Section 1 : Introduction

Lecture 1 INTRODUCTION TO BRAINMEASURES PROCTOR SYSTEM Pdf
Lecture 2 Security Specialty Exam Overview Text
Lecture 3 Increase the speed of learning Text

Section 2 : Housekeeping

Lecture 4 Account Reuse Instructions Text
Lecture 5 Downloadable Resources Text
Lecture 6 AWS Account Setup, Free Tier Offers, Billing, Support 6:58
Lecture 7 Billing Alerts, Delegate Access
Lecture 8 IAM Admin User and Command Line Tool Setup 8:14
Lecture 9 EC2 KeyPair and tools to login 4:59
Lecture 10 Heads-up - You can also log in to a machine using Systems Manager Text

Section 3 : Architecture of a cloud based solution

Lecture 11 Refresher Topic Tips Text
Lecture 12 Purpose of this section Text
Lecture 13 Order Processing System - A Server-Based Design 9:36
Lecture 14 Decouple layers using Queues and Notification Service 6:21
Lecture 15 Order Processing System - Serverless Design 8:53

Section 4 : VPC Refresher

Lecture 16 Downloadable Resources Text
Lecture 17 Network Addressing Primer - CIDR, Public, Private IP Address Blocks 12:13
Lecture 18 VPC Introduction, App Deployment, Router, Internet Gateway
Lecture 19 Firewall - Security Group 4:33
Lecture 20 Firewall - Network ACL (NACL) 6:8
Lecture 21 IP Types - Private, Public, Elastic 3:54
Lecture 22 AWS Service Integration - Internet, NAT, Gateway and Interface Endpoints 8:39
Lecture 23 Peering Connection, Transit Gateway 4:28
Lecture 24 External Clients, Public Endpoints, Private Link 3:4
Lecture 25 Bastion Host, Session Manager (Systems Manager) 4:26
Lecture 26 VPC Traffic Flow Walk-through
Lecture 27 Default VPC, Flow Log, Resource Access Manager, and NAT sourcedestination check Text
Lecture 28 Hybrid Infrastructure - Site-Site VPN, Cloud Hub, Client VPN 6:16
Lecture 29 Hybrid Infrastructure - Direct Connect 3:8
Lecture 30 Heads-up RAM and Transit Gateway coming up in Organization Section Text
Lecture 31 Lab - New Public VPC 4:21
Lecture 32 Amazon Linux 2 AMI Text
Lecture 33 Lab - Launch EC2 instance in public subnet and login using Putty 6:3
Lecture 34 Lab - Security Group and NACL Firewall 6:39
Lecture 35 Lab - Ping EC2 Instances 3:49
Lecture 36 Lab - VPC Peering (Same Region) 4:5
Lecture 37 Lab - VPC Peering (Cross Region) 11:49
Lecture 38 AWS Sample Exam Question #3 Text
Lecture 39 Answer to Question #3 Text
Lecture 40 AWS Sample Exam Question #6 Text
Lecture 41 Answer to question #6 Text

Section 5 : EC2 and Storage Refresher

Lecture 42 Downloadable Resources Text
Lecture 43 EC2 Important Concepts Review Text
Lecture 44 Bastion Host and Credential Forwarding Text
Lecture 45 Amazon Linux 2 AMI Text
Lecture 46 Lab - EC2 Instance with IAM Roles to Access S3 6:34
Lecture 47 Introduction to Storage 8:39
Lecture 48 Elastic Block Store (EBS) 13:9
Lecture 49 Elastic File System, FSx for Windows, FSx for Lustre 4:53

Section 6 : Monitoring - CloudWatch Metrics and Logs Refresher

Lecture 50 Downloadable Resources Text
Lecture 51 Introduction to CloudWatch 2:38
Lecture 52 CloudWatch Metrics and Alarms 4:18
Lecture 53 CloudWatch Log Group, Log Stream, Metric Filter and Alarms 3:29
Lecture 54 Lab - Stop Idle Instance using CloudWatch Alarms 9:29
Lecture 55 Heads up in-depth CloudWatch Log labs Text

Section 7 : Elastic Load Balancing and Auto Scaling Refresher

Lecture 56 Downloadable Resources Text
Lecture 57 Introduction to Elastic Load Balancer 8:49
Lecture 58 Types of Load Balancers, Private Link 8:31
Lecture 59 Lambda function as a target Text
Lecture 60 NEW - Gateway Load Balancer Text
Lecture 61 Amazon Linux 2 AMI Text
Lecture 62 Lab - Launch WebServer Instances with User Data 6:54
Lecture 63 Lab - Application Load Balancer 3:54
Lecture 64 Lab - Cleanup Text
Lecture 65 Finer Points - Security Group and NACL with Load Balancers Text
Lecture 66 Introduction to Auto Scaling 5:46
Lecture 67 Amazon Linux 2 AMI Text
Lecture 68 Lab - Maintain Fleet with Auto Scaling 8:3
Lecture 69 Lab - Simulate Server Error and Application Error 3:13
Lecture 70 Cleanup Text

Section 8 : S3 Refresher

Lecture 71 Downloadable Resources Text
Lecture 72 S3 Storage Classes 7:34
Lecture 73 Consistency Model
Lecture 74 Versioning 4:12
Lecture 75 Lifecycle Management
Lecture 76 Access Control 4:3
Lecture 77 Replication (CRR, SRR) 2:51
Lecture 78 Performance and Storage Gateway 8:50
Lecture 79 Encryption (SSE-S3, SSE-KMS, SSE-C, Client Side) 6:36
Lecture 80 SFTP, CORS, Pre-signed URL, Macie, Object Lock 8:26
Lecture 81 Lab - S3 Storage Classes 5:35
Lecture 82 Lab - S3 Versioning 4:5
Lecture 83 Lab - S3 Age Based Retention 3:51
Lecture 84 Lab - S3 Tiered Storage 3:12
Lecture 85 Lab - S3 Replication 5:45
Lecture 86 Lab - S3 Encryption AWS Managed Key and Customer Master Key 6:19

Section 9 : Route 53 Refresher

Lecture 87 Introduction to Route 53 and How DNS Server Works 3:10
Lecture 88 Demo - DNS Lookup 2:52
Lecture 89 Route 53 Core Capabilities, Availability, Latency 2:31
Lecture 90 Routing Policy - Types of Traffic Routing 1:52
Lecture 91 DNS Terminologies 2:33
Lecture 92 Route 53 Important Concepts Review Text
Lecture 93 Heads up Route 53 labs with custom domains in SSLTLS section Text

Section 10 : CloudFront Refresher

Lecture 94 Downloadable Resources Text
Lecture 95 Why CloudFront 6:18
Lecture 96 CloudFront Security, Lambda@Edge 8:29
Lecture 97 Downloadable Lab Resources Text
Lecture 98 Lab - CloudFront Distribution with S3 Origin 8:43
Lecture 99 Lab - Cache Configuration and Invalidation 4:49
Lecture 100 Lab - Origin Access Identity (OAI) 3:37
Lecture 101 CloudFront with S3 Origin Text
Lecture 102 Heads-up Custom Domain and WAF protection Text

Section 11 : Global Accelerator Refresher

Lecture 103 Downloadable Resources Text
Lecture 104 Introduction to Global Accelerator 3:53
Lecture 105 Global Accelerator - How it works 5:47
Lecture 106 Amazon Linux 2 AMI Text
Lecture 107 Lab - Global Accelerator 5:50

