Designing Secure solutions in AWS - Level 2

AVG Duration8h


This learning path has been designed for those looking to enhance their skills when designing secure solutions in AWS at an intermediate level, ideally for those who have more than 6 months experience working with AWS.

Using a combination of on-demand courses and hands-on labs you will be introduced to a number of different AWS services and features. Using the new skills obtained from this learning path you will be able to effectively demonstrate knowledge of how to effectively implement levels of security across your AWS solutions.

Learning Objectives:

By the end of this learning path you will be able to:

  • Analyze the available options to secure credentials using features of AWS Identity and Access Management (IAM)
  • Evaluate the appropriate routing mechanism to securely access AWS service endpoints or internet-based resources from an Amazon VPC
  • Evaluate the appropriate encryption options available for data in transit and when at rest across AWS services
  • Evaluate the most appropriate key management service and options based on business requirements and governance controls


Your certificate for this learning path

Training Content

Course - Intermediate - 3h 3m
Designing Secure solutions in AWS - Level 2
This course covers the core learning objective to meet the requirements of Designing secure solutions in AWS - level 2 of the AWS Cloud Architect Job Role
Hands-on Lab - Intermediate - 1h 15m
Advanced Roles and Groups Management Using IAM
Learn how to manage our organization using IAM Users and Groups and IAM Roles 
Hands-on Lab - Beginner - 1h
Controlling Amazon DynamoDB Access Using AWS IAM Policies
Learn how to control access to items in an Amazon DynamoDB table using AWS IAM policies in this hands-on lab.
Hands-on Lab - Advanced - 2h 30m
Review and Secure a Lambda Function with an IAM Least Privilege Based Security Policy
Learn how to use CloudTrail and Athena to analyse collected AWS API calls. The results of the analysis will be used to improve the security posture of a deployed Lambda function which by design saves files into an S3 bucket. The IAM execution Role permission set will be improved by applying the r...
Hands-on Lab - Beginner - 45m
Encrypting S3 Objects Using SSE-KMS
This lab explores how to encrypting S3 objects in AWS using SSE-KMS.
Hands-on Lab - Intermediate - 2h
Using Amazon Key Management Service to Encrypt S3 and EBS Data
In this lab, you'll learn about Amazon Key Management Service to encrypt S3 and EBS Data at an intermediate level. Get started today!
Hands-on Lab - Intermediate - 1h
Monitoring VPC and Firewall Operations With Network Telemetry
In this lab, you will enable flow logs for subnets inside a VPC and firewall rules logging to be able to monitor performed network operations.
Hands-on Lab - Advanced - 2h 15m
VPN Connections with an Amazon VPC Using Dynamic Routing
Set Up VPN Connections with an Amazon Virtual Private Cloud using dynamic routing (BGP), and manage traffic using multi-homed routers
About the Author
Learning paths175

Stuart has been working within the IT industry for two decades covering a huge range of topic areas and technologies, from data center and network infrastructure design, to cloud architecture and implementation.

To date, Stuart has created 150+ courses relating to Cloud reaching over 180,000 students, mostly within the AWS category and with a heavy focus on security and compliance.

Stuart is a member of the AWS Community Builders Program for his contributions towards AWS.

He is AWS certified and accredited in addition to being a published author covering topics across the AWS landscape.

In January 2016 Stuart was awarded ‘Expert of the Year Award 2015’ from Experts Exchange for his knowledge share within cloud services to the community.

Stuart enjoys writing about cloud technologies and you will find many of his articles within our blog pages.