Back to Course

AWS Certified Security Specialty Course

0% Complete
0/0 Steps
  1. About the course and exam

    About this course (please watch)
  2. About the exam
  3. Why are domains out of order?
  4. [Cheat Sheet] Services you need to focus on learning
  5. Course resources and downloads
  6. Tips & tricks from learners who passed the exam
  7. Getting Started
    Our community
  8. Create and configure your AWS account
  9. Secure the root user
  10. Set up Budget Alarms
  11. Install tools and configure your machine
  12. Centrally deploy and manage AWS accounts
    The AWS SRA Project
  13. AWS Organizations
  14. About SCPs
  15. Deploying SCPs
  16. Testing SCPs
  17. Resource Control Policies (RCPs)
  18. AWS Control Tower
  19. [Quiz] Centrally deploy and manage AWS accounts
  20. Tagging best practices
  21. Design, implement, and troubleshoot authorization for AWS resources
    What are IAM roles?
  22. Managed vs. Inline Policies
  23. [Cheat Sheet] Anatomy of an IAM Policy
  24. Identity-based policies vs. resource-based policies
  25. IAM permissions boundaries
  26. Session control policies
  27. Policy evaluation flow
  28. Common policy conditions
  29. [Quiz] IAM Policies Roles and Permissions in AWS
  30. Trusted Entity Types
  31. Creating a service role
  32. Service-linked roles
  33. Cross-account access with roles
  34. [Quiz] Cross account access
  35. Cross-account roles for 3rd party access (prevent confused deputy)
  36. ABAC and RBAC for access control
  37. IAM Roles Anywhere
  38. [Quiz] IAM Advanced Access Control
  39. Design, implement, and troubleshoot authentication for AWS resources
    IAM Users vs. Identity Center Users
  40. Enable Identity Center (SSO)
  41. [Cheat Sheet] IAM Identity Center
  42. Delegating administration of Identity Center
  43. Creating permission sets (roles) from delegated admin
  44. Assuming roles created through Identity Center
  45. Centrally managing root access
  46. IAM Credentials Report
  47. AWS Directory Service
  48. About Amazon Cognito
  49. [Quiz] AWS Identity Center and Federated Access Management
  50. AWS security tools and services
    AWS Trusted Advisor
  51. About AWS CloudTrail
  52. Management, Data, and Insights Events
  53. The 3 ways of recording data
  54. [Cheat Sheet] CloudTrail Events and Data Recording
  55. Log file integrity
  56. Log file encryption
  57. Deploying AWS CloudTrail Organization Trail
  58. Centralized CloudTrail Lake for Incident Response
  59. [Quiz] CloudTrail Security and Logging
  60. About Amazon CloudWatch
  61. About Amazon GuardDuty
  62. [LAB] Amazon GuardDuty Demo
  63. Delegating and Centralizing GuardDuty
  64. Amazon EventBridge
  65. Amazon Detective
  66. Delegating and Centralizing Detective
  67. [LAB] Amazon Inspector
  68. About AWS Security Hub CSPM
  69. Delegating and Centralizing Security Hub CSPM
  70. [Quiz] Security Monitoring and Threat Detection
  71. Amazon S3 Security
    Managing access to S3 buckets
  72. [Cheat Sheet] S3 Bucket Policies vs. ACLs vs. IAM Policies
  73. [LAB] [Challenge] Create an IAM role for secure access to S3 based on a scenario
  74. Using Signed URLs
  75. [LAB] S3 Presigned URLs
  76. [Quiz] S3 Access Control
  77. Encrypting S3 data
  78. [Quiz] S3 Data Encryption
  79. S3 Access Points
