CloudAcademy
  1. Home
  2. Content Library
  3. Amazon Web Services
  4. Courses
  5. Understanding Amazon GuardDuty

Introduction

The course is part of these learning paths

Security - Specialty Certification Preparation for AWS

course-steps 22 certification 1 lab-steps 11

GDPR: Using AWS Compliance Enabling Services

course-steps 7 certification 1 lab-steps 2

AWS Security Services

course-steps 9 certification 1 lab-steps 4 quiz-steps 5

Contents

keyboard_tab
Introduction
1
Introduction3m 58s
Amazon GuardDuty
2
What is AWS Amazon GuardDuty?4m 13s
3
Components and Configuration16m 56s
Management
4
Managing Multiple Accounts6m 8s
5
Managing Permissions4m 45s
6
Understanding Amazon GuardDuty Findings10m 21s
Enterprise
7
Benefits to the Enterprise4m 36s
8
Costing2m 46s
9
Partner Offerings2m 51s
Summary
10
Course Summary6m 28s
play-arrow
Start course
Overview
Transcript
DifficultyIntermediate
Duration1h 3m
Students272

Description

Course Description

During AWS re:Invent 2017, AWS launched their 11th security service in the on-going drive to help its customers protect and secure their applications, environments, and accounts. This service was Amazon GuardDuty, a regionally based, intelligent, threat-detection service. This service allows users to monitor their AWS account for unusual and unexpected behavior by analyzing AWS CloudTrail Event Logs, VPC Flow Logs, and DNS Logs. It then uses the data from logs, and assesses them against multiple security and threat detection feeds, looking for anomalies and known malicious sources, such as IP addresses and URLs. This course will introduce you to this Amazon GuardDuty and explain how it works and how to configure it, allowing you to be able to enable this service within your own AWS accounts to provide automatic and continuous security analysis for safeguarding your entire AWS environment.

Learning Objectives:

By the end of this course you will be able to:

  • Describe the Amazon GuardDuty service
  • Manage and configure GuardDuty for single and multiple accounts
  • Implement the correct permissions to both enable and manage GuardDuty
  • Manage and resolve findings generated
  • Explain how GuardDuty can play an important role within your organization

This course has been designed for those who are in a role of a:

  • Security consultant/specialist
  • Security analyst
  • Security auditor
  • Cloud architect
  • Cloud operational support analyst

This would also be valuable to anyone looking to learn more about AWS security and threat detection within AWS.

Prerequisites

As a prerequisite to this course you should have a basic understanding of the fundamentals of AWS along with an awareness of different security measures and mechanisms that are offered by different AWS services, such as within IAM, specifically IAM policies.

Feedback

If you have thoughts or suggestions for this course, please contact Cloud Academy at support@cloudacademy.com.

About the Author

Students36455
Labs1
Courses40
Learning paths16

Stuart has been working within the IT industry for two decades covering a huge range of topic areas and technologies, from data centre and network infrastructure design, to more recently cloud architecture and implementation.

He is a Certified Data Centre Design Professional (CDCDP), with his latest achievements gained within the Amazon Web Services (AWS) field.

He currently holds the AWS Certified Solutions Architect - Associate certification as well as accreditations as an AWS Business and Technology Professional and in TCO and Cloud Economics.

In January 2016 Stuart was awarded 'Expert of the Year Award 2015' from Experts Exchange for his knowledge share within cloud services to the community.

Stuart enjoys writing about cloud technologies and you will find many of his articles within our blog pages.