OpenCourser brand icon
Sign in
We may earn an affiliate commission when you visit our partners.
Pluralsight logo

Securing Applications on AWS

Mark Wilkins

Learn how to use CloudWatch for monitoring, CloudTrail for auditing, Config for resource compliance, and Trusted Advisor for warnings. Explore how to protect against DDOS attacks with the WAF and use the API Gateway for creating and hosting APIs.

Many applications at AWS are over-hosted. In this course, Securing Applications on AWS, you will gain knowledge about how to protect over-hosted applications at AWS using a variety of powerful management tools provided by Amazon.

Read more

Learn how to use CloudWatch for monitoring, CloudTrail for auditing, Config for resource compliance, and Trusted Advisor for warnings. Explore how to protect against DDOS attacks with the WAF and use the API Gateway for creating and hosting APIs.

Many applications at AWS are over-hosted. In this course, Securing Applications on AWS, you will gain knowledge about how to protect over-hosted applications at AWS using a variety of powerful management tools provided by Amazon.

First, you will look at the Web Application Firewall (WAF) and see how to protect against unwanted access from incoming public traffic, you will explore the API Gateway and how you can create and host APIs at AWS, and you will dive into Amazon Cognito which allows you to create user and identity pools that allow internal and external authentication and single sign-on access.

Next, you will look at the operation of CloudWatch and its use of metrics which allow you to manage all of your AWS resources, as well as CloudTrail which helps to monitor all activity in your AWS account.

Finally, you will see how to use TrustedAdvisor to alert you to account issues, and AWS Config to set rules for managing your infrastructure resources.

When you are done with this course, you will know how to monitor, audit, protect, and take many other actions towards protecting your applications hosted on AWS.

This course is no longer available. Find something similar by browsing:
Security Best Practices CloudWatch CloudTrail Security Compliance Web Application Firewall AWS Config Security Monitoring

What's inside

Syllabus

Course Overview
Web Application Firewall and the API Gateway
Authenticating Users with Amazon Cognito
Logging with CloudWatch
Read more

Traffic lights

Read about what's good
what should give you pause
and possible dealbreakers
Strong foundation for learners with an interest in securing Cloud-based applications
Taught by Mark Wilkins, industry authority on cloud security and data protection
Emphasizes emerging frameworks and compliance standards in AWS, highly relevant to industry
Builds a strong foundation in AWS security services and their practical implementation

Save this course

Create your own learning path. Save this course to your list so you can find it easily later.
Save

Reviews summary

Practical introduction to aws application security

According to learners, "Securing Applications on AWS" offers a solid introduction to AWS security services. Students frequently commend the instructor's clear explanations and the course's practical, hands-on approach, with many finding the demos and labs invaluable for applying concepts. It is considered highly relevant for professionals seeking to bolster skills in areas like WAF, API Gateway, and CloudWatch. While a majority appreciate the comprehensive overview, some indicate the course lacks the in-depth technical detail needed for advanced users, serving better as a foundational stepping stone. A recurring concern relates to lab environments sometimes being buggy or unclear.
Course is best suited for those with some prior AWS experience entering security.
"I felt the course assumes some prior AWS experience, which wasn't always clear. A bit more foundational content or a prerequisite warning would be helpful."
"It's great for someone who has basic AWS knowledge and wants to step into security."
"Perfect for intermediate AWS users looking to specialize in security."
"I was looking for more technical depth, but it only scratches the surface. Labs were a bit basic for my taste."
Covers current, important security services in a well-organized manner.
"The content is highly relevant for professionals working with AWS. I especially appreciated the real-world scenarios..."
"This course is a must-take for anyone serious about AWS security. It covers a wide array of services like Cognito, CloudWatch, and Trusted Advisor effectively."
"Absolutely brilliant! The course is very well structured, moving from WAF to Cognito, then CloudWatch/CloudTrail, and finally Trusted Advisor/Config."
"Highly recommend this course! The content is up-to-date and practical. I loved the hands-on approach..."
Offers actionable insights and clear, engaging explanations for complex topics.
"The instructor explained complex topics like WAF and API Gateway clearly, making it easy to understand even for someone relatively new to AWS security."
"I especially appreciated the real-world scenarios and how each service ties into a comprehensive security strategy. The instructor's pace was perfect..."
"The hands-on exercises were key to reinforcing the concepts. I gained practical skills I can immediately apply at work. Excellent!"
"The practical examples are spot-on, and the depth of coverage on each security service is impressive. This course is perfect for intermediate AWS users..."
Some learners experienced issues with labs not working as expected or being unclear.
"The labs were okay, but sometimes the environment setup was a bit tricky. Good for a high-level overview, but not for in-depth learning."
"The labs were buggy and didn't always work as expected, leading to frustration. Not recommended if you want to truly learn how to secure applications."
"Lab environments need improvement. The content is broadly accurate, but not always thorough."
"The lab instructions were often unclear, making it hard to follow. Definitely not for professionals seeking advanced knowledge."
Provides a good overview, but may lack the in-depth detail for advanced learners.
"Some explanations lacked depth. While it introduces concepts, I often felt the need to consult external documentation for a full understanding."
"The content felt superficial, and the instructor occasionally glossed over important details. I had to look up a lot of information myself."
"It's an introductory course, good for absolute beginners but not for intermediate or advanced users. The explanations are high-level."
"The content is too basic and lacks the depth needed for real-world application. I found myself googling most of the topics..."

