Become an AWS certified security specialist, strengthen your cloud defenses, and unlock advanced techniques for incident response, logging, identity management, and moreKey FeaturesStay updated with the most current SCS-C02 exam syllabusGain modern cloud security skills to build robust security solutionsAccess online exam prep resources like mock exams, flashcards, and exam tips to help with preparationPurchase of this book unlocks access to web-based exam prep resources such as mock exams and flashcardsBook DescriptionThe AWS Certified Security - Specialty exam validates your expertise in advanced cloud security, a crucial skill set in today’s cloud market. With the latest updates and revised study material, this second edition provides an excellent starting point for your exam preparation.You’ll learn the fundamentals of core services, which are essential prerequisites before delving into the six domains covered in the exam. The book addresses various security threats, vulnerabilities, and attacks, such as DDoS attacks, offering insights into effective mitigation strategies at different layers. You’ll learn different tools available in Amazon Web Services (AWS) to secure your Virtual Private Cloud and allow the correct traffic to travel securely to your workloads. As you progress, you’ll explore the intricacies of AWS EventBridge and IAM services. Additionally, you’ll get lifetime access to supplementary online resources, including mock exams with exam-like timers, detailed solutions, interactive flashcards, and invaluable exam tips, all accessible across various devices such as PCs, tablets, and smartphones.Ultimately, armed with the knowledge and skills acquired from this AWS security guide, you’ll be well-prepared to pass the exam and design secure AWS solutions with confidence.What you will learnApply cutting-edge AWS security techniques for robust cloud defensesImplement the AWS shared responsibility model effectivelyConfigure AWS resources to meet specific security requirementsConfigure and manage access controls and policies in AWSManage environments with AWS Security Hub and GuardDutyMonitor and log tasks efficiently using AWS logging and monitoring servicesCreate bucket policies for users with predefined permissions to accessCreate and manage private certificate authorities in AWS ACMWho this book is forThis book is for system administrators or security professionals looking to gain AWS security certification. Prior experience in securing cloud environments is necessary to get the most out of this book.Table of ContentsAWS Shared Responsibility ModelFundamental AWS ServicesUnderstanding Attacks on Cloud EnvironmentsIncident ResponseManaging Your Environment with AWS ConfigEvent Management with AWS Security Hub and GuardDutyLogs Generated by AWS ServicesCloudWatch and CloudWatch MetricsParsing Logs and Events with AWS Native ToolsConfiguring Infrastructure SecuritySecuring EC2 InstancesManaging Key InfrastructureAccess ManagementWorking with Access PoliciesFederated and Mobile AccessUsing Active Directory Services to Manage AccessProtecting Data in Flight and at RestSecurely Connecting to your AWS EnvironmentUsing Certificates and Certificate Services in AWSManaging Secrets Securely in AWS