Security – Specialty Certification for AWS


Este curso de teleformación se diseña para prepararse la certificación de Security - Nivel de Certificación Specialty

Con una selección de contenidos formativos cuya idioma base en una parte importante de los mismos es el inglés, y con el soporte y supervisión de nuestro equipo de soporte,  gestionados y supervisados por Nanfor.



Designed specifically for students looking to gain a deep understanding of AWS security services, including the many different security mechanisms and techniques that AWS offers to secure your infrastructure and data from both internal and external threats and exposures. The AWS Certified Security - Specialty certification allows you to demonstrate and validate your AWS knowledge across security topics such as data protection and encryption, infrastructure security, incident response, identity and access management, monitoring and logging. With a blend of instructional courses, hands on labs, quizzes and a preparation exam, this Learning Path helps you prepare and master the AWS Certified Security - Specialty exam.

Benefits of achieving this certification

  • Cloud Security is crucial to ALL use cases
  • AWS certifications provide a reputable benchmark for AWS partners and practitioners
  • Ensures team members are following security best practices
  • Provides professional progression for team members
  • Contributes to AWS partner certification requirements

Intended Audience

This learning path is ideal for anyone interested in learning to recognize, explain, and implement solutions to enforce strict security controls across all levels of AWS infrastructure deployments.

Learning Objectives

This learning path will enable you to:

  • Understand the differences between each of the security services offered by AWS and how they can be used within your environment
  • Select the appropriate level of security based on your deployments and the sensitivity of your data using a variety of services
  • Implement the correct security services and mechanisms to meet business objectives and requirements
  • Understand how to select the most appropriate data protection techniques including encryption mechanisms
  • Implement logging and monitoring solutions to detect and analyze security vulnerabilities and weaknesses within your infrastructure


This learning path has been designed to take you through the numerous security services along with the different security features that are available within other AWS services.

It begins with an introduction to the most common security service that is available, Identity & Access Management (IAM). During the first few courses and labs it looks at access management and identities, both internally and externally, covering different authentication and authorization methods.

Next it introduces a number of AWS security services related to auditing and compliance some of which are based on Machine Learning, such as Amazon GuardDuty and Amazon Macie.

Monitoring and logging is then covered, examining how you can use the different AWS services to monitor and track log data and use it to help you find vulnerabilities.

Next there are a number of courses and labs that look into encryption and data protection using different services and techniques. Different encryption mechanisms are covered here across a range of common AWS services.

Application and Network security is covered next, looking at different services and techniques that can be implemented to help protect your Web Apps along with your VPC infrastructure, again from both internal and external threats.

Finally there are a number of courses and labs covering security best practices, governance, and risk.



        Learning Path Steps

        1. Course: AWS: Overview of AWS Identity & Access Management (IAM)

        2. Lab: Introduction to IAM

        3. Lab: Advanced roles and groups management using IAM

        4. Course: Understanding of AWS Authentication, Authorization & Accounting

        5. Course: AWS Identity Federation

        6. Course: AWS CloudTrail: An Introduction

        7. Lab: Monitoring AWS CloudTrail events with Amazon CloudWatch

        8. Course: AWS Config: An Introduction

        9. Lab: Compliance Check Using AWS Config Rules (Managed & Custom)

        10. Course: Amazon Inspector

        11. Course: An Overview of AWS Trusted Advisor

        12. Lab: Follow Best Practices with AWS Trusted Advisor

        13. Course: Understanding Amazon GuardDuty

        14. Lab: Detecting EC2 Threats with Amazon GuardDuty

        15. Course: Enforcing Compliance & Security Controls with Amazon Macie

        16. Course: Amazon Web Services Cloudwatch

        17. Course: How to Implement & Enable Logging Across AWS Services (Part 1 of 2)

        18. Course: How to Implement & Enable Logging Across AWS Services (Part 2 of 2)

        19. Lab: Monitor Amazon CloudWatch Security Logs for failed SSH attempts

        20. Course: Advanced Techniques for AWS Monitoring, Metrics and Logging

        21. Course: How to use KMS Key encryption to protect your data

        22. Lab: Using Amazon Key Management Service to Encrypt S3 and EBS Data

        23. Course: Getting started with AWS CloudHSM

        24. Course: AWS Big Data Security: Encryption

        25. Course: Introduction to AWS Web Application Firewall

        26. Course: AWS Virtual Private Cloud: Subnets and Routing

        27. Lab: Securing your VPC using Public and Private subnets

        28. Course: AWS Security Best Practices: Abstract and Container Services

        29. Lab: Using S3 Bucket Policies and Conditions to Restrict Specific Permissions

        30. Lab: Query encrypted Amazon S3 data with Amazon Athena

        31. Course: Cloud Governance, Risk, and Compliance

        32. Course: Intrusion Detection and Prevention on Amazon Web Services

        33. Exam: AWS Security Specialty Certification - Preparation exam