Book Image

AWS: Security Best Practices on AWS

By : Albert Anthony
Book Image

AWS: Security Best Practices on AWS

By: Albert Anthony

Overview of this book

With organizations moving their workloads, applications, and infrastructure to the cloud at an unprecedented pace, security of all these resources has been a paradigm shift for all those who are responsible for security; experts, novices, and apprentices alike. This book focuses on using native AWS security features and managed AWS services to help you achieve continuous security. Starting with an introduction to Virtual Private Cloud (VPC) to secure your AWS VPC, you will quickly explore various components that make up VPC such as subnets, security groups, various gateways, and many more. You will also learn to protect data in the AWS platform for various AWS services by encrypting and decrypting data in AWS. You will also learn to secure web and mobile applications in AWS cloud. This book is ideal for all IT professionals, system administrators, security analysts, solution architects, and chief information security officers who are responsible for securing workloads in AWS for their organizations. This book is embedded with useful assessments that will help you revise the concepts you have learned in this book. This book is repurposed for this specific learning experience from material from Packt's Mastering AWS Security, written by Albert Anthony.

Related Content you might be interested in

Current Title:

Small book image
AWS: Security Best Practices on AWS
Albert Anthony
Mar, 2018 | 118 pages
Small book image
AWS Certified Security – Specialty Exam Guide
Stuart Scott
Sep, 2020 | 558 pages
Small book image
Designing AWS Environments
Wayde Gilchrist | Mitesh Soni
Sep, 2018 | 174 pages
Small book image
Practical AWS Networking
Mitesh Soni
Jan, 2018 | 258 pages
Table of Contents (9 chapters)
AWS: Security Best Practices on AWS
AWS: Security Best Practices on AWS
Credits
Credits
Preface
Preface
Free Chapter
1
AWS Virtual Private Cloud
AWS Virtual Private Cloud
Introduction
VPC Components
VPC Features and Benefits
VPC Use Cases
VPC Security
Creating VPC
VPC Limits
VPC Best Practices
Summary
Assessments
2
Data Security in AWS
Data Security in AWS
Introduction
Encryption and Decryption Fundamentals
Securing Data at Rest
Securing Data in Transit
AWS KMS
AWS CloudHSM
CloudHSM Features
AWS CloudHSM Use Cases
Amazon Macie
Summary
Assessments
3
Securing Servers in AWS
Securing Servers in AWS
EC2 Security Best Practices
EC2 Security
Amazon Inspector
AWS Shield
Summary
Assessments
4
Securing Applications in AWS
Securing Applications in AWS
AWS Web Application Firewall
Signing AWS API Requests
Amazon Cognito
Amazon API Gateway
Summary
Assessments
5
AWS Security Best Practices
AWS Security Best Practices
Shared Security Responsibility Model
VPC
Data Security
Security of Servers
Application Security
Monitoring, Logging, and Auditing
AWS CAF
Summary
Assessments
Assessment Answers
Assessment Answers
Lesson 1: AWS Virtual Private Cloud
Lesson 2: Data Security in AWS
Lesson 3: Securing Servers in AWS
Lesson 4: Securing Applications in AWS
Lesson 5: AWS Security Best Practices

Assessments

  1. If an application is running on an EC2 instance, it must pass credentials along with its ______.

    1. API response

    2. API request

    3. IP address

    4. VPC credentials

  2. When an EC2 instance is launched, it is assigned to which role?

    1. HSM

    2. KMS

    3. S3

    4. IAM

  3. Which among the following enables you to secure your infrastructure on the cloud using multiple options?

    1. Subnet

    2. NAT

    3. VPC

    4. ENI

  4. Which among the following is a detective and monitoring control system that continuously scans your network, servers, platform, and systems?

    1. IDS

    2. IPS

    3. ELB

    4. ISMS

  5. State whether the following is True or False: AWS Shield is a managed Distributed Denial of Service (DDoS) protection service.

Previous Section
End of Chapter 3
Next Chapter