Securing the Cloud: Foundations w/ Andrew Krug (16 Hours)

Securing the Cloud: Foundations w/ Andrew Krug

Instructor: Andrew Krug

Includes: Six months of complimentary access to the BHIS Antisyphon Cyber Range, certificate of participation


In this course, we’ll explore Amazon Web Services (AWS) as a platform. We will take the perspective of a new startup company spinning up infrastructure in AWS for the very first time. We’ll use a scenario-based approach, where you’ll don the persona of a security engineer on your first day at a new startup. This course will demonstrate ideas like secure-by-default and will examine services and patterns for locking down defaults using a combination of open source and platform native tooling. Finally, attendees will walk away with a practical understanding of various controls, detections, and guardrails.


KEY TAKEAWAYS

In this course, students will learn how to:

  • Perform incident response in AWS
  • Provide technical guidance to teams implementing security controls on AWS
  • Enact user access management models
  • Audit for anti-patterns in cloud security
  • Prevent common types of data breaches on AWS
  • Avoid common mistakes and data breaches
  • Build scalable infrastructure

Students will also:

  • Gain insight into how to perform architecture reviews
  • Gain insight into developing runbooks and playbooks for their organization
  • Gain awareness of open-source tools to force multiply the security effort

WHO SHOULD TAKE THIS COURSE

Blue teamers, sysadmins, network admins, those working in devsecops, first responders, or anyone that wants to learn AWS cloud basics.


AUDIENCE SKILL LEVEL

This foundational course is for folks without any AWS skillset. The ideal attendee is someone looking to pivot from traditional sysadmin to CloudSec. Attendees with moderate experience will still benefit from hands-on labs with industry-standard, open-source tools and prescriptive guidance.


STUDENT REQUIREMENTS

Students should have familiarity with basic shell (bash), text editors, and launching VMs on their own machine.


WHAT EACH STUDENT SHOULD BRING

Students should have an AWS account that they are accountable and billable for just for this course. Please do not utilize your existing account.


WHAT STUDENTS WILL BE PROVIDED WITH

  • Incident response cheat sheet of Athena queries
  • Downloadable VM file for the course
  • CloudFormation templates to bootstrap secure environments
  • Attack bot infrastructure for simulation of the course attack tactics

TRAINER & AUTHOR


COURSE SCHEDULE

Please keep an eye on this page and the training schedule for details on when this course will run again.


Join the Wild West Hackin’ Fest Discord server to stay updated on future training and webcasts: Join Our Server!