AWS Security Cookbook

<p><strong>Secure your Amazon Web Services (AWS) infrastructure with permission policies key management and network security along with following cloud security best practices</strong></p><p><strong>Key Features:</strong></p><p>- Explore useful recipes for implementing robust cloud security solutions on AWS</p><p>- Monitor your AWS infrastructure and workloads using CloudWatch CloudTrail config GuardDuty and Macie</p><p>- Prepare for the AWS Certified Security-Specialty exam by exploring various security models and compliance offerings</p><p><strong>Book Description:</strong></p><p>As a security consultant securing your infrastructure by implementing policies and following best practices is critical. This cookbook discusses practical solutions to the most common problems related to safeguarding infrastructure covering services and features within AWS that can help you implement security models such as the CIA triad (confidentiality integrity and availability) and the AAA triad (authentication authorization and availability) along with non-repudiation.</p><p>The book begins with IAM and S3 policies and later gets you up to speed with data security application security monitoring and compliance. This includes everything from using firewalls and load balancers to secure endpoints to leveraging Cognito for managing users and authentication. Over the course of this book you'll learn to use AWS security services such as Config for monitoring as well as maintain compliance with GuardDuty Macie and Inspector. Finally the book covers cloud security best practices and demonstrates how you can integrate additional security services such as Glacier Vault Lock and Security Hub to further strengthen your infrastructure.</p><p>By the end of this book you'll be well versed in the techniques required for securing AWS deployments along with having the knowledge to prepare for the AWS Certified Security - Specialty certification.</p><p><strong>What You Will Learn:</strong></p><p>- Create and manage users groups roles and policies across accounts</p><p>- Use AWS Managed Services for logging monitoring and auditing</p><p>- Check compliance with AWS Managed Services that use machine learning</p><p>- Provide security and availability for EC2 instances and applications</p><p>- Secure data using symmetric and asymmetric encryption</p><p>- Manage user pools and identity pools with federated login</p><p><strong>Who this book is for:</strong></p><p>If you are an IT security professional cloud security architect or a cloud application developer working on security-related roles and are interested in using AWS infrastructure for secure application deployments then this Amazon Web Services book is for you. You will also find this book useful if you're looking to achieve AWS certification. Prior knowledge of AWS and cloud computing is required to get the most out of this book.</p><p><strong>Table of Contents</strong></p><p>- Managing AWS Accounts with IAM and Organizations</p><p>- Securing Data on S3 with Policies and Techniques</p><p>- User Pools and Identity Pools with Cognito</p><p>- Key Management with KMS and CloudHSM</p><p>- Network Security with VPC</p><p>- Working with EC2 Instances</p><p>- Web Security Using ELBs CloudFront and WAF</p><p>- Monitoring with CloudWatch CloudTrail and Config</p><p>- Compliance with GuardDuty Macie and Inspector</p><p>- Additional Services and Practices for AWS Security</p>