
AWS Certified Security - Specialty
This course prepares participants for the AWS Certified Security – Specialty exam by covering security solutions for AWS workloads and architectures. Training typically combines instructor-led explanation, hands-on labs, and exam-style practice covering identity and access management, logging and monitoring, data classifications, encryption methods, secure internet protocols, and AWS data protection mechanisms.
No sessions available
Check back later or contact a provider directly.
Description
This course prepares participants for the AWS Certified Security – Specialty exam by covering security solutions for AWS workloads and architectures.
Training typically combines instructor-led explanation, hands-on labs, and exam-style practice covering identity and access management, logging and monitoring, data classifications, encryption methods, secure internet protocols, and AWS data protection mechanisms.
Participants review how security controls are created and applied in AWS Cloud environments. It is suitable for experienced IT security professionals, cloud architects, DevSecOps engineers, and teams responsible for securing AWS workloads.
What You Will Learn
Course Content
This course covers the main knowledge areas for the AWS Certified Security Specialty exam, with lectures, guided demonstrations, hands-on labs, case studies, and exam-style practice questions. Content is aligned with the SCS-C03 exam guide.
Module 1: Detection, logging, and monitoring
Configure AWS CloudTrail, Amazon CloudWatch, VPC Flow Logs, Route 53 Resolver logs, CloudTrail Lake, Amazon Security Lake, and OCSF-formatted security data.
Analyze findings with Amazon GuardDuty, AWS Security Hub, Amazon Athena, Amazon OpenSearch Service, and Amazon Detective.
Create alerts, dashboards, and log analysis workflows for security events.
Module 2: Incident response
Build response plans and runbooks using AWS Systems Manager OpsCenter and related AWS services.
Practice investigation, containment, recovery, root cause analysis, and evidence collection.
Review incident response scenarios for compromised credentials, exposed data, network events, and suspicious AI or ML activity.
Module 3: Infrastructure security
Secure Amazon VPC designs with security groups, network ACLs, AWS Network Firewall, VPC endpoints, and Route 53 Resolver DNS Firewall.
Review edge protection with Amazon CloudFront, AWS WAF, AWS Shield, and secure DNS patterns.
Apply secure access methods for Amazon EC2, AWS Lambda, containers, and hybrid connectivity.
Module 4: Identity, data protection, governance, and AI security
Design IAM policies, roles, permission boundaries, IAM Identity Center access, ABAC, RBAC, service control policies, and Resource Control Policies.
Protect data with AWS KMS, AWS CloudHSM, AWS Secrets Manager, TLS, S3 Object Lock, AWS Backup, AWS Certificate Manager, CloudWatch Logs data protection policies, SNS message data protection, and encryption in transit for EMR, EKS, SageMaker AI, and Nitro-based workloads.
Review Amazon Bedrock guardrails, GenAI OWASP Top 10 for LLM Applications, and SageMaker AI security controls.
After completion, participants should be able to assess AWS security requirements, select suitable AWS controls, troubleshoot common security issues, and prepare for the AWS Certified Security Specialty exam.
Certification & Exam
This course prepares participants for the AWS Certified Security - Specialty certification exam, currently exam code SCS-C03. The exam is a specialty-level AWS Certification assessment with 65 questions and a time limit of 170 minutes. AWS reports results on a scaled score from 100 to 1,000, with 750 required to pass.
The exam guide lists question types including multiple choice, multiple response, ordering, and matching; 50 questions are scored and 15 unscored questions are included but not identified.
Candidates can take the exam through Pearson VUE at a testing center or as an online proctored exam. For current requirements, see the official AWS Certified Security - Specialty page.
What You Will Achieve
After completing this course, participants will be able to:
Apply AWS data classification and protection practices to select suitable controls for sensitive workloads and regulated data.
Implement encryption for data at rest and in transit using AWS services and mechanisms such as AWS Key Management Service, certificate management, and secure protocol configuration.
Design identity and access controls using AWS Identity and Access Management, least privilege policies, roles, permissions boundaries, and multi-account access patterns.
