AWS Security Cookbook
Practical solutions for managing security policies, monitoring, auditing, and compliance with AWS
Published on 27. February 2020
Book
Paperback/Softback
440 pages
978-1-83882-625-3 (ISBN)
Description
Secure your Amazon Web Services (AWS) infrastructure with permission policies, key management, and network security, along with following cloud security best practices
Key Features
Explore useful recipes for implementing robust cloud security solutions on AWS
Monitor your AWS infrastructure and workloads using CloudWatch, CloudTrail, config, GuardDuty, and Macie
Prepare for the AWS Certified Security-Specialty exam by exploring various security models and compliance offerings
Book DescriptionAs a security consultant, securing your infrastructure by implementing policies and following best practices is critical. This cookbook discusses practical solutions to the most common problems related to safeguarding infrastructure, covering services and features within AWS that can help you implement security models such as the CIA triad (confidentiality, integrity, and availability), and the AAA triad (authentication, authorization, and availability), along with non-repudiation.
The book begins with IAM and S3 policies and later gets you up to speed with data security, application security, monitoring, and compliance. This includes everything from using firewalls and load balancers to secure endpoints, to leveraging Cognito for managing users and authentication. Over the course of this book, you'll learn to use AWS security services such as Config for monitoring, as well as maintain compliance with GuardDuty, Macie, and Inspector. Finally, the book covers cloud security best practices and demonstrates how you can integrate additional security services such as Glacier Vault Lock and Security Hub to further strengthen your infrastructure.
By the end of this book, you'll be well versed in the techniques required for securing AWS deployments, along with having the knowledge to prepare for the AWS Certified Security - Specialty certification.What you will learn
Create and manage users, groups, roles, and policies across accounts
Use AWS Managed Services for logging, monitoring, and auditing
Check compliance with AWS Managed Services that use machine learning
Provide security and availability for EC2 instances and applications
Secure data using symmetric and asymmetric encryption
Manage user pools and identity pools with federated login
Who this book is forIf you are an IT security professional, cloud security architect, or a cloud application developer working on security-related roles and are interested in using AWS infrastructure for secure application deployments, then this Amazon Web Services book is for you. You will also find this book useful if you're looking to achieve AWS certification. Prior knowledge of AWS and cloud computing is required to get the most out of this book.
Key Features
Explore useful recipes for implementing robust cloud security solutions on AWS
Monitor your AWS infrastructure and workloads using CloudWatch, CloudTrail, config, GuardDuty, and Macie
Prepare for the AWS Certified Security-Specialty exam by exploring various security models and compliance offerings
Book DescriptionAs a security consultant, securing your infrastructure by implementing policies and following best practices is critical. This cookbook discusses practical solutions to the most common problems related to safeguarding infrastructure, covering services and features within AWS that can help you implement security models such as the CIA triad (confidentiality, integrity, and availability), and the AAA triad (authentication, authorization, and availability), along with non-repudiation.
The book begins with IAM and S3 policies and later gets you up to speed with data security, application security, monitoring, and compliance. This includes everything from using firewalls and load balancers to secure endpoints, to leveraging Cognito for managing users and authentication. Over the course of this book, you'll learn to use AWS security services such as Config for monitoring, as well as maintain compliance with GuardDuty, Macie, and Inspector. Finally, the book covers cloud security best practices and demonstrates how you can integrate additional security services such as Glacier Vault Lock and Security Hub to further strengthen your infrastructure.
By the end of this book, you'll be well versed in the techniques required for securing AWS deployments, along with having the knowledge to prepare for the AWS Certified Security - Specialty certification.What you will learn
Create and manage users, groups, roles, and policies across accounts
Use AWS Managed Services for logging, monitoring, and auditing
Check compliance with AWS Managed Services that use machine learning
Provide security and availability for EC2 instances and applications
Secure data using symmetric and asymmetric encryption
Manage user pools and identity pools with federated login
Who this book is forIf you are an IT security professional, cloud security architect, or a cloud application developer working on security-related roles and are interested in using AWS infrastructure for secure application deployments, then this Amazon Web Services book is for you. You will also find this book useful if you're looking to achieve AWS certification. Prior knowledge of AWS and cloud computing is required to get the most out of this book.
More details
Language
English
Place of publication
Birmingham
United Kingdom
Target group
Professional and scholarly
US School Grade: College Graduate Student
Dimensions
Height: 235 mm
Width: 191 mm
Thickness: 24 mm
Weight
816 gr
ISBN-13
978-1-83882-625-3 (9781838826253)
Copyright in bibliographic data and cover images is held by Nielsen Book Services Limited or by the publishers or by their respective licensors: all rights reserved.
Schweitzer Classification
Other editions
Additional editions
Heartin Kanikathottu
AWS Security Cookbook
Practical solutions for managing security policies, monitoring, auditing, and compliance with AWS
E-Book
09/2024
Packt Publishing
€29.99
Available for download
Person
Heartin Kanikathottu is an accomplished cloud architect renowned for leading technological transformations in cloud computing and security at prestigious organizations. He is also a prolific author recognized globally, with his book, AWS Security Cookbook, First Edition, being named the eighth best in cloud computing by BookAuthority in 2020. His impressive career includes roles as founder of Trainso and Coding Architect Canada, vice president at Morgan Stanley, principal architect at Societe Generale, and cloud and security architect at VMware. He has also worked at TCS, SAP Ariba, and IG Group. He holds over 15 professional certifications from Microsoft, Amazon, Oracle, Pivotal, and IBM, and dual master's degrees in cloud computing and data analytics. He is also a regular speaker at many technical forums.
Content
Table of Contents
Managing AWS Accounts with IAM and Organizations
Securing Data on S3 with Policies and Techniques
User Pools and Identity Pools with Cognito
Key Management with KMS and CloudHSM
Network Security with VPC
Working with EC2 Instances
Web Security Using ELBs, CloudFront, and WAF
Monitoring with CloudWatch, CloudTrail, and Config
Compliance with GuardDuty, Macie, and Inspector
Additional Services and Practices for AWS Security
Managing AWS Accounts with IAM and Organizations
Securing Data on S3 with Policies and Techniques
User Pools and Identity Pools with Cognito
Key Management with KMS and CloudHSM
Network Security with VPC
Working with EC2 Instances
Web Security Using ELBs, CloudFront, and WAF
Monitoring with CloudWatch, CloudTrail, and Config
Compliance with GuardDuty, Macie, and Inspector
Additional Services and Practices for AWS Security