Learn how to approach patching and security updating directly or by using an Amazon Machine Image (AMI) hardening routine and how to manage EC2 key pairs and the resulting authentication models it supports for EC2 workloads.

Join Bart Castle as he teaches you how to configure the AWS Systems Manager service. Gain an understanding of Systems Manager and what it has to offer as you work with the State and Inventory manager, Automation documents, and the Parameter store.

Join Bart Castle as he teaches you how to implement and select protective security controls at Amazon Web Services (AWS). Learn how network isolation, security groups, and network access controls can work with network traffic filtering devices and services to meet security objectives.

Join Bart Castle as he teaches you about network traffic flow and management in AWS Virtual Private Clouds (VPCs). Learn how to implement and configure network interfaces, security groups, network access control lists (ACLs), and more. Gain an understanding of IP routing in VPCs and common techniques for isolating, filtering, and controlling network traffic.

Join Bart Castle as he teaches you how to build a basic AWS virtual private cloud deployment to support a publicly accessible web server running Wordpress. Learn how to identify the key resources and configurations that'll support internet accessibility for a public-facing EC2-based web application including Elastic Network Interfaces and Security Group rules logic.

Join Bart Castle as he teaches how to work with private network traffic in AWS Virtual Private Clouds (VPCs). Learn how to configure network address translation (NAT) services and how to provision a management network and administrative jump boxes to enable secure SSH or RDC-based access for administrators.

Join Bart Castle as he teaches you how to use the AWS Transit Gateway service to connect virtual private clouds (VPCs) together. Learn how to plan for Transit Gateway and how to implement and test network traffic flow across a VPC-to-VPC gateway.

Join Bart Castle as he explains the difference between using VPC Peering and the Transit Gateway for facilitating both cross-VPC and cross-region network traffic. Learn how to implement a site-to-site virtual private network (VPN) using the AWS Virtual Gateway, IPSec VPN tunnels, and a remote Linux (EC2-based) gateway.

Join Bart Castle as he teaches you about common AWS services and how to deploy and configure a Juniper vSRX instance. Learn how to support an EC2-based software firewall deployment with public and private networks, how to create Elastic Network Interfaces, how to allocate public Elastic IPs, and how to use the management console to create a VPC, its subnets, and an internet gateway. Gain an understanding of routing tables, traffic filtering, security groups, and network address translation (NAT).

Join Bart Castle as he teaches you how to plan for distributed denial-of-service (DDoS) attacks at Amazon Web Services (AWS). Learn what sort of mitigation techniques are common and how AWS services can help protect against a variety of DDoS attacks, such as infrastructure-layer and application-layer attacks. Gain an understanding of common exploits and how to prepare for them.

Join Bart Castle as he teaches you how to design for and implement intelligent traffic filtering using the AWS Web Application firewall. Learn how Application (Layer 7) firewalls differ from traditional network traffic filters and how to design appropriate filtering rules. Gain an understanding of the rules that can be combined into policies for robust logic.

Join Bart Castle as he teaches you about the various monitoring solutions at AWS and how to use them. Learn how to choose the best metric for monitoring AWS services, applications, user activity, and admin activity; how to plan and design for metric collection, response timing, thresholds, and alarm limits; and how to use the Simple Notification Service (SNS) and CloudWatch Event Rules to notify you when your root account is used. Gain the skills you need to use the Personal Health Dashboard, automate Landing Zone deployments with AWS Control Tower, create a Metric Filter by using CloudWatch and CloudTrail log shipping, and more.

Join Bart Castle as he shows you how to use Amazon CloudWatch to collect and track various types of metrics, set alarms, create custom dashboards, and more. Learn how to use custom CloudWatch metrics, how to review key API calls that enable the publishing of custom metrics, and how to publish custom CloudWatch metrics using AWS CLI scripts and Linux cron jobs. Gain an understanding of the default CloudWatch dashboards, the dual modes of the CloudWatch management console, and the alarm states and actions of CloudWatch.

Join Bart Castle as he covers the main features of AWS Inspector and the different ways you can install the Inspector agent. Learn how to use Inspector to run assessments against specific agent-managed instances, how to create an assessment target group, and how to confirm agent connectivity for a target group. Gain an understanding of assessment findings reports and the types of rules and rule packages you can use with Inspector

Join Bart Castle as he teaches you how to design, plan, and evaluate various security logging solutions at AWS. Gain an understanding of operational log files, CloudWatch, CloudWatch Logs, and the six-step design for AWS logging: collection, transport, storage, taxonomy, analysis, and security. Learn how to access AWS log files that show VPC network traffic, application activity, and datastore actions; how to install the CloudWatch agent with the CLI and the Systems Manager integration; how to design a centralized logging solution; and how to create an ELK stack.

Join Bart Castle as he covers the cloud-computing solutions and best practices of Amazon Web Services (AWS). Learn about the five pillars of the AWS Well-Architected Framework: operational excellence, security, reliability, performance efficiency, and cost optimization. Gain an understanding of the best practices included in each pillar and how to implement them.