Live Online Training
Presented by NCC Group
The 3 day course will take place online between 9am and 5pm (GMT) on 21–23 March 2022.
The price is £2,202 (inc VAT/£1,835 ex VAT).
The course has been cancelled.
Ever more enterprises are moving their operations to the cloud, with AWS being the largest player in the market at present. But how can you be sure the cloud environment is safe against hackers?
The information provided in this course will be useful for both penetration testers and infrastructure engineers of an AWS account, covering interesting attack vectors and providing details on how a healthy AWS environment should be configured to prevent, mitigate and identify attacks if and when they occur.
The topics discussed in this course are beneficial for those aiming to achieve the official Security Specialty certification available from AWS.
Agenda – 3 days
- Introduction to AWS basics
- Hands on with the AWS command line and tools like Scout2 and prowler
- AWS networking and common issues
- Identity and Access Management (IAM) in-depth including sample policies and interesting attack vectors
- The EC2 service and finding credentials with simple commands
- Protecting files stored on S3 and common attacker vectors Relational Database Service (RDS)
- Monitoring and logging
- Scripting with AWS
- A typical assessment against an AWS environment + CTF
Who should take this course?
NCC Group’s AWS security review training is a focused course for security consultants and cloud architects interested in learning how to assess the main elements of a cloud environment based in AWS. They will cover the techniques and tools necessary to perform a thorough security review and provide an understanding of the major risks, along with the best security practices that should be considered when designing a cloud infrastructure.
- Participants are expected to have some familiarity with Linux, the Linux command line and basic IP networking knowledge.
- Students should bring a laptop with an SSH client installed. The laptop should not have any corporate security software which restricts Internet access or forces use of a corporate proxy server for browsing.
- Recommended setups are: Python installed on Linux, MacOS, Windows with WSL or MobaXTerm (PuTTY is possible, but requires extra setup).
PDF presentation of over 300 slides covering all modules of the training course.
About the trainers
NCC Group is a global expert in cyber security and risk mitigation, working with businesses to protect their brand, value and reputation against the ever-evolving threat landscape.
With their knowledge, experience and global footprint, they are best placed to help businesses identify, assess, mitigate & respond to the risks they face.