AWS Certified Security Certification Boot Camp

This 3-day AWS Security Specialist course offers a comprehensive overview of core security concepts, hands-on labs, and best practices aligned with the AWS Certified Security – Specialty (SCS-C02) exam objectives. By balancing theoretical instruction with practical exercises and “Why It Matters” insights, you’ll be equipped with the skills and mindset needed to secure AWS environments effectively—and pass the certification exam on Day 3.

Retail Price: $2,495.00

Next Date: 02/03/2025

Course Days: 3


Enroll in Next Date

Request Custom Course


Master AWS Security with the CIA Triad

Confidentiality. Integrity. Availability. These three pillars form the foundation of cloud security. Our AWS Certified Security Specialty course empowers you to safeguard your organization’s data by applying proven, real-world best practices based on the CIA triad.

 

Reduce Exam Stress – Free Retake

Don’t let exam jitters hold you back. We include a second exam voucher and course retake at no extra cost, giving you the ultimate peace of mind as you work toward AWS Certified Security Specialty success.

 

Prerequisites

While no prerequisites are required, we recommend completing AWS Security Essentials or AWS Security Fundamentals (Second Edition), and Architecting on AWS training. These courses build a strong foundation in AWS security concepts and cloud architecture principles.

 


Outline

 
Day One
AM Morning
  • Course Introduction and Exam Overview
  • Overview of the AWS Certified Security – Specialty (SCS-C02) exam domains
  • Course structure and expectations
  • Hands-on environment setup: AWS console walk-through and lab credentials
  • Identity & Access Management (IAM) Foundations
  • IAM entities (users, groups, roles, policies)
  • Policy evaluation logic and permission boundaries
  • Multi-factor authentication (MFA) best practices
  • Lab: Creating IAM users, groups, and roles; assigning managed and custom policies
PM Afternoon
  • Advanced IAM and Access Control
  • IAM Access Analyzer
  • Cross-account roles and delegation
  • AWS Organizations and service control policies (SCPs)
  • Lab: Setting up cross-account roles; enforcing guardrails with SCPs
  • AWS Security Services Overview
  • High-level overview of AWS security services (WAF, GuardDuty, Macie, Shield, Config, etc.)
  • When to use specific services
  • Lab: Exploring key service dashboards and alerts

Why It Matters

Proper IAM design is the cornerstone of AWS security. Mastering IAM helps prevent unauthorized access, enforces least privilege, and sets the stage for all subsequent security measures. Leveraging the right AWS security services at the right time can minimize risks, reduce manual overhead, and ensure compliance. Advanced IAM concepts and security services knowledge make your cloud architecture resilient.

 
Day Two
AM Morning
  • Logging and Monitoring in AWS
  • CloudWatch metrics, logs, and alarms
  • CloudTrail for API call logging
  • AWS Config for resource configuration tracking
  • Correlating logs for root-cause analysis
  • Lab: Configuring CloudWatch alarms, CloudTrail insights, and investigating suspicious behavior
  • Threat Detection and Incident Response
  • GuardDuty for threat detection
  • Amazon Detective for deeper investigations
  • AWS Security Hub for central security management
  • Incident response best practices
  • Lab: Setting up GuardDuty, responding to alerts, and investigating a simulated breach
PM Afternoon
  • Infrastructure Security
  • VPC security (security groups, NACLs, subnets)
  • Network segmentation and best practices
  • AWS WAF and AWS Shield (Standard/Advanced)
  • Lab: Configuring a secure VPC, setting up WAF rules
  • Data Protection
  • Encryption at rest (AWS KMS, CloudHSM)
  • Encryption in transit (TLS, AWS Certificate Manager)
  • S3 bucket policies and encryption settings
  • Lab: Implementing SSE-KMS, client-side encryption, and server-side encryption

Why It Matters

A robust logging and monitoring setup enables proactive threat detection and quick response. Visibility into your environment is essential to mitigate risks before they escalate. Ensuring secure network boundaries and protecting data at every stage is fundamental for compliance, privacy, and maintaining user trust. These safeguards help defend against unauthorized access and data breaches.

 
Day Three
AM Morning
  • Security Automation and Governance
  • Automating secure infrastructure with CloudFormation or the AWS CDK
  • Governance at scale using AWS Organizations
  • Automated compliance checks with AWS Config rules
  • Lab: Building secure CloudFormation stacks, configuring AWS Config rules
  • Review of Key Exam Domains
  • Recap of SCS-C02 domains (IAM, Logging & Monitoring, Infrastructure Security, Data Protection, Threat Detection & Incident Response)
  • Common pitfalls and exam strategies
PM Afternoon
  • Final Exam Preparation
  • Practice questions and group discussion
  • Exam timing, structure, and official guidelines
  • Last-minute tips, reference materials, and study resources
  • AWS Certified Security – Specialty (SCS-C02) Exam
  • Administered in a proctored setting (on-site or online)
  • Exam duration: as per AWS guidelines (typically 170 minutes)

Why It Matters

Automation helps maintain consistency, reduce manual errors, and ensure security best practices are applied across multiple AWS accounts. Governance at scale maintains compliance and operational efficiency. Proper exam readiness ensures you can confidently showcase your expertise. By the end of Day 3, you’ll have hands-on practice, theoretical knowledge, and a clear strategy for passing the AWS Certified Security – Specialty exam.

Course Dates Course Times (EST) Delivery Mode GTR
2/3/2025 - 2/5/2025 11:00 AM - 7:00 PM Virtual Enroll
4/28/2025 - 4/30/2025 9:00 AM - 5:00 PM Virtual Enroll
6/2/2025 - 6/4/2025 11:00 AM - 7:00 PM Virtual Enroll