Skip to content
Dev
Way
AWS Certified Security – Specialty
Study time
00:00:00
0/15
Reset
Roadmap
Courses
Home
Tuesday, June 23
Your lessons
You've completed 0% of the course. Pick up where you left off.
Today's plan
Threat detection services
Incident response & automated remediation
AWS CloudTrail
CloudWatch Logs & VPC Flow Logs
Study time
Paused
00:00:00
Press play to track your session
Activity
This week
0/15 lessons
0/40 hours
Your modules
All
In progress
Upcoming
Completed
Threat Detection & IR: Detecting threats with GuardDuty, Security Hub, Detective and Inspector, then responding with automated remediation, forensics and isolation (Domain 1 · 14%)
0%
Logging & Monitoring: Capturing, centralising, validating and analysing logs - CloudTrail, CloudWatch Logs, VPC Flow Logs, Config and Athena (Domain 2 · 18%)
0%
Infrastructure Security: Securing the network and edge - security groups, NACLs, Network Firewall, WAF, Shield, plus hardening, bastion-free access and patching (Domain 3 · 20%)
0%
Identity & Access Management: Advanced IAM - policy evaluation logic, permission boundaries, SCPs, resource and cross-account policies, federation, Identity Center and ABAC (Domain 4 · 16%)
0%
Data Protection: Protecting data with KMS key policies and grants, envelope encryption, rotation, CloudHSM, ACM, S3 encryption, Secrets Manager and Macie (Domain 5 · 18%)
0%
Governance: Governing many accounts at scale - Organizations and SCPs, Control Tower, Config conformance packs, Audit Manager, Artifact and the economics of security (Domain 6 · 14%)
0%
Continue learning
Threat detection services
Open lesson