5, 10 or 20 seats+ for your team - learn more
QryptoTremolo is an up-and-coming startup that develops next-generation financial services. The company chose to develop and operate in AWS to take advantage of its pay-as-you-go model for infrastructure. QryptoTremolo’s development teams have had unrestricted access to the AWS accounts, and ad hoc development has evolved organically, increasing the risk for security breaches. You’ve been hired to lower this risk and bring security controls to these accounts so the company doesn’t end up on the front-page news… because there is such a thing as bad publicity.
In these liveProjects, you’ll learn to automate configuration of security controls for AWS accounts, focusing on compliance and forensics. You’ll set up AWS Config with rules, deploy custom Config rules, build a CI/CD CodeBuild pipeline to automate change control, create forensic SQL queries, and automate the configuration of organizational service control policies (SCP) to prevent resource tampering. When you’re done with these liveProjects, you’ll have gained important skills for bringing compliance and observability to AWS accounts, and the peace of mind that comes with knowing your AWS accounts are secure.
For more on AWS security, please see AWS Security: Audit and Intrusion Detection Automation.
This is one of the most thoroughly created courses on these topics that I’ve ever taken. Every topic provided a specific and important use case, ample resources, well-defined expectations for deliverables, and a complete and repeatable solution to the problem.
This liveProject series is for security engineers with intermediate experience in AWS and infrastructure as code. To begin these liveProjects you’ll need to be familiar with the following:TOOLS
Note: These exercises rely upon the AWS platform, which may carry usage costs.
In these liveProjects, you’ll learn how to automate security service controls in the AWS cloud with a focus on testing and change control.
geekle is based on a wordle clone.