Securing the Cloud Foundations with Andrew Krug

Securing the Cloud: Foundations w/ Andrew Krug

Instructor: Andrew Krug
Course Length: 16 Hours
Format:Live Online or On-Demand

Includes: Twelve months of complimentary access to the Antisyphon Cyber Range, certificate of participation, six months access to class recordings.

View Live/Online Course Schedule
Register for On-Demand Training

Course Description

In this course, we’ll explore Amazon Web Services (AWS) as a platform. We will take the perspective of a new startup company spinning up infrastructure in AWS for the very first time. We’ll use a scenario-based approach, where you’ll don the persona of a security engineer on your first day at a new startup. This course will demonstrate ideas like secure-by-default and will examine services and patterns for locking down defaults using a combination of open source and platform-native tooling. Finally, attendees will walk away with a practical understanding of various controls, detections, and guardrails.

Key Takeaways

In this course, students will learn how to:

  • Perform incident response in AWS
  • Provide technical guidance to teams implementing security controls on AWS
  • Enact user access management models
  • Audit for anti-patterns in cloud security
  • Prevent common types of data breaches on AWS
  • Avoid common mistakes and data breaches
  • Build scalable infrastructure

Students will also:

  • Gain insight into how to perform architecture reviews
  • Gain insight into developing runbooks and playbooks for their organization
  • Gain awareness of open-source tools to force multiply the security effort

Who Should Take This Course

Blue teamers, sysadmins, network admins, those working in devsecops, first responders, or anyone that wants to learn AWS cloud basics.

Audience Skill Level

This foundational course is for folks without any AWS skillset. The ideal attendee is someone looking to pivot from traditional sysadmin to CloudSec. Attendees with moderate experience will still benefit from hands-on labs with industry-standard, open-source tools and prescriptive guidance.

Student Requirements

Students should have familiarity with basic shell (bash), text editors, and launching VMs on their own machine.

What Each Student Should Bring

Students should have an AWS account that they are accountable and billable for just for this course. Please do not utilize your existing account.

What Students Will Be Provided With

  • Incident response cheat sheet of Athena queries
  • Downloadable VM file for the course
  • CloudFormation templates to bootstrap secure environments
  • Attack bot infrastructure for simulation of the course attack tactics

About Antisyphon Training Options

Live Online

Learn via live stream from instructors that are in the field utilizing the techniques they teach. Classes are split into four training days that are each four hours long. Live Online training includes six months access to dedicated class channels in the Antisyphon Discord server, six months access to live class recordings, a certificate of participation, and 12 months complimentary access to the Antisyphon Cyber Range.

On-Demand

Learn at your own pace with access to course content, lectures, and demos in the Antisyphon On-demand learning platform. Most courses are offered with lifetime access to the course and content updates. All On-demand courses include content update alerts, access to dedicated support channels in the Antisyphon Discord server, a certificate of participation, and 12 months complimentary access to the Antisyphon Cyber Range.

Live Online w/ On-Demand Bundle

This is the best of both worlds! Attend the live online class at its next scheduled interval and gain access to the online training modules in the Antisyphon On-demand training platform. Bundle also includes six months access to dedicated class channels in the Antisyphon Discord server, six months access to live class recordings, a certificate of participation, and 12 months complimentary access to the Antisyphon Cyber Range.

Trainer & Author

Andrew Krug
Andrew Krug

Andrew Krug is a Security Geek specializing in Cloud and Identity and Access Management. Krug brings 15 years experience at the intersection of security, education, and systems administration. As a fierce advocate for Open Source and founder of ThreatResponse tool suite, Andrew has helped inspire the landscape around forensics and incident response in the Cloud. Krug has been a presenter at a variety of conferences, publishing papers with BlackHat USA, DerbyCon, and many more.

Live Training Events

There are no sessions of this course currently on our schedule.

Please keep an eye on the Live Training Calendar page for updates, or Contact Us for a private training session.