Cisco Training Courses

Insoft has been serving IT community with official Cisco training offering since 2010. Find all the relevant information on Cisco training on this page.

View More

Cisco Certifications

Experience a blended learning approach that combines the best of instructor-led training and self-paced e-learning to help you prepare for your certification exam.

View More

Cisco Training Catalogue

Explore a wide variety of the Cisco courses, across different countries as well as online courses.

Browse Catalogue

Cisco Learning Credits

Cisco Learning Credits (CLCs) are prepaid training vouchers redeemed directly with Cisco that make planning for your success easier when purchasing Cisco products and services.

Have CLCs and want to redeem them?

Cisco Continuing Education

The Cisco Continuing Education Program offers all active certification holders flexible options to recertify by completing a variety of eligible training items.

View More

Cisco Digital Learning

Certified employees are VALUED assets. Explore Cisco official Digital Learning Library to educate yourself through recorded sessions.

Browse CDLL Catalogue

Cisco Business Enablement

The Cisco Business Enablement Partner Program focuses on sharpening the business skills of Cisco Channel Partners and customers.

View More

Fortinet Technical Certifications

The Fortinet Network Security Expert (NSE) program is an eight-level training and certification program to teach engineers of their network security for Fortinet FW skills and experience.

View More

Fortinet Technical Courses

Insoft is recognised as Fortinet Authorized Training Center in selected locations across EMEA.

View More

Fortinet Training Catalogue

Explore the full Fortinet training catalogue. The program includes a wide range of self-paced and instructor-led courses.

Browse Catalogue

Official ATC Status

Check our ATC Status across selected countries in Europe.

View More

Fortinet Services Packages

Insoft Services has developed a specific solution to streamline and simplify the process of installing or migrating to Fortinet Products.

Browse Packages

Prepforce Bootcamp

The only comprehensive source available today to prepare for Fortinet NSE 8 certification globally.

View More

Microsoft Training

Insoft Services provides Microsoft training in EMEAR. We offer Microsoft technical training and certification courses that are led by world-class instructors.

View More

Technical Training

The evolution of Extreme Networks Technical Training provides a comprehensive progressive pathway from Associate to Professional accreditation.

View More

Technical Certification

We provide comprehensive curriculum of technical competency skills on the certification accomplishment.

View More

Courses Catalogue

Find all the Extreme Networks online and instructor led class room based calendar here.

View More

ATP Accreditation

As an authorised training partner (ATP), Insoft Services ensures that you receive the highest standards of education available.

View More

Consulting package

We provide innovative and advanced support for designing, implementing and optimising IT solutions. Our client-base includes some of the largest Telcos globally.

Solutions and services

Globally recognised team of certified experts helps you make a smoother transition with our pre-defined consultancy, installation and migration packages for a wide range of Fortinet products.

About Us

Our training portfolio includes a wide range of IT training from IP providers, including Cisco, Extreme Networks, Fortinet, Microsoft, to name a few, in EMEA.

View More
  • +44 20 7131 0263
  • Security Engineering on AWS

    Duration
    3 days
    Delivery
    (Online and onsite)
    Price
    Price Upon Request

    Security is a concern for both customers in the cloud, and those considering cloud adoption. An increase in cyberattacks and data leaks remains top of mind for most industry personnel. The Security Engineering on AWS course addresses these concerns by helping you better understand how to interact and build with Amazon Web Services (AWS) in a secure way. In this course, you will learn about managing identities and roles, managing and provisioning accounts, and monitoring API activity for anomalies. You will also learn about how to protect data stored on AWS. The course explores how you can generate, collect, and monitor logs to help identify security incidents. Finally, you will review detecting and investigating security incidents with AWS services.

    • State an understanding of AWS cloud security based on the CIA triad.
    • Create and analyze authentication and authorizations with IAM.
    • Manage and provision accounts on AWS with appropriate AWS services.
    • Identify how to manage secrets using AWS services.
    • Monitor sensitive information and protect data via encryption and access controls.
    • Identify AWS services that address attacks from external sources.
    • Monitor, generate, and collect logs.
    • Identify indicators of security incidents.
    • Identify how to investigate threats and mitigate using AWS services.

    Day 1

     

    Module 1: Security Overview and Review

    • Explain Security in the AWS Cloud.
    • Explain AWS Shared Responsibility Model.
    • Summarize IAM, Data Protection, and Threat Detection and Response.
    • State the different ways to interact with AWS using the console, CLI, and SDKs.
    • Describe how to use MFA for extra protection.
    • State how to protect the root user account and access keys.

