Section 1 : Housekeeping

Lecture 1 AWS Account Setup, Free Tier Offers, Billing, Support 00:06:58 Duration
Lecture 2 Billing Alerts, Delegate Access
Lecture 3 IAM Admin User and Command Line Tool Setup 00:08:14 Duration
Lecture 4 EC2 KeyPair and tools to login 00:04:59 Duration

Section 2 : Architecture of a cloud based solution

Lecture 1 Order Processing System - A Server-Based Design 00:09:36 Duration
Lecture 2 Decouple layers using Queues and Notification Service 00:06:21 Duration
Lecture 3 Order Processing System - Serverless Design 00:08:53 Duration

Section 3 : VPC Refresher

Lecture 1 Network Addressing Primer - CIDR, Public, Private IP Address Blocks 00:12:13 Duration
Lecture 2 VPC Introduction, App Deployment, Router, Internet Gateway
Lecture 3 Firewall - Security Group 00:04:33 Duration
Lecture 4 Firewall - Network ACL (NACL) 00:06:08 Duration
Lecture 5 IP Types - Private, Public, Elastic 00:03:54 Duration
Lecture 6 AWS Service Integration - Internet, NAT, Gateway and Interface Endpoints 00:08:39 Duration
Lecture 7 Peering Connection, Transit Gateway 00:04:28 Duration
Lecture 8 External Clients, Public Endpoints, Private Link 00:03:04 Duration
Lecture 9 Bastion Host, Session Manager (Systems Manager) 00:04:26 Duration
Lecture 10 VPC Traffic Flow Walk-through
Lecture 11 Hybrid Infrastructure - Site-Site VPN, Cloud Hub, Client VPN 00:06:16 Duration
Lecture 12 Hybrid Infrastructure - Direct Connect 00:03:08 Duration
Lecture 13 Lab - New Public VPC 00:04:21 Duration
Lecture 14 Lab - Launch EC2 instance in public subnet and login using Putty 00:06:03 Duration
Lecture 15 Lab - Security Group and NACL Firewall 00:06:39 Duration
Lecture 16 Lab - Ping EC2 Instances 00:03:49 Duration
Lecture 17 Lab - VPC Peering (Same Region) 00:04:05 Duration
Lecture 18 Lab - VPC Peering (Cross Region) 00:11:49 Duration

Section 4 : EC2 and Storage Refresher

Lecture 1 Lab - EC2 Instance with IAM Roles to Access S3 00:06:34 Duration
Lecture 2 Introduction to Storage 00:08:39 Duration
Lecture 3 Elastic Block Store (EBS) 00:13:09 Duration
Lecture 4 Elastic File System, FSx for Windows, FSx for Lustre 00:04:53 Duration

Section 5 : Monitoring - CloudWatch Metrics and Logs Refresher

Lecture 1 Introduction to CloudWatch 00:02:38 Duration
Lecture 2 CloudWatch Metrics and Alarms 00:04:18 Duration
Lecture 3 CloudWatch Log Group, Log Stream, Metric Filter and Alarms 00:03:29 Duration
Lecture 4 Lab - Stop Idle Instance using CloudWatch Alarms 00:09:29 Duration

Section 6 : Elastic Load Balancing and Auto Scaling Refresher

Lecture 1 Introduction to Elastic Load Balancer 00:08:49 Duration
Lecture 2 Types of Load Balancers, Private Link 00:08:31 Duration
Lecture 3 Lab - Launch WebServer Instances with User Data 00:06:54 Duration
Lecture 4 Lab - Application Load Balancer 00:03:54 Duration
Lecture 5 Introduction to Auto Scaling 00:05:46 Duration
Lecture 6 Lab - Maintain Fleet with Auto Scaling 00:08:03 Duration
Lecture 7 Lab - Simulate Server Error and Application Error 00:03:13 Duration

