Final Exam: Cloud Security Admin

WHAT YOU WILL LEARN

• 

  Match different models with security considerations
  

  list the best practices of enterprise operations
  

  define iam and identify the importance of access control
  

  describe the importance of design in security operations
  

  describe different cloud transition scenarios of functions
  

  describe how dynamic operations in cloud work
  

  identify the importance of patch management operations
  

  recognize how to secure the perimeter using key technologies
  

  identify the common threats in the cloud
  

  classify various cloud deployment models
  

  describe the security data life cycle
  

  importance of privacy and different acts
  

  describe iso/iec 27018 standard
  

  define performance monitoring
  

  understand drm and its importance in the corporate scenario
  

  name different risk audit mechanisms
  

  create a bcdr plan
  

  identify network functionality and technologies including sdn
  

  design a secure virtual private cloud
  

  specify how business continuity management is planned
  

  configure network acls
  

  define aws guardduty
  

  specify how e-discovery provided legal controls to the cloud service provider
  

  configure the aws cli
  

  define the iso/iec 27017:2015 security techniques and code of practice
  

  recognize the cia triad
  

  describe how digital evidence operations functions
  

  describe aws waf
  

  describe aws certificate manager
  

  identify the impact of clear communication and governance on process and activities
• 

  define aws sso and aws cognito
  

  describe root account security
  

  specify common threats to aws
  

  describe the risk in the perspective of the physical site and environment
  

  define operations management
  

  describe the aws shared responsibility model
  

  list different types of audits and impact of requirement programs
  

  describe control types and categories
  

  identify core aws services
  

  describe countermeasure strategies including uptime automation of controls and access controls
  

  configure security groups for linux instances
  

  list the key regulations required to protect data center facilities
  

  compare client-side and server-side encryption
  

  configure access keys and key pairs
  

  understand the classification of data and mechanisms to manage those
  

  describe aws shield and aws inspector
  

  define international standards like iso/iec 17788
  

  describe how a bastion host is used
  

  compare credentials, passwords, and access keys
  

  recognize the different concepts related to object storage and management plane
  

  list the risks involved in a software-defined datacenter
  

  introduction to data security
  

  describe aws kms
  

  describe business continuity and disaster recovery
  

  configure the aws identity and access management (iam) service
  

  define identification, authentication, and authorization for resources
  

  understand different data policies and managing those policies
  

  describe aws cryptography basics
  

  different technologies to secure data management
  

  identify the potential risks in cloud