    Module 2: Securing Entry Points on AWS

    • Describe how to use multi-factor authentication (MFA) for extra protection.
    • Describe how to protect the root user account and access keys.
    • Describe IAM policies, roles, policy components, and permission boundaries.
    • Explain how API requests can be logged and viewed using AWS CloudTrail and how to view and analyze access history.
    • Hands-On Lab: Using Identity and Resource Based Policies.

    Module 3: Account Management and Provisioning on AWS

    • Explain how to manage multiple AWS accounts using AWS Organizations and AWS Control Tower.
    • Explain how to implement multi-account environments with AWS Control Tower.
    • Demonstrate the ability to use identity providers and brokers to acquire access to AWS services.
    • Explain the use of AWS IAM Identity Center (successor to AWS Single Sign-On) and AWS Directory Service.
    • Demonstrate the ability to manage domain user access with Directory Service and IAM Identity Center.
    • Hands-On Lab: Managing Domain User Access with AWS Directory Service.

     

    Day 2

     

    Module 4: Secrets Management on AWS

    • Describe and list the features of AWS KMS, CloudHSM, AWS Certificate Manager (ACM), and AWS Secrets Manager.
    • Demonstrate how to create a multi-Region AWS KMS key.
    • Demonstrate how to encrypt a Secrets Manager secret with an AWS KMS key.
    • Demonstrate how to use an encrypted secret to connect to an Amazon Relational Database Service (Amazon RDS) database in multiple AWS Regions.
    • Hands-on lab: Lab 3: Using AWS KMS to Encrypt Secrets in Secrets Manager.

    Module 5: Data Security

    • Monitor data for sensitive information with Amazon Macie.
    • Describe how to protect data at rest through encryption and access controls.
    • Identify AWS services used to replicate data for protection.
    • Determine how to protect data after it has been archived.
    • Hands-on lab: Lab 4: Data Security in Amazon S3.

    Module 6: Infrastructure Edge Protection

    • Describe the AWS features used to build secure infrastructure.
    • Describe the AWS services used to create resiliency during an attack.
    • Identify the AWS services used to protect workloads from external threats.
    • Compare the features of AWS Shield and AWS Shield Advanced.
    • Explain how centralized deployment for AWS Firewall Manager can enhance security.
    • Hands-on lab: Lab 5: Using AWS WAF to Mitigate Malicious Traffic.

     

    Day 3

     

    Module 7: Monitoring and Collecting Logs on AWS

    • Identify the value of generating and collecting logs.
    • Use Amazon Virtual Private Cloud (Amazon VPC) Flow Logs to monitor for security events.
    • Explain how to monitor for baseline deviations.
    • Describe Amazon EventBridge events.
    • Describe Amazon CloudWatch metrics and alarms.
    • List log analysis options and available techniques.
    • Identify use cases for using virtual private cloud (VPC) Traffic Mirroring.
    • Hands-on lab: Lab 6: Monitoring for and Responding to Security Incidents.

    Module 8: Responding to Threats

    • Classify incident types in incident response.
    • Understand incident response workflows.
    • Discover sources of information for incident response using AWS services.
    • Understand how to prepare for incidents.
    • Detect threats using AWS services.
    • Analyze and respond to security findings.
    • Hands-on lab: Lab 7: Incident Response.
    • Security engineers
    • Security architects
    • Cloud architects
    • Cloud operators working across all global segments.
    • Completed the following courses:
      • AWS Security Essentials (Classroom training) or
      • AWS Security Fundamentals (Second Edition) (digital) and
      • Architecting on AWS (Classroom Training)
    • Working knowledge of IT security practices and infrastructure concepts.
    • Familiarity with the AWS Cloud.

    Security is a concern for both customers in the cloud, and those considering cloud adoption. An increase in cyberattacks and data leaks remains top of mind for most industry personnel. The Security Engineering on AWS course addresses these concerns by helping you better understand how to interact and build with Amazon Web Services (AWS) in a secure way. In this course, you will learn about managing identities and roles, managing and provisioning accounts, and monitoring API activity for anomalies. You will also learn about how to protect data stored on AWS. The course explores how you can generate, collect, and monitor logs to help identify security incidents. Finally, you will review detecting and investigating security incidents with AWS services.

    • State an understanding of AWS cloud security based on the CIA triad.
    • Create and analyze authentication and authorizations with IAM.
    • Manage and provision accounts on AWS with appropriate AWS services.
    • Identify how to manage secrets using AWS services.
    • Monitor sensitive information and protect data via encryption and access controls.
    • Identify AWS services that address attacks from external sources.
    • Monitor, generate, and collect logs.
    • Identify indicators of security incidents.
    • Identify how to investigate threats and mitigate using AWS services.

    Day 1

     

    Module 1: Security Overview and Review

    • Explain Security in the AWS Cloud.
    • Explain AWS Shared Responsibility Model.
    • Summarize IAM, Data Protection, and Threat Detection and Response.
    • State the different ways to interact with AWS using the console, CLI, and SDKs.
    • Describe how to use MFA for extra protection.
    • State how to protect the root user account and access keys.

