| |
|
|
|
|
|
|
|
|
1. |
Record Nr. |
UNINA9910830256903321 |
|
|
Titolo |
AWS certified security study guide : specialty (SCS-C01) Exam / / Dario Lucas Goldfarb [and six others] |
|
|
|
|
|
|
|
Pubbl/distr/stampa |
|
|
Indianapolis, Indiana : , : John Wiley and Sons, , [2021] |
|
©2021 |
|
|
|
|
|
|
|
|
|
ISBN |
|
1-119-65884-5 |
1-119-65885-3 |
1-119-65883-7 |
|
|
|
|
|
|
|
|
Descrizione fisica |
|
1 online resource (494 pages) : illustrations |
|
|
|
|
|
|
Disciplina |
|
|
|
|
|
|
Soggetti |
|
Cloud computing - Examinations |
Web services - Examinations |
|
|
|
|
|
|
|
|
Lingua di pubblicazione |
|
|
|
|
|
|
Formato |
Materiale a stampa |
|
|
|
|
|
Livello bibliografico |
Monografia |
|
|
|
|
|
Note generali |
|
|
|
|
|
|
Nota di contenuto |
|
Cover -- Title Page -- Copyright Page -- Acknowledgments -- About the Authors -- About the Technical Editors -- Contents at a Glance -- Contents -- Table of Exercises -- Introduction -- Assessment Test -- Chapter 1 Security Fundamentals -- Introduction -- Understanding Security -- Basic Security Concepts -- Vulnerability, Threat, and Security Risk -- Security Countermeasures and Enforcement -- Confidentiality, Integrity, and Availability -- Accountability and Nonrepudiation -- Authentication, Authorization, and Accounting -- Visibility and Context -- Foundational Networking Concepts |
The OSI Reference Model -- The TCP/IP Protocol Stack -- Main Classes of Attacks -- Reconnaissance -- Password Attacks -- Eavesdropping Attacks -- IP Spoofing Attacks -- Man-in-the-Middle Attacks -- Denial-of-Service Attacks -- Malware Attacks -- Phishing Attacks -- Risk Management -- Important Security Solutions and Services -- Well-Known Security Frameworks and Models -- Sample Practical Models for Guiding Security Design and Operations -- The Security Wheel -- The Attack Continuum Model -- The Zero-Trust Model -- Summary -- Exam Essentials -- Review Questions |
Chapter 2 Cloud Security Principles and Frameworks -- Introduction -- |
|
|
|
|
|
|
|
|
|
|
|
Cloud Security Principles Overview -- The Shared Responsibility Model -- Different Powers, Different Responsibilities -- AWS Compliance Programs -- AWS Artifact Portal -- AWS Well-Architected Framework -- Using the AWS Well-Architected Tool -- AWS Marketplace -- Summary -- Exam Essentials -- Review Questions -- Chapter 3 Identity and Access Management -- Introduction -- IAM Overview -- How AWS IAM Works -- Principals -- IAM Roles -- AWS Security Token Services -- Access Management with Policies and Permissions |
Access Management in Amazon S3 -- Policy Conflicts -- Secure Data Transport in Amazon S3 -- Cross-Region Replication in Amazon S3 -- Amazon S3 Pre-signed URLs -- Identity Federation -- Amazon Cognito -- Multi-Account Management with AWS Organizations -- Service Control Policies -- AWS Single Sign-On -- Microsoft AD Federation with AWS -- Protecting Credentials with AWS Secrets Manager -- Secrets Permission Management -- Automatic Secrets Rotation -- Choosing between AWS Secrets Manager and AWS Systems Manager Parameter Store -- Summary -- Exam Essentials -- Review Questions |
Chapter 4 Detective Controls -- Introduction -- Stage 1: Resources State -- AWS Config -- AWS Systems Manager -- Stage 2: Events Collection -- AWS CloudTrail -- Amazon CloudWatch Logs -- Amazon CloudWatch -- AWS Health -- Stage 3: Events Analysis -- AWS Config Rules -- Amazon Inspector -- Amazon GuardDuty -- AWS Security Hub -- AWS Systems Manager: State Manager, Patch Manager, and Compliance -- AWS Trusted Advisor -- Stage 4: Action -- AWS Systems Manager: Automation -- AWS Config Rules: Remediation -- Amazon EventBridge -- Summary -- Exam Essentials -- Review Questions |
|
|
|
|
|
|
Sommario/riassunto |
|
Get prepared for the AWS Certified Security Specialty certification with this excellent resource By earning the AWS Certified Security Specialty certification, IT professionals can gain valuable recognition as cloud security experts. The AWS Certified Security Study Guide: Specialty (SCS-C01) Exam helps cloud security practitioners prepare for success on the certification exam. It's also an excellent reference for professionals, covering security best practices and the implementation of security features for clients or employers. Architects and engineers with knowledge of cloud computing architectures will find significant value in this book, which offers guidance on primary security threats and defense principles. Amazon Web Services security controls and tools are explained through real-world scenarios. These examples demonstrate how professionals can design, build, and operate secure cloud environments that run modern applications. The study guide serves as a primary source for those who are ready to apply their skills and seek certification. It addresses how cybersecurity can be improved using the AWS cloud and its native security services. Readers will benefit from detailed coverage of AWS Certified Security Specialty Exam topics. Covers all AWS Certified Security Specialty exam topics Explains AWS cybersecurity techniques and incident response Covers logging and monitoring using the Amazon cloud Examines infrastructure security Describes access management and data protection With a single study resource, you can learn how to enhance security through the automation, troubleshooting, and development integration capabilities available with cloud computing. You will also discover services and tools to develop security plans that work in sync with cloud adoption. |
|
|
|
|
|
|
|
| |