Configure detection, logging, and monitoring controls using AWS security services to support audit readiness, threat detection, and production security operations.
Analyze security events and incidents, identify likely root causes, and choose response actions that reduce risk to AWS workloads.
Evaluate infrastructure security options for network protection, firewall rules, workload isolation, vulnerability management, and secure application access.
Assess security governance decisions by balancing cost, security requirements, and deployment complexity for cloud workloads.
Prepare for AWS Certified Security Specialty exam tasks by practicing security scenarios across detection, incident response, infrastructure security, identity and access management, data protection, and governance.
Training Providers
No providers available for this course yet.
FAQs
General Information
Prerequisites & Requirements
Certification & Exam
Get Custom In-house Training
Post once, get competitive offers from multiple providers. Choose the one that fits your team.
Similar Trainings
AWS Certified Cloud Practitioner
This provider-led AWS Certified Cloud Practitioner course introduces core AWS Cloud concepts for business, technical, sales, and support roles. Participants study AWS global infrastructure, IAM, EC2, S3, VPC, Lambda, security responsibilities, pricing, billing, and support plans. Teaching may include instructor-led lessons, service demos, knowledge checks, case studies, and practical exercises focused on real workplace scenarios. After completion, participants should be able to explain key AWS services, discuss basic cloud value, identify security and cost considerations, and prepare for the AWS Certified Cloud Practitioner exam.
Network+
CompTIA Network+ is the premier certification for validating your knowledge of essential networking tools and concepts. You will be assessed on your abilities in network connectivity, documentation, service configuration, data centers, cloud, virtual networking, monitoring, troubleshooting, and security hardening. This certification prepares you for jobs in technical support, network operations, and system administration.
AWS Certified Machine Learning Engineer - Associate
This course covers AWS machine learning workflows for the AWS Certified Machine Learning Engineer, Associate certification. Participants study data preparation, feature engineering, model training, evaluation, deployment, monitoring, and responsible AI practices. Teaching typically combines lectures, demonstrations, hands-on labs, and case studies using AWS services such as Amazon SageMaker , Amazon S3 , AWS Glue , and AWS Lambda . The course balances core ML concepts with practical AWS tasks, helping participants prepare for the exam and apply machine learning workflows in cloud-based projects.
AWS Certified Solutions Architect - Associate
Prepare for the SAA-C03 exam through guided lectures, hands-on AWS labs , architecture diagrams, and scenario-based case studies. Participants study the AWS Well-Architected Framework, IAM, VPC networking, EC2, S3, RDS, Lambda, Route 53, CloudFront, Auto Scaling, Elastic Load Balancing, and CloudWatch. The course balances exam theory with design practice for secure, resilient, high-performing, and cost-optimized architectures. After completion, learners can assess requirements, choose suitable AWS services, review existing designs, and plan next steps toward AWS certification.
AWS Certified Data Engineer - Associate
This course covers data engineering on AWS, with a focus on building, operating, and maintaining data pipelines using AWS Glue, Amazon Redshift, Amazon Kinesis, Amazon S3, and related AWS services. Training typically combines lectures, hands-on labs, and scenario-based exercises to connect core concepts with practical implementation. Participants study data ingestion, transformation, orchestration, storage, monitoring, security, and cost-aware design. After completion, they can plan and support AWS data workflows and prepare for the AWS Certified Data Engineer Associate certification exam.
AWS Certified Developer - Associate
This course covers cloud application development for the AWS Certified Developer Associate certification, with a focus on AWS Lambda, DynamoDB, API Gateway, AWS SDKs, IAM, and CI/CD workflows. Participants learn how to build, test, deploy, and monitor serverless applications, manage application data, use authentication and permissions, and troubleshoot common issues. Teaching may include instructor-led lectures, hands-on labs, demos, and exam-style practice questions. The content balances AWS service concepts with practical development tasks, helping developers and technical teams prepare for certification and apply AWS development skills at work.