  80. S3 Access Grants
  81. [Quiz] Managing S3 Access at Scale
  82. IAM Access Analyzer for S3
  83. S3 CORS
  84. [DEMO] Enable S3 Object Versioning
  85. S3 Object Lock
  86. [Cheat Sheet] Amazon S3 Protection Summary
  87. [Cheat Sheet] Create a least privilege S3 bucket policy
  88. [Quiz] Protecting S3 Data
  89. Amazon S3 Storage Classes
  90. Amazon S3 Glacier
  91. [Quiz] S3 Storage Classes
  92. Protecting data, credentials, and secrets
    AWS KMS
  93. The lifecycle of a KMS key
  94. Cross-account and multi-region keys
  95. Key aliases
  96. [DEMO] Creating a Symmetric Encryption KMS Key
  97. [Cheat Sheet] Encrypt and Decrypt Data with KMS and Data Keys
  98. [LAB] Encrypt and Decrypt Data with KMS and Data Keys
  99. [Scenario] [FREE] S3 bucket access denied issues
  100. Imported keys and external key stores
  101. Monitoring keys and encryption
  102. EBS Volume Encryption
  103. Amazon Elastic File System (EFS)
  104. AWS Secrets Manager
  105. Rotating secrets
  106. Replicate secrets across regions
  107. Cross-account secrets access
  108. AWS Systems Manager Parameter Store
  109. Securing Amazon RDS
  110. [LAB] Encrypting an unencrypted RDS database
  111. Creating and managing certificates
  112. Data replication and backups
  113. GenAI Security Controls in AWS and OWASP Top 10
  114. Secure and consistent deployment strategy for cloud resources
    About AWS CloudFormation
  115. Deploying resources with CloudFormation
  116. Multi-account and multi-region deployments
  117. Detecting and fixing drift
  118. [LAB] CloudFormation Guard
  119. [Quiz] CloudFormation
  120. Using AWS Service Catalog - Part 1
  121. Using AWS Service Catalog - Part 2
  122. About AWS Firewall Manager
  123. Using AWS RAM to share resources across accounts
  124. [Quiz] Service Catalog and Firewall Manager
  125. Security tools for code vulnerabilities
  126. Compliance and automatic remediation of AWS resources
    About AWS Config
  127. Delegating AWS Config
  128. AWS Config Initial Setup
  129. About AWS Systems Manager (SSM)
  130. AWS Config Automated Remediation with SSM
  131. [LAB] Automated S3 Remediation to Enforce Block Public Access
  132. [LAB] Remediate Open SSH Security Groups with AWS Config and SSM
  133. Monitoring AWS Config with EventBridge
  134. Customizing and monitoring EventBridge rules
  135. Transforming events with EventBridge
  136. Multi-account AWS Config
  137. AWS Config Aggregators and Advanced Queries
  138. AWS Config Multi-Account Conformance Packs
  139. [Quiz] AWS Config and EventBridge
  140. AWS SSM Patch Manager and Run Command
  141. About Amazon Macie
  142. Deploying Amazon Macie
  143. About AWS Audit Manager
  144. Running assessments with Audit Manager
  145. Evidence and generating reports with Audit Manager
  146. AWS Artifact
  147. About Amazon SNS for Data Protection
  148. [Quiz] Macie, SNS, and Audit Manager
  149. Securely deploying and accessing compute resources
    VPCs and their components
  150. [LAB] [DEMO] Launch and connect to EC2 instances
  151. SSM Session Manager
  152. [LAB] Secure EC2 Access with SSM Session Manager and KMS
  153. Hardening EC2 AMIs and Container Images
  154. [Quiz] Securely deploying and accessing compute resources
  155. Elastic Load Balancers
