Cloud Security & Zero-Trust
Security cannot be an afterthought. In 5 weeks, master Identity and Access Management (IAM), network perimeters, encryption at rest/transit, and compliance automation to build impenetrable cloud environments.
Mastered Technologies
You Will Build
Perform a comprehensive security audit on an intentionally vulnerable AWS environment, remediate all findings via Terraform, and configure automated threat response.
The 5-Week Syllabus
An intense, week-by-week breakdown designed to push your limits.
Identity as the Perimeter (IAM)
The most important service in AWS.
Core Topics
- IAM Policy Evaluation Logic
- Role Assumption (STS)
- Federation (SAML/OIDC)
Hands-on Lab
Perform a privilege-escalation exploit, then patch it with least-privilege IAM.
Network & Boundary Protection
Securing the VPC and the Edge.
Core Topics
- AWS WAF & Shield
- VPC Flow Logs
- PrivateLink
Hands-on Lab
Configure a strict Web Application Firewall to block SQLi and XSS attacks.
Data Encryption & Secrets
Protecting data at rest and in transit.
Core Topics
- AWS KMS Deep Dive
- Envelope Encryption
- Secrets Manager
Hands-on Lab
Implement transparent database encryption and automated secret rotation.
Threat Detection & Response
Knowing when you are under attack.
Core Topics
- Amazon GuardDuty
- Macie
- Automated Incident Response
Hands-on Lab
Run a simulated DDoS attack and automate the lambda script that blocks the malicious IPs.
Compliance as Code
Automating SOC2 and HIPAA evidence collection.
Core Topics
- AWS Config Rules
- Security Hub
- Continuous Compliance
Hands-on Lab
Deploy a Terraform suite that actively remediates non-compliant S3 buckets.
Expert Facilitator
Alex performs penetration testing on enterprise AWS environments and helps startups achieve SOC2 and HIPAA compliance.
Student Perks
- Security Audit Template library
- Free Security Fundamentals Certification Exam
- Live Red Team Simulation