Activities

Be better prepared before your course. Deepen your understanding during and after it. Supplement your coursework and achieve mastery of the topics covered in Securing Applications on AWS with these activities:
Connect with an AWS Certified Security Specialist
Accelerate your learning and gain practical insights by connecting with an experienced AWS security professional.
Browse courses on Mentorship
Show steps
  • Identify potential mentors on LinkedIn or other professional networking platforms.
  • Reach out to mentors and express your interest in learning about AWS security.
Review basics of cloud computing
Background knowledge in cloud fundamentals will make the course material easier to grasp.
Browse courses on Cloud Computing Fundamentals
Show steps
  • Review articles and whitepapers on cloud computing.
  • Watch videos on YouTube to understand the core concepts of cloud computing.
Review AWS Whitepapers on Security Best Practices
Reinforce your foundational knowledge of AWS security best practices.
Browse courses on AWS Best Practices
Show steps
  • Visit the AWS Security Hub and browse available whitepapers.
  • Select whitepapers relevant to the course topics and your specific interests.
Eight other activities
Expand to see all activities and additional details
Show all 11 activities
Attend an AWS Meetup focused on Security
Connect with professionals in the field and gain insights into industry best practices and emerging trends in AWS security.
Browse courses on Networking
Show steps
  • Identify and register for an upcoming AWS Meetup in your area.
  • Attend the meetup and participate in discussions.
  • Network with other attendees and explore potential collaboration opportunities.
Join a Study Group to Discuss CloudTrail Findings
Gain valuable insights by collaborating with peers and discussing real-life CloudTrail findings and their implications for security.
Browse courses on CloudTrail
Show steps
  • Find or create a study group with other students taking the course.
  • Share and analyze CloudTrail findings from your AWS account.
  • Discuss best practices and strategies for threat detection and prevention.
Practice using CloudWatch console
Gaining familiarity with the CloudWatch console through hands-on practice will enhance understanding of the course material.
Browse courses on CloudWatch
Show steps
  • Create an Amazon CloudWatch account.
  • Explore the CloudWatch console and familiarize yourself with its features.
  • Create and configure a CloudWatch alarm.
Analyze a sample log file using curated CloudWatch dashboards
Develop familiarity with CloudWatch dashboards and the types of insights that can be gained from log analysis.
Browse courses on CloudWatch
Show steps
  • Navigate to the CloudWatch console and locate the dashboard section.
  • Select a curated dashboard template relevant to your application.
  • Analyze the metrics, graphs, and insights provided by the dashboard.
Implement and Configure Trusted Advisor