    Module 2: Securing Entry Points on AWS

    • Describe how to use multi-factor authentication (MFA) for extra protection.
    • Describe how to protect the root user account and access keys.
    • Describe IAM policies, roles, policy components, and permission boundaries.
    • Explain how API requests can be logged and viewed using AWS CloudTrail and how to view and analyze access history.
    • Hands-On Lab: Using Identity and Resource Based Policies.

    Module 3: Account Management and Provisioning on AWS

    • Explain how to manage multiple AWS accounts using AWS Organizations and AWS Control Tower.
    • Explain how to implement multi-account environments with AWS Control Tower.
    • Demonstrate the ability to use identity providers and brokers to acquire access to AWS services.
    • Explain the use of AWS IAM Identity Center (successor to AWS Single Sign-On) and AWS Directory Service.
    • Demonstrate the ability to manage domain user access with Directory Service and IAM Identity Center.
    • Hands-On Lab: Managing Domain User Access with AWS Directory Service.

     

    Day 2

     

    Module 4: Secrets Management on AWS

    • Describe and list the features of AWS KMS, CloudHSM, AWS Certificate Manager (ACM), and AWS Secrets Manager.
    • Demonstrate how to create a multi-Region AWS KMS key.
    • Demonstrate how to encrypt a Secrets Manager secret with an AWS KMS key.
    • Demonstrate how to use an encrypted secret to connect to an Amazon Relational Database Service (Amazon RDS) database in multiple AWS Regions.
    • Hands-on lab: Lab 3: Using AWS KMS to Encrypt Secrets in Secrets Manager.

    Module 5: Data Security

    • Monitor data for sensitive information with Amazon Macie.
    • Describe how to protect data at rest through encryption and access controls.
    • Identify AWS services used to replicate data for protection.
    • Determine how to protect data after it has been archived.
    • Hands-on lab: Lab 4: Data Security in Amazon S3.

    Module 6: Infrastructure Edge Protection

    • Describe the AWS features used to build secure infrastructure.
    • Describe the AWS services used to create resiliency during an attack.
    • Identify the AWS services used to protect workloads from external threats.
    • Compare the features of AWS Shield and AWS Shield Advanced.
    • Explain how centralized deployment for AWS Firewall Manager can enhance security.
    • Hands-on lab: Lab 5: Using AWS WAF to Mitigate Malicious Traffic.

     

    Day 3

     

    Module 7: Monitoring and Collecting Logs on AWS

    • Identify the value of generating and collecting logs.
    • Use Amazon Virtual Private Cloud (Amazon VPC) Flow Logs to monitor for security events.
    • Explain how to monitor for baseline deviations.
    • Describe Amazon EventBridge events.
    • Describe Amazon CloudWatch metrics and alarms.
    • List log analysis options and available techniques.
    • Identify use cases for using virtual private cloud (VPC) Traffic Mirroring.
    • Hands-on lab: Lab 6: Monitoring for and Responding to Security Incidents.

    Module 8: Responding to Threats

    • Classify incident types in incident response.
    • Understand incident response workflows.
    • Discover sources of information for incident response using AWS services.
    • Understand how to prepare for incidents.
    • Detect threats using AWS services.
    • Analyze and respond to security findings.
    • Hands-on lab: Lab 7: Incident Response.
    • Security engineers
    • Security architects
    • Cloud architects
    • Cloud operators working across all global segments.
    • Completed the following courses:
      • AWS Security Essentials (Classroom training) or
      • AWS Security Fundamentals (Second Edition) (digital) and
      • Architecting on AWS (Classroom Training)
    • Working knowledge of IT security practices and infrastructure concepts.
    • Familiarity with the AWS Cloud.
      Upcoming Dates
      Date on Request

    Follow Up Courses

    Filter
    • 3 days
      Date on Request
      Price on Request
      Book Now
    • 2 days
      Date on Request
      Price on Request
      Book Now
    • 1 days
      Date on Request
      Price on Request
      Book Now
    • 2 days
      Date on Request
      Price on Request
      Book Now
    • 1 days
      Date on Request
      Price on Request
      Book Now
    • 3 days
      Date on Request
      Price on Request
      Book Now
    • 1 days
      Date on Request
      Price on Request
      Book Now
    • 1 days
      Date on Request
      Price on Request
      Book Now
    • 1 days
      Date on Request
      Price on Request
      Book Now
    • 1 days
      Date on Request
      Price on Request
      Book Now

    Know someone who´d be interested in this course?
    Let them know...

    Use the hashtag #InsoftLearning to talk about this course and find students like you on social media.