Sign In Start Free Trial

Mastering AWS Security

By : Albert Anthony

3.7 (13)

Mastering AWS Security

3.7 (13)

By: Albert Anthony

Overview of this book

Mastering AWS Security starts with a deep dive into the fundamentals of the shared security responsibility model. This book tells you how you can enable continuous security, continuous auditing, and continuous compliance by automating your security in AWS with the tools, services, and features it provides. Moving on, you will learn about access control in AWS for all resources. You will also learn about the security of your network, servers, data and applications in the AWS cloud using native AWS security services. By the end of this book, you will understand the complete AWS Security landscape, covering all aspects of end - to -end software and hardware security along with logging, auditing, and compliance of your entire IT environment in the AWS cloud. Lastly, the book will wrap up with AWS best practices for security.

Preface

Preface

What this book covers

What you need for this book

Who this book is for

Conventions

Readers feedback

Customer support

Free Chapter

Overview of Security in AWS

Overview of Security in AWS

Chapter overview

AWS shared security responsibility model

AWS Security responsibilities

Customer security responsibilities

AWS account security features

AWS Security services

AWS Security resources

Summary

AWS Identity and Access Management

AWS Identity and Access Management

Chapter overview

IAM features and tools

IAM Authentication

IAM Authorization

Passwords Policy

AWS credentials

IAM limitations

IAM best practices

Summary

AWS Virtual Private Cloud

AWS Virtual Private Cloud

Chapter overview

VPC components

VPC features and benefits

VPC use cases

VPC security

Creating VPC

VPC limits

VPC best practices

Summary

Data Security in AWS

Data Security in AWS

Chapter overview

Encryption and decryption fundamentals

Securing data at rest

Securing data in transit

AWS KMS

AWS CloudHSM

Amazon Macie

Summary

Securing Servers in AWS

Securing Servers in AWS

EC2 Security best practices

EC2 Security

Amazon Inspector

AWS Shield

Summary

Securing Applications in AWS

Securing Applications in AWS

AWS Web Application Firewall (WAF)

Signing AWS API requests

Amazon Cognito

Amazon API Gateway

Summary

Monitoring in AWS

Monitoring in AWS

AWS CloudWatch

Monitoring Amazon EC2

Summary

Logging and Auditing in AWS

Logging and Auditing in AWS

Logging in AWS

AWS CloudWatch Logs

AWS CloudTrail

Auditing in AWS

AWS Artifact

AWS Config

AWS Trusted Advisor

AWS Service Catalog

AWS Security Audit Checklist

Summary

AWS Security Best Practices

AWS Security Best Practices

Shared security responsibility model

IAM security best practices

VPC

Data security

Security of servers

Application security

Monitoring, logging, and auditing

AWS CAF

Summary

Customer Reviews

3.7 (13)

5 star

53.8%

4 star

0

3 star

15.4%

2 star

23.1%

1 star

7.7%

AWS Artifact

AWS Artifact is an audit and compliance, self-service portal for accessing and downloading AWS Security and compliance reports and agreement without any additional charge. These reports include AWS Service Organization Control (SOC) reports, FedRAMP Partner Package, ISO 27001:2013, and so on from accreditation bodies across geographies and industry verticals that verify and validate AWS Security controls. AWS Artifact is accessible from the AWS Management Console.

You can use it for verifying and validating security control for any vertical in any geography. It helps you to identify the scope of each audit artifact, such as AWS service or resources, regions, and audit dates as well. AWS Artifact allows you to perform internal security assessments of your AWS resources. You can continuously monitor and assess the security of your AWS environment as audit reports are...

Search

Your notes and bookmarks