Back to Learning Paths Learning Paths

AWS Access & Key Management Security

Intermediate

LP Box Courses 5 Video Courses
LP Box quiz 3 Quiz sessions
LP Box Lab 2 Hands-on Labs
Duration 7h 39m
Karma ~250 karma points
Certificate 4201 students

With Security being one of the hottest topics within the Cloud industry today, Access and Key Management is often highlighted, questioned and misunderstood. 

This learning path on AWS Access & Key Management Security has been designed to help you understand how AWS implements and manages access to its resources from an Identity, key management, and best practice perspective.

It will focus on the Identity & Access Management Service (IAM) and all of its features and how they operate together to provide secure access management to your resources. You will also gain a deeper understanding of how these features operate from an authentication, authorization and access control stance. 

Security best practices will be covered across a range of abstract and container services, plus how the Key Management Service (KMS) and CloudHSM service can be used to manage and control the use of encryption keys and the benefits and considerations when doing so.

Instructors for this learning path:

Stuart Scott

  • AWS: Overview of Identity & Access Management (IAM)
  • Understanding of AWS Authentication, Authorization and Accounting
  • AWS Security Best Practices: Abstract and Container Services

Tom Lynch

  • Amazon Web Services – Key Management Service (KMS)
  • Amazon Web Services - CloudHSM
Start

1

This course looks at one of the key Security services within AWS, Identity & Access Management, commonly referred to IAM. This service manages identities and their permissions that are able to access your AWS resources and so understanding how this service works and what you can do with it will help you to maintain a secure AWS environment. IAM is an important step in ensuring your resources are ...

2

Advanced roles and groups management using IAM AWS Identity and Access Management (IAM) is a web service that helps you securely control access to AWS resources for your users. You can specify permission to a single user or you can use groups to specify permissions for a collection of users, which can make those permissions easier to manage for those users. Furthermore you can use a Role for ...

3

4

Cloud Security is a huge topic, mainly because it has so many different areas of focus. This course focuses on three areas that are fundamental, AWS Authentication, Authorisation and Accounting. These three topics can all be linked together and having an understanding of the different security controls from an authentication and authorization perspective can help you design the correct level of ...

5

6

When implementing different AWS services and architecting them within your environments, whether it be production, test or dev, do you know your security responsibilities for these services? It is very likely that you are using services from three different classifications, which each have very different boundaries for enforcing security between the customer and AWS. These classifications are: ...

7

About this Course KMS stands for Key Management Service. KMS is a service provided by and managed by AWS. The service allows you to easily encrypt your data with protected keys that cannot be exposed to anyone in plain text. The service is regionally based across all AZs in the region making it highly available with full auditing functions to encrypt your data at AWS and within your applications. ...

8

Amazon Key Management Service along with S3 and EBS data encryption Lab Overview Amazon Web Services Key Management Service (KMS) is a managed service that simplifies the creation and management of encryption keys used to encrypt/decrypt your data. Most storage related AWS services are supported by KMS, including: EBS (Elastic Block Store) S3 (Simple Storage Service) Redshift RDS (Relational ...

9

10

Course Description: AWS CloudHSM is the name of Amazon’s original encryption key solution. HSM stands for Hardware Security Module and in the solution provided by AWS is a Safenet Luna appliance hosted at AWS. The appliance is single tenant and exclusive to each customer. AWS only manages the hardware and base operation but does not manage the keys or even have the ability to access the key ...
Complete all the steps to claim this certificate
Your Name Here
AWS Access & Key Management Security
Certificate Sample