Monitoring Guard Duty and Security Hub - Week 2 | Coursera

Полный обзор Coursera

Для организаций

Обзор
Самые популярные курсы
Войти
Присоединиться бесплатно

Monitoring Guard Duty and Security Hub

Loading...

AWS Fundamentals: Addressing Security Risk

Amazon Web Services

4.4 (оценок: 1,203) | Зарегистрировано учащихся: 18K

Курс 2 из 4 — AWS Fundamentals Специализация

Участвовать бесплатно

Welcome to AWS Fundamentals: Addressing Security Risk! This course will give you an overview of security best practices when developing and managing applications on AWS. The course, created by AWS experts and delivered by AWS Solutions Architects, uses video lectures, hands-on exercise guides, demonstrations, and quizzes to dive deep on concepts about security on AWS. You will learn about the concept of “least privilege” and the AWS Shared Responsibility Model, as well as view demonstrations of Amazon GuardDuty, AWS Secrets Manager, and cross-account access. We encourage IT professionals and leaders who are interested in learning about best practices for securing an AWS environment and applications developed on AWS to enroll in this course. Before taking this course, we recommend you complete AWS Fundamentals: Going Cloud Native (https://www.coursera.org/learn/aws-fundamentals-going-cloud-native). Class forums will also allow you to ask questions and interact with AWS training instructors.

Просмотреть программу курса

Получаемые навыки

aws, Information Privacy, Cloud Management, security, Cloud Applications

Рецензии

4.4 (оценок: 1,203)

5 stars
58%
4 stars
27%
3 stars
9%
2 stars
3%
1 star
2%

JL

May 19, 2020

Great content, a lot of learning. I just had some trouble with the pronunciation in a few words, but I appreciate the materials explaining all AWS services and best practices.

JA

Feb 02, 2020

I learned very useful concepts and read great documentation that allowed me to increase my understanding of how a well-architected solution should be designed and deployed.

Из урока

Week 2

We will focus on securing your infrastructure. We will look at network isolation and endpoint security. We will then look at detective controls such as Amazon CloudTrail as well as AWS Security Hub, Amazon GuardDuty and AWS Config.

Introduction to Week 20:33

Network Isolation-Fort & Bee Hive2:24

Network Isolation VPC2:33

VPC Endpoints and Private Link2:31

Detective Controls1:59

Monitoring CloudWatch and CloudWatch Logs2:40

Monitoring Guard Duty and Security Hub4:04

Demo of AWS Config4:14

Преподаватели

Rudy Chetty
Senior Solutions Architect
Hong Pham
Solutions Architect

Попробуйте курс за Бесплатно

Текст видео

- [Hong] You know, as our bee:Mars are getting more popular, more and more bad aliens out there are secretly looking for a weak spot in our infrastructure. As we're getting smarter in running and securing bee:Mars, we want to use automation and machine learning to detect and react when suspicious events happen to our environment, which can be caused by bad aliens. And, that's why we need to talk about Amazon GuardDuty. Amazon GuardDuty is a threat-detection service that continuously monitors for malicious or unauthorized behavior to help you protect your AWS accounts and resources. This service uses machine learning, anomaly detection, and integrated threat intelligence to identify and prioritize potential threats. GuardDuty analyzes tens of billions of events across multiple AWS data sources, such as AWS CloudTrail, Amazon VPC Flow Logs, and DNS logs. You can aggregate GuardDuty findings across multiple accounts. You can also integrate GuardDuty with AWS CloudWatch Events or your current event management system to alert your security team, a.k.a., to share your bees. Amazon GuardDuty provides three severity levels - low, medium, and high - to help you prioritize responses to potential threats. A low severity level indicates suspicious or malicious activity that was blocked before it compromised your resource. A medium severity level indicates suspicious activity. For example, a large amount of traffic being returned to a remote host that is behind a hidden network. A high severity level indicates that the resource in question is compromised and is being actively used for unauthorized purposes. An example of this could be that an EC2 instance has been compromised or a set of IAM user credentials has been stolen. Ooh, bad actor. So, now you can use GuardDuty to detect threats. How about responding to these findings? Amazon GuardDuty offers HTTPS APIs, CLI tools, and Amazon CloudWatch Events to support automated security responses to security findings. For example, let's say GuardDuty detects an EC2 security group that accept traffic from everywhere in the internet. You can automate the response workflow by letting GuardDuty send the findings to CloudWatch Events as an event source to trigger an AWS Lambda function to update the security group. So, are we done yet? Not really. Let's talk about how you can see all of the security alerts and compliance status across AWS accounts in one central place. Entering Security Hub. With Security Hub, you now have a single place that aggregates, organizes, and prioritizes your security alerts or findings, from multiple AWS services, such as Amazon GuardDuty, Amazon Inspector, Amazon Macie, as well as from AWS partner solutions. Your findings are visually summarized on integrated dashboards with actionable graphs and tables. You can also continuously monitor your environment using automated compliance check based on the AWS best practices and industry standards that your organization follows. So, that's it for this week, folks. I'll see you again next week.

Ознакомьтесь с нашим каталогом

Присоединяйтесь бесплатно и получайте персонализированные рекомендации, обновления и предложения.

Лучшие онлайн-курсы

Искусственный интеллект для каждого
Введение в TensorFlow
Нейронные сети и глубокое обучение
Алгоритмы, часть 1
Алгоритмы, часть 2
Машинное обучение
Машинное обучение с использованием Python
Машинное обучение с использованием Sas Viya
Программирование на языке R
Введение в программирование на MATLAB
Анализ данных с Python
Основы AWS: введение в облачные приложения
Основы Google Cloud Platform
Обеспечение надежности веб-сервисов
Разговорный английский язык на профессиональном уровне
Наука благополучия
Научитесь учиться
Финансовые рынки
Проверка гипотез в здравоохранении
Основы повседневного руководства

Лучшие онлайн-специализации

Глубокое обучение
Python для всех
Наука о данных
Прикладная наука о данных с Python
Основы бизнеса
Разработка архитектуры на платформе Google Cloud
Инженерия данных на платформе Google Cloud
От Excel до MySQL
Продвинутое машинное обучение
Математика в машинном обучении
Беспилотные автомобили
Блокчейн для организаций
Бизнес-аналитика
Навыки Excel для бизнеса
Цифровой маркетинг
Статистический анализ в здравоохранении на языке R
Основы иммунологии
Анатомия
Управление инновациями и дизайн-мышление
Основы позитивной психологии

Сертификаты онлайн

ИТ-поддержка Google
Специалист IBM по привлечению клиентов
Наука о данных IBM
Прикладное управление проектами
Профессиональная сертификация IBM в области прикладного ИИ
Машинное обучение для Analytics
Пространственный анализ данных и визуализация
Проектирование и управление в строительстве
Педагогический дизайн

Программы получения онлайн-дипломов

Магистр в области науки о данных
Бакалавр компьютерных наук
Степени в области компьютерных и технических наук
Магистр в области машинного обучения
MBA и другие степени в области бизнеса
Магистр в области электротехнического проектирования
Магистр здравоохранения
Магистр информационных технологий

Coursera

О проекте
Руководство
Карьера
Каталог
Сертификаты
Сертификаты MasterTrack™
Степени
Для организаций
Для правительственных организаций
Для стационара
Борьба с последствиями коронавируса

Сообщество

Учащиеся
Партнеры
Разработчики
Бета-тестировщики
Переводчики
Блог
Технический блог

Еще

Условия
Конфиденциальность
Помощь
Доступность
Пресса
Контакты
Справочник
Филиалы

Загрузить в Google Play

© Coursera Inc., 2020 Все права защищены.