Book Image

AWS: Security Best Practices on AWS

By : Albert Anthony
Book Image

AWS: Security Best Practices on AWS

By: Albert Anthony

Overview of this book

With organizations moving their workloads, applications, and infrastructure to the cloud at an unprecedented pace, security of all these resources has been a paradigm shift for all those who are responsible for security; experts, novices, and apprentices alike. This book focuses on using native AWS security features and managed AWS services to help you achieve continuous security. Starting with an introduction to Virtual Private Cloud (VPC) to secure your AWS VPC, you will quickly explore various components that make up VPC such as subnets, security groups, various gateways, and many more. You will also learn to protect data in the AWS platform for various AWS services by encrypting and decrypting data in AWS. You will also learn to secure web and mobile applications in AWS cloud. This book is ideal for all IT professionals, system administrators, security analysts, solution architects, and chief information security officers who are responsible for securing workloads in AWS for their organizations. This book is embedded with useful assessments that will help you revise the concepts you have learned in this book. This book is repurposed for this specific learning experience from material from Packt's Mastering AWS Security, written by Albert Anthony.
Table of Contents (9 chapters)

Assessments


  1. Which among the following supports origins outside of AWS?

    1. WAF

    2. CloudWatch

    3. CloudFront

    4. CloudTrail

  2. Web access control lists can be associated with one or multiple resources in your AWS environment such as _____.

    1. WAF

    2. CloudWatch

    3. ELB

    4. Application Load Balancers

  3. State whether the following statement is True or False: A set of rules combined together forms a web ACL.

  4. API requests sent to AWS should include a ______ that contains information about the requestor's identity.

    1. Digital signature

    2. IP address of the requestor

    3. Private key

    4. Public key

  5. Which among the following integrates with CloudTrail and CloudWatch so you can monitor Cognito metrics and log API activities in real time?

    1. AWS Management Console

    2. AWS SDK

    3. AWS CLI

    4. Amazon Cognito