  156. ELB Health Checks and Encryption
  157. ELB Logging and Metrics
  158. VPC Endpoints and AWS PrivateLink
  159. AWS hybrid and remote connectivity
  160. Amazon VPC Network Access Analyzer
  161. Code Signing with AWS Signer
  162. Design, Implement, and Troubleshoot CloudWatch Logging
    Centralized CloudWatch Logging
  163. Configure the Amazon unified CloudWatch agent
  164. [LAB] Install and Configure the Amazon CloudWatch Unified Agent on EC2
  165. CloudWatch Logs data protection policies
  166. [LAB] Protect CloudWatch Logs data with masking policies
  167. [Cheat Sheet] Troubleshoot CloudWatch Agent configurations
  168. [Quiz] CloudWatch logging
  169. Working with security logs
    [LAB] Amazon VPC Flow Logs
  170. Transit Gateway Flow Logs
  171. Amazon Route 53 Resolver query logs
  172. [DEMO] Enable S3 Server Access Logs
  173. [LAB] S3 Server Access Logs – AWS Console
  174. [LAB] S3 Server Access Logs – CLI
  175. [Quiz] Network Flow Logs and Access Logs
  176. About Athena
  177. [DEMO] Using Athena with CloudTrail logs
  178. About AWS Glue
  179. Amazon Security Lake
  180. [DEMO] Enable Amazon Security Lake
  181. [DEMO] Querying Security Lake data with Athena
  182. Amazon OpenSearch
  183. Amazon Managed Grafana
  184. [Quiz] Security Log Analysis and Visualization
  185. Infrastructure, Network, and Edge Security
    About Amazon CloudFront
  186. CloudFront Origin Access Control (OAC)
  187. CloudFront and Geo Restrictions
  188. CloudFront Headers
  189. CloudFront Logging
  190. CloudFront Signed URL and Cookies
  191. CloudFront Field-Level Encryption
  192. AWS WAF and Rate Limiting
  193. About the AWS WAF
  194. AWS Shield Advanced
  195. API Gateway Security
  196. Design and implement an incident response plan
    Incident response planning basics for AWS
  197. Automating Incident Response in AWS
  198. Playbooks and runbooks
  199. [Cheat Sheet] The 6 phases of IR mapped to AWS services
  200. [Checklist] AWS Incident Response Planning Checklist
  201. [Quiz] Incident response planning
  202. Incident containment in AWS
  203. [Quiz] Choosing the Right EC2 Containment Layer
  204. Test and validate your Incident Response plans
  205. Detect security threats and anomalies
    About IAM Access Analyzer
  206. IAM Access Analyzer Unused Access
  207. [LAB] Check policies for new access before deployment with IAM Access Analyzer
  208. [LAB] Check IAM policies against a deny list with IAM Access Analyzer
  209. Deploying Access Analyzer Multi-Account
  210. [Quiz] IAM Access Analyzer
  211. [Scenario] Alert and monitoring for all root activities
  212. [LAB] Security Observability with CloudWatch Dashboards
  213. Respond to compromised resources and workloads
    [LAB] Automated security response with EventBridge and Lambda
  214. Incident management with SSM OpsCenter and Explorer
  215. Using Step Functions for Automated Security Workflows
  216. Automatically remediating incidents
  217. Using SageMaker AI Notebooks for Incident Response
  218. [Quiz] Automatically remediate incidents
  219. Practice Exams
    Where can I find the practice exams?
  220. Live Practice Exams Study Group Session 1
  221. Live Practice Exams Study Group Session 2
  222. Conclusion
    What to do once you pass the exam
Lesson 1 of 222
In Progress

