CONFidence Online Trainings 2020

Instructor: Paweł Rzepa
Format: 2-day online training
Date: 10-11 September 2020
Fee: 3500 zł*
No. of students: max 14
Language: English
Requirements: Attendees should bring their own laptop.

Syllabus:

The goal of the training is to give practical skills and knowledge regards hardening AWS environment, what are possible risks and how to minimize them. The unique part of the training are the real-world scenarios in labs. The training is dedicated for anyone who works with AWS, including developers, administrators, DevOps and security engineers. It is required that participants have basic knowledge regarding AWS. Regarding technical requirements all the students need to have their own computer with installed SSH client.

DAY 1
1. Security Basics:
   • Lecture (~0,5 hour): Shared Responsibility Model, Security in AWS
2. Identity Access Management
   • Lectures (~1,5 hour): root and IAM users, IAM groups, profile identities, IAM policies, roles, privilege escalation
   • Labs (~2 hours): privilege escalation scenarios
3. Infrastructure security
   • Lectures (~1 hour): VPC, NAT instances vs NAT Gateways, NACLs vs Security Groups, Bastions, VPC Flow Logs
4. S3 security
   • Lectures (~1 hour): Bucket policies vs ACLs, conflicting policies, encryption, Cross Region Replication, S3 and CloudFront, pre-signed URLs
   • Labs (~1 hour): detecting S3 misconfigurations, detecting leaks in stored data

DAY 2
5. Application security
   • Lectures (~1 hour): security best practices and common attack vectors in serverless applications, security issues in applications hosted in EC2 and ECS
6. Data protection
   • Lectures (~0,5 hour): Encryption in AWS
7. Logging and monitoring
   • Lectures (~1,5 hour): CloudTrail, CloudWatch, AWS Config, AWS Inspector & Trusted Advisor
   • Labs (~2,5 hours): setting up the detection and prevention mechanisms; analyzing logs using jq and Athena
8. Auditing AWS infrastructure
   • Labs (1,5 hour): detecting security issues using native AWS and open source tools