Join us for a comprehensive full-day workshop on Security on AWS. Master identity and access management, network security, data protection, and security monitoring. Learn compliance frameworks and incident response strategies.
Morning Session
8:30 – 9:00 AM | Welcome & Security Landscape
•Recap of previous sessions
•Shared Responsibility Model
•Emerging cloud threats and local context in Vietnam
9:00 – 10:30 AM | Identity & Access Management (IAM)
•IAM structure: Users, Roles, and Policies
•Permission boundaries, SCPs, and IAM Identity Center
•MFA, rotation, and audit best practices
•Demo: Policy creation and validation
10:30 – 10:45 AM | Coffee Break
10:45 AM – 12:00 PM | Network Security
•VPC design best practices, subnet isolation
•Security Groups vs NACLs
•AWS WAF, Shield, and Network Firewall overview
•Exercise: Design a secure VPC architecture
12:00 – 1:00 PM | Lunch Break
Afternoon Session
1:00 – 2:30 PM | Data Protection & Encryption
•AWS KMS: Key policies, rotation, envelope encryption
•Encryption in Practice: S3, EBS, RDS, DynamoDB
•Secrets Management: Secrets Manager, Certificate Manager
•Demo: Implementing encryption at scale
2:30 – 2:45 PM | Break
2:45 – 4:00 PM | Security Monitoring & Incident Response
•Security Hub, GuardDuty, Config, CloudTrail, Detective
•Threat detection, compliance tracking, audit logging
•Incident response lifecycle
•Demo: Security operations dashboard
4:00 – 4:30 PM | Compliance & Governance
•Global standards: GDPR, HIPAA, PCI-DSS, SOC 2, ISO 27001
•AWS Control Tower, Organizations, and governance best practices
•Case Study: Multi-account enterprise security model
4:30 – 4:50 PM | AWS Well-Architected Security Pillar
•Identity, Detection, Infrastructure, Data, and Response
•Security automation and DevSecOps integration
•Zero Trust Architecture and cost optimization
4:50 – 5:00 PM | Closing Remarks
•Key takeaways from the AWS Cloud Mastery Series
•Future learning opportunities and certification roadmap