About this course (please watch)

Christophe January 2, 2024

Hi, I’m Christophe Limpalair, Founder & Trainer at Cybr. This course is going to be a collection of 9+ years’ worth of AWS experience, as well as my research, notes, cheat sheets, labs, and everything else I could muster up to help you pass your exam.

Huge thanks to Sonrai Security for sponsoring this course!

I was able to make this entire course free thanks to our sponsor, Sonrai Security. They’re supporting free, high-quality cloud security education, and they made it possible for me to publish all of these lessons openly.

I’ll share more about their Cloud Permissions Firewall and Just-In-Time access throughout the course, but in the meantime you can check them out here!

What’s free and what’s not

This course has:

  • Video & text lessons (with full transcripts) (this is all free thanks to Sonrai)
  • Hands-On Labs (a few are free but most are premium)
  • Quizzes (a few are free but most are premium)
  • Practice exams (premium)
  • Study tips and tricks (free)
  • Cheat sheets (free)

The video and text lessons are available for free. The labs, quizzes, and practice exams are available to Cybr Premium Members. There are a few exceptions since we have a few free labs and quizzes sprinkled throughout the syllabus, but most will require a membership (either monthly or yearly) to access.

FAQs

Some frequently asked questions:

  • Do I need a premium membership to pass my exam? Nope! We designed as much free content as possible to help you pass the exam without having to have a Cybr Premium membership. With that said, you might still want to consider a membership to access our premium version of this course. This Premium Edition is designed for professionals who want to learn AWS security in practice, not just theory. It will also give you a lot more practice with quizzes and practice exams.
  • Why can’t I mark a lesson as complete? Lessons that have videos require that you watch the video in order to be able to mark them as complete. If the “Mark Complete” button is missing, that’s why!
  • What prerequisites do I need? We highly recommend having at least 1 year of experience working in AWS. This is not an entry level certification, and that’s important to keep in mind. If you’re not already at least a little bit familiar with the AWS CLI, what a VPC is, what an AWS Organization is, etc…then we do not recommend enrolling in this course right now. Instead, go for the AWS Cloud Practitioner or AWS Certified Solutions Architect – Associate first, and then come back to this. Our Intro to AWS Security course is also a great starting point.

Let’s get started!

If you know anyone else studying for this cert or interested in passing it, don’t forget to share with them!

Otherwise, let’s get AWS Security Specialty Certified! See you in the course.

Responses

Your email address will not be published. Required fields are marked *

  1. I’m preparing for SCS-C02 as well.
    I’ve been working relatively in a good pace, but that has been disturbed over the Christmas and New Year. Now I need to get back on track and prepare well for my soon to be exam!

  2. Hello everyone, Glad to be here and to take part of this journey.
    I’m preparing for SCS-C02 as well and will be more than happy to learn and share with you all 🙂.

    1. Hey welcome to Cybr! Please keep in mind this course is in very early stages and still in active development. We’ve got quite a bit of content coming for it soon, including videos 🙂 happy learning!

  3. I successfully passed the previous version of this certification (Security Specialty) in early 2021, but it has now lapsed. Since taking the exam my role at work took me into a different direction, – to GCP Cloud, and I’ve taken and passed almost all GCP certification except 1. I’m now thinking about retaking this exam. I still have my notes from the previous version. Is there much difference this version and the previous version? I’m thinking of saving time and only going through the delta that has changed.

  4. Been thinking about looking into this cert for about 6 months. This course may have just solidified my choice. Thank you!

  5. Thank you very much Chris for taking your time and creating this course I want to prepare for this certification, therefore I will encourage while studying with your material

  6. Thank you, Christophe, for this content, which I find both interesting and informative.
    The course was created on October 10, 2024, and many sections are still in the process of being developed or completed.
    Do you have an estimated date for when the full course will be available?

  7. Does the premium AWS Certified Security Specialty and the free version become linked like the experience is one course?

  8. Hello everyone, excited to join this journey toward the AWS Security Specialty (SCS-C02) certification, ready to learn, share, and grow together with the community.

  9. I am a DevSecOps engineer currently preparing for SCS-C03. Hoping to give the certification within a month. I was looking for resources to prepare and came upon this course. Thanks for offering this course.

  10. I am preparing for SCS-C03 as its my certification renewal time.

    PS: I have been following you since you were in Linux Academy and check your posts on LinkedIn from time to time.

    1. This just made my day! Love to see Linux Academy folks here! You should DM me on LinkedIn so we can catch up and I can see what you’re up to 🙂

    1. I covered this in the video 🙂 please watch! But no, this course and certification exam is NOT for absolute beginners to AWS/cloud. I would recommend starting with our other courses first

  11. Hi Could you please let me know the answer for the following questions?
    is this course is completed one or still in progress? if it is still in progress how long will it takes?