 Cert Prep - 1 Threat Detection and Incident Response/thumbnail.webp?token=Y291cnNlcy8yMDI0LzAxL0FXUyBDZXJ0aWZpZWQgU2VjdXJpdHkgLSBTcGVjaWFsdHkgKFNDUy1DMDIpIENlcnQgUHJlcCAtIDEgVGhyZWF0IERldGVjdGlvbiBhbmQgSW5jaWRlbnQgUmVzcG9uc2UvdGh1bWJuYWlsLndlYnA6MTc4MzI1NjU0OTplMzI4NTgxNWE4NDY0OWY2OGY4ODg4MGQwMTRkMjdkMTAxNGVjYzEyZmFhMThiNDYwNjRjN2VkNDE2NTRiZTk2)
AWS Certified Security - Specialty (SCS-C02) Cert Prep: 1 Threat Detection and Incident Response
37mIntermediate2024-01-08
Authors
Noah Gift
MLOps Expert | Solopreneur | Author | Adjunct Professor | CTO
Course details
The AWS Certified Security – Specialty (SCS-C02) exam is intended for individuals who perform a security role. The exam validates a candidate’s ability to effectively demonstrate knowledge about securing the AWS platform. This course, first in a learning path to help you prepare for the exam, focuses on threat detection and incident response. MLOps expert, author, and adjunct professor Noah Gift guides you through this domain of the exam. Learn how to design and implement incident response plans, respond to compromised resources and workloads, and use AWS to automate incident response. Find out how to use Amazon Detective to conduct root cause analysis, and explore ways to capture forensics data from compromised resources. Go over querying logs to validate security events, as well as preserving forensic artifacts with S3 Object Lock and preparing and recovering services after incidents. Plus, learn about high availability and compliance.
Skills covered
Cloud SecurityIncident ResponseAmazon Web Services (AWS)AmazonCybersecurityCert PrepCloud Computing
Concepts
0. Introduction
- 01 - Course overview
1. Domain 1 - Threat Detection and Incident Response
- 02 - Designing and implementing incident response plans
- 03 - Demo - AWS Security Hub
- 04 - Responding to compromised resources and workloads
- 05 - Automating incident response with AWS Lambda
- 06 - Conducting root cause analysis with Amazon Detective
- 07 - Capturing forensics data from compromised resources
- 08 - Querying logs to validate security events
- 09 - Preserving forensic artifacts with S3 Object Lock
- 10 - Preparing and recovering services after incidents
- 11 - High availability
- 12 - Compliance
Conclusion
- 13 - Threat detection and incident response summary
Related courses
- Certificate of Cloud Security Knowledge (CCSK) Cert Prep
- Building a Multicloud Security Program: Strategy, Implementation, and Emerging Trends
- Modern Cloud Security: Shift-Left, Observability, and Automated Defense
- Cybersecurity Awareness: Cloud Security
- Building Customer Identity and Access Management (CIAM) in Your Applications on AWS
- Cloud Security Architecture for the Enterprise
- ISC2 Certified Cloud Security Professional (CCSP) Cert Prep
- 5G Security in Depth: A Hands-On Approach to Securing RAN, Core, and Telco Cloud