Section 7 : S3 Refresher

Lecture 1 S3 Storage Classes 00:07:34 Duration
Lecture 2 Consistency Model
Lecture 3 Versioning 00:04:12 Duration
Lecture 4 Lifecycle Management
Lecture 5 Access Control 00:04:03 Duration
Lecture 6 Replication (CRR, SRR) 00:02:51 Duration
Lecture 7 Performance and Storage Gateway 00:08:50 Duration
Lecture 8 Encryption (SSE-S3, SSE-KMS, SSE-C, Client Side) 00:06:36 Duration
Lecture 9 SFTP, CORS, Pre-signed URL, Macie, Object Lock 00:08:26 Duration
Lecture 10 Lab - S3 Storage Classes 00:05:35 Duration
Lecture 11 Lab - S3 Versioning 00:04:05 Duration
Lecture 12 Lab - S3 Age Based Retention 00:03:51 Duration
Lecture 13 Lab - S3 Tiered Storage 00:03:12 Duration
Lecture 14 Lab - S3 Replication 00:05:45 Duration
Lecture 15 Lab - S3 Encryption AWS Managed Key and Customer Master Key 00:06:19 Duration

Section 8 : Route 53 Refresher

Lecture 1 Introduction to Route 53 and How DNS Server Works 00:03:10 Duration
Lecture 2 Demo - DNS Lookup 00:02:52 Duration
Lecture 3 Route 53 Core Capabilities, Availability, Latency 00:02:31 Duration
Lecture 4 Routing Policy - Types of Traffic Routing 00:01:52 Duration
Lecture 5 DNS Terminologies 00:02:33 Duration

Section 9 : CloudFront Refresher

Lecture 1 Why CloudFront 00:06:18 Duration
Lecture 2 CloudFront Security, Lambda@Edge 00:08:29 Duration
Lecture 3 Lab - CloudFront Distribution with S3 Origin 00:08:43 Duration
Lecture 4 Lab - Cache Configuration and Invalidation 00:04:49 Duration
Lecture 5 Lab - Origin Access Identity (OAI) 00:03:37 Duration

Section 10 : Global Accelerator Refresher

Lecture 1 Introduction to Global Accelerator 00:03:53 Duration
Lecture 2 Global Accelerator - How it works 00:05:47 Duration
Lecture 3 Lab - Global Accelerator 00:05:50 Duration

Section 11 : Identity and Access Management

Lecture 1 Shared Responsibility Model, Security and Access Management 00:08:24 Duration
Lecture 2 User Credentials, Permission Management 00:07:25 Duration
Lecture 3 Policy Types, Amazon Resource Naming (ARN) Convention 00:08:31 Duration
Lecture 4 Elements and Structure of a Policy Document 00:06:55 Duration
Lecture 5 Policy Best Practices with Examples, Attribute Based Access Control (ABAC) 00:07:42 Duration
Lecture 6 IAM Roles, Application Access, Cross-account Access 00:06:17 Duration
Lecture 7 Identity Federation - Corporate Identity, Social Identity 00:06:17 Duration
Lecture 8 Active Directory Integration Options and Trust Management 00:06:20 Duration
Lecture 9 Lab - Identity-based Policy - Part 1 00:05:01 Duration
Lecture 10 Lab - Identity-based Policy - Part 2 00:05:40 Duration
Lecture 11 Lab - Boundary Permissions Explained 00:03:53 Duration
Lecture 12 Lab - Resource-based Policy 00:05:15 Duration
Lecture 13 Lab - Restrict Access By IP 00:07:00 Duration
Lecture 14 Lab - Restrict Access By VPC Endpoint 00:05:22 Duration
Lecture 15 Lab - Cross Account Access with Resource Based Policy 00:03:52 Duration
Lecture 16 Lab - Cross Account Access with IAM Roles - Part 1 00:06:51 Duration
Lecture 17 Lab - Cross Account Access with IAM Roles - Part 2 00:06:02 Duration

Section 12 : Logs and Events - Visibility into activities in AWS

Lecture 1 Introduction to Logs and Events 00:08:36 Duration
Lecture 2 CloudTrail - Capture all AWS API activity 00:11:03 Duration
Lecture 3 Lab - CloudTrail Event History 00:08:47 Duration
Lecture 4 Lab - Consolidate account activity to S3, CloudWatch Log and Log Integrity Check 00:10:28 Duration
Lecture 5 Lab - Log Insights to Query CloudTrail Activity 00:07:54 Duration
Lecture 6 Lab - Athena SQL to Query CloudTrail Activity 00:07:48 Duration
Lecture 7 Lab - CloudWatch Events Real-time Monitoring of EC2 State 00:06:22 Duration
Lecture 8 Lab - Real-time Monitoring of Root Usage using CloudWatch Events 00:03:22 Duration
Lecture 9 Lab - CloudWatch Log Metric Filter based Monitoring of Root Usage 00:06:44 Duration

Section 13 : Visibility into Network Activity in your VPC

Lecture 1 Lab - VPC Flow Logs Capture, Format and Querying 00:11:39 Duration
Lecture 2 Lab - Troubleshoot Security Group and Network ACL firewall Connectivity Issues 00:07:15 Duration

Section 14 : AWS Organizations - Multi-Account Management

Lecture 1 Lab - Create Organization, Member Accounts, Service Control Policies and Trail 00:09:17 Duration
Lecture 2 Lab - Organizational Units and test effect of Service Control Policies (SCP) 00:06:34 Duration
Lecture 3 Lab - Single Sign-on (SSO), Cross-Account Access and Permission Sets 00:09:18 Duration
Lecture 4 Resource Sharing Across Account - Resource Access Manager and Transit Gateway 00:03:47 Duration
Lecture 5 Lab - Resource Access Manager - Share VPC and NAT Gateway with member accounts 00:08:22 Duration
Lecture 6 Lab - Transit Gateway to Interconnect VPCs 00:06:55 Duration
Lecture 7 Lab - Transit Gateway - Route Outbound traffic through common NAT Gateway 00:10:10 Duration

Section 15 : Protect and Manage Resources

Lecture 1 2020 Type of Attacks and Case Study 00:07:28 Duration
Lecture 2 2020 Case Study Solution Discussion 00:07:33 Duration
Lecture 3 AWS Web Application Firewall (WAF) 00:07:07 Duration
Lecture 4 Lab - AWS WAF 00:05:03 Duration
Lecture 5 AWS Shield 00:04:37 Duration
Lecture 6 Secrets Manager 00:03:23 Duration
Lecture 7 Systems Manager 00:03:29 Duration
Lecture 8 AWS Config 00:02:08 Duration
Lecture 9 AWS Inspector, Trusted Advisor and Integrated Usage Walk-through 00:04:10 Duration
Lecture 10 Lab - Systems Manager Setup and Policies 00:03:51 Duration
Lecture 11 Lab - Managed Instances, Session Manager, Compliance Status 00:07:43 Duration
Lecture 12 Lab - Patch Manager 00:05:31 Duration
Lecture 13 Lab - CloudWatch Log Agent to monitor log files in the server 00:10:25 Duration
Lecture 14 Lab - AWS Config S3 bucket encryption compliance 00:08:57 Duration
Lecture 15 Lab - AWS Config Automated Remediation 00:06:54 Duration
Lecture 16 Lab - AWS Inspector for Network Reachability, Vulnerability and Host Hardening 00:06:12 Duration
Lecture 17 Lab - Trusted Advisor 00:03:46 Duration

Section 16 : Key Management System (KMS) - Encryption key management

Lecture 1 Symmetric & Asymmetric Encryption, Digital Signing and Common Challenges 00:07:01 Duration
Lecture 2 Envelope Encryption Concepts and S3 Server Side Encryption 00:05:03 Duration
Lecture 3 EBS Volume Encryption, RDS and DynamoDB Encryption 00:07:18 Duration
Lecture 4 Lab (repeat) - S3 AWS Managed Key and Customer Managed Key Encryption 00:06:19 Duration
Lecture 5 Lab - EBS Encryption 00:07:20 Duration
Lecture 6 Lab - KMS Features (Symmetric, Asymmetric, Key Material Origin, Resource Policy) 00:07:44 Duration
Lecture 7 Lab - KMS Automatic and Manual Key Rotation 00:04:54 Duration
Lecture 8 KMS APIs 00:04:57 Duration

Section 17 : SSLTLS Encryption

Lecture 1 Lab - Enabling SSL at Elastic Load Balancer 00:11:18 Duration
Lecture 2 Lab - CloudFront Custom Domain and SSL 00:06:26 Duration

Section 18 : Security Incident Response

Lecture 1 AWS Acceptable Use Policy - Your Responsibilities in preventing an incident 00:08:06 Duration
Lecture 2 Security Incident Response Concepts 00:10:06 Duration
Lecture 3 Security Testing Policies in AWS 00:06:19 Duration