AWS Security Governance at Scale Course Overview:

This intermediate-level 1-day course will help solutions architects, DevOps engineers, and security engineers to stop managing cloud governance manually and automate the processes like account management, budget enforcement, security and compliance through AWS security and governance services and concepts. Deep dive into key services, concepts, and best practices to provide control, visibility and governance required to protect sensitive data and systems through tutorials, hands-on labs, and group exercises. By the end of this course, you will be able to apply governance best practices.

After completing AWS Security Governance at Scale Training, students will be able to:

  • Establish a landing zone with AWS Control Tower
  • Configure AWS Organizations to create a multi-account environment
  • Implement identity management using AWS Single Sign-On users and groups
  • Federate access using AWS SSO
  • Enforce policies using pre-packaged guardrails
  • Centralize logging using AWS CloudTrail and AWS Config
  • Enable cross-account security audits using AWS Identity and Access Management (IAM)
  • Define workflows for provisioning accounts using AWS Service Catalog and AWS Security Hub

Upcoming Batches

Enroll Online
Start Date End Date

To be Decided

AWS Security Governance at Scale Certification Key Features:

  • This is an Intermediate 1-day course that facilitates learners to:
  • Understand Governance at scale focal points, Business and Technical Challenges
  • Implement Multi-account strategies and Governance with AWS Control Tower
  • Preventive cost and security governance and services like AWS Service Catalog
  • Implement Detective Controls
  • Understand solutions for different use cases
  • Perform hands-on labs using services like AWS Catalog, AWS Config, AWS Systems Manager

Who Should Attend this Course?

  • Solutions architects
  • Cloud engineers, including security engineers
  • Delivery and implementation engineers
  • AWS or Security Aspirant Students or job seekers

Prerequisites for the Training:

  • Participants of this course must have an understanding and hands-on experience with AWS services, such as AWS Systems Manager, AWS Config, AWS Control Tower and AWS Service Catalog
  • We recommend that attendees of this course have taken AWS Security Fundamentals and AWS Security Essentials

    • Why choose CloudThat as your training partner?

    • CloudThat has a strong reputation and a proven track record of delivering high-quality training programs that always exceeds clients’ expectations.
    • CloudThat has expertise and specialization in multi cloud domains and always ensure they have experience in delivering training programs relevant to your industry, field, or specific learning objectives.
    • CloudThat has qualified trainers with industry experience who provide valuable insights and practical knowledge in their training deliveries facilitating a great learning.
    • CloudThat has ability to customize programs to meet your specific needs and objectives. Flexibility in delivery formats, such as on-site, online, blended, weekend learning programs.
    • CloudThat adopts innovative and engaging learning methods to ensure effective knowledge transfer and skill development including certification preparation assistance, post-training support, labs, case studies, experiential learning and assessments.
    • CloudThat offers well-designed materials that can enhance the learning experience and serve as valuable resources for participants.
    • CloudThat offers its trainings at affordable prices to ensure customers get the best learning experience at a best price and Value for their Money.

    Learning objective of course:

    • Establish a landing zone with AWS Control Tower
    • Configure AWS Organizations to create a multi-account environment
    • Implement identity management using AWS Single Sign-On users and groups
    • Federate access using AWS SSO
    • Enforce policies using pre-packaged guardrails
    • Centralize logging using AWS CloudTrail and AWS Config
    • Enable cross-account security audits using AWS Identity and Access Management (IAM)
    • Define workflows for provisioning accounts using AWS Service Catalog and AWS Security Hub

    AWS Security Governance at Scale Course Outline: Download Course Outline

    • Governance at scale focal points
    • Business and Technical Challenges

    • Multi-account strategies, guidance, and architecture
    • Environments for agility and governance at scale
    • Governance with AWS Control Tower
    • Use cases for governance at scale

    • Enterprise environment challenges for developers
    • AWS Service Catalog
    • Resource creation
    • Workflows for provisioning accounts
    • Preventive cost and security governance
    • Self-service with existing IT service management (ITSM) tools

    • Create a new AWS Service Catalog portfolio and product.
    • Add an IAM role to a launch constraint to limit the actions the product can perform.
    • Grant access for an IAM role to view the catalog items.
    • Deploy an S3 bucket from an AWS Service Catalog product

    • Operations aspect of governance at scale
    • Resource monitoring
    • Configuration rules for auditing
    • Operational insights
    • Remediation
    • Clean up accounts

    • Apply Managed Rules through AWS Config to selected resources
    • Automate remediation based on AWS Config rules
    • Investigate the Amazon Config dashboard and verify resources and rule compliance

    • Setup Resource Groups for various resources based on common requirements
    • Perform automated actions against targeted Resource Groups

    • Explore additional resources for security governance at scale

    Course Fee

    Select Course date

    Can't See the Date? Contact Us to Enroll and Get More Information

    Add to Wishlist

    Course ID: 20362

    Course Price at

    $799 + 0% TAX
    Enroll Now

    Frequently Asked Questions

    Security Governance at scale is a new concept for automating cloud governance that can help companies to automate the repetitive processes like account management, budget enforcement, compliance enforcement, security enforcement etc. By automating such common challenges, companies can scale without compromising on agility, speed, or innovation.

    In this course, you will learn how to facilitate developer speed and agility, and incorporate preventive and detective controls. It also provides decision makers with the visibility, control, and governance necessary to protect sensitive data and systems.

    This is a 1-day Intermediate level training

    AWS Security Essentials and AWS Security Best Practices courses where you learn fundamental AWS Cloud security concepts

    As per https://www.payscale.com/, $117k/ year is the Avg. Base Salary (USD) for a person planning in career in security domain and specifically in AWS Security domain

    Enquire Now