Section 12 : Identity and Access Management

Lecture 108 Downloadable Resources Text
Lecture 109 Shared Responsibility Model, Security and Access Management 8:24
Lecture 110 User Credentials, Permission Management 7:25
Lecture 111 Policy Types, Amazon Resource Naming (ARN) Convention 8:31
Lecture 112 Elements and Structure of a Policy Document 6:55
Lecture 113 Policy Best Practices with Examples, Attribute Based Access Control (ABAC) 7:42
Lecture 114 IAM Roles, Application Access, Cross-account Access 6:17
Lecture 115 IAM Role and External ID Text
Lecture 116 Identity Federation - Corporate Identity, Social Identity 6:17
Lecture 117 Active Directory Integration Options and Trust Management 6:20
Lecture 118 STS - Temporary Security Credentials Text
Lecture 119 Lab - Identity-based Policy - Part 1 5:1
Lecture 120 Lab - Identity-based Policy - Part 2 5:40
Lecture 121 Lab - Boundary Permissions Explained 3:53
Lecture 122 Lab - Resource-based Policy 5:15
Lecture 123 Lab - Restrict Access By IP 7:0
Lecture 124 Lab - Restrict Access By VPC Endpoint 5:22
Lecture 125 Lab - Cross Account Access with Resource Based Policy 3:52
Lecture 126 Lab - Cross Account Access with IAM Roles - Part 1 6:51
Lecture 127 Lab - Cross Account Access with IAM Roles - Part 2 6:2
Lecture 128 Revoking access to Temporary Credentials Text
Lecture 129 AWS Sample Exam Question #1 Text
Lecture 130 Answer to Question #1 Text
Lecture 131 AWS Sample Exam Question #4 Text
Lecture 132 Answer to Question #4 Text
Lecture 133 AWS Sample Exam Question #5 Text
Lecture 134 Answer to Question #5 Text
Lecture 135 AWS Sample Exam Question #7 Text
Lecture 136 Answer to question #7 Text

Section 13 : Logs and Events - Visibility into activities in AWS

Lecture 137 Downloadable Resources Text
Lecture 138 Introduction to Logs and Events 8:36
Lecture 139 CloudTrail - Capture all AWS API activity 11:3
Lecture 140 Lab - CloudTrail Event History 8:47
Lecture 141 Lab - Consolidate account activity to S3, CloudWatch Log and Log Integrity Check 10:28
Lecture 142 Lab - Log Insights to Query CloudTrail Activity 7:54
Lecture 143 Lab - Athena SQL to Query CloudTrail Activity 7:48
Lecture 144 Lab - CloudWatch Events Real-time Monitoring of EC2 State 6:22
Lecture 145 Lab - Real-time Monitoring of Root Usage using CloudWatch Events 3:22
Lecture 146 Lab - CloudWatch Log Metric Filter based Monitoring of Root Usage 6:44
Lecture 147 AWS Sample Question #9 Text
Lecture 148 Answer to question #9 Text

Section 14 : Visibility into Network Activity in your VPC

Lecture 149 Downloadable Resources Text
Lecture 150 Lab - VPC Flow Logs Capture, Format and Querying 11:39
Lecture 151 Lab - Troubleshoot Security Group and Network ACL firewall Connectivity Issues 7:15
Lecture 152 Packet Capture - VPC Traffic Mirroring and External AMI Text

Section 15 : AWS Organizations - Multi-Account Management

Lecture 153 Downloadable Resources Text
Lecture 154 Lab - Create Organization, Member Accounts, Service Control Policies and Trail 9:17
Lecture 155 Lab - Organizational Units and test effect of Service Control Policies (SCP) 6:34
Lecture 156 Lab - Single Sign-on (SSO), Cross-Account Access and Permission Sets 9:18
Lecture 157 Resource Sharing Across Account - Resource Access Manager and Transit Gateway 3:47
Lecture 158 How to setup Bastion Host and Credential Forwarding Text
Lecture 159 Lab - Resource Access Manager - Share VPC and NAT Gateway with member accounts 8:22
Lecture 160 Lab - Transit Gateway to Interconnect VPCs 6:55
Lecture 161 Transit Gateway - VPC attachment Text
Lecture 162 Lab - Transit Gateway - Route Outbound traffic through common NAT Gateway 10:10

Section 16 : Protect and Manage Resources

Lecture 163 Downloadable Resources Text
Lecture 164 2020 Type of Attacks and Case Study 7:28
Lecture 165 2020 Case Study Solution Discussion 7:33
Lecture 166 AWS Web Application Firewall (WAF) 7:7
Lecture 167 Lab - AWS WAF 5:3
Lecture 168 AWS Shield 4:37
Lecture 169 IPTables, Windows Firewall, HostInstance Based Firewall Text
Lecture 170 Secrets Manager 3:23
Lecture 171 Systems Manager 3:29
Lecture 172 Systems Manager Parameter Store Text
Lecture 173 AWS Config 2:8
Lecture 174 AWS Inspector, Trusted Advisor and Integrated Usage Walk-through 4:10
Lecture 175 Lab - Systems Manager Setup and Policies 3:51
Lecture 176 Lab - Managed Instances, Session Manager, Compliance Status 7:43
Lecture 177 Lab - Patch Manager 5:31
Lecture 178 Lab - CloudWatch Log Agent to monitor log files in the server 10:25
Lecture 179 Managing Private Instances Text
Lecture 180 AWS Sample Exam Question #2 Text
Lecture 181 Answer for Question #2 Text
Lecture 182 Download Config Lab Slides Text
Lecture 183 Lab - AWS Config S3 bucket encryption compliance 8:57
Lecture 184 Lab - AWS Config Automated Remediation 6:54
Lecture 185 Config Aggregation Text
Lecture 186 Lab - AWS Inspector for Network Reachability, Vulnerability and Host Hardening 6:12
Lecture 187 Lab - Trusted Advisor 3:46
Lecture 188 GuardDuty and Macie Overview Text

Section 17 : Key Management System (KMS) - Encryption key management

Lecture 189 Downloadable Resources Text
Lecture 190 Symmetric & Asymmetric Encryption, Digital Signing and Common Challenges 7:1
Lecture 191 Envelope Encryption Concepts and S3 Server Side Encryption 5:3
Lecture 192 EBS Volume Encryption, RDS and DynamoDB Encryption 7:18
Lecture 193 RDS Database encryption options Text
Lecture 194 Lab (repeat) - S3 AWS Managed Key and Customer Managed Key Encryption 6:19
Lecture 195 Lab - EBS Encryption 7:20
Lecture 196 Lab - KMS Features (Symmetric, Asymmetric, Key Material Origin, Resource Policy) 7:44
Lecture 197 Lab - KMS Automatic and Manual Key Rotation 4:54
Lecture 198 KMS APIs 4:57
Lecture 199 AWS Sample Question #8 Text
Lecture 200 Answer to question #8 Text

Section 18 : SSLTLS Encryption

Lecture 201 Downloadable Resources Text
Lecture 202 Lab - Enabling SSL at Elastic Load Balancer 11:18
Lecture 203 End to End Encryption from client up to EC2 instance or Target (end-end) Text
Lecture 204 Lab - CloudFront Custom Domain and SSL 6:26
Lecture 205 S3, SSL and Custom Domain Text

Section 19 : Security Incident Response

Lecture 206 Downloadable Resources Text
Lecture 207 AWS Acceptable Use Policy - Your Responsibilities in preventing an incident 8:6
Lecture 208 Security Incident Response Concepts 10:6
Lecture 209 Three Simple Tips for securing your EC2 instances Text
Lecture 210 Security Testing Policies in AWS 6:19
Lecture 211 NEW AWS Penetration Testing Policy Changes Text
Lecture 212 AWS Sample Question #10 Text
Lecture 213 Answer to question #10 Text

Section 20 : Summary of Security Products and Capabilities

Lecture 214 AWS Security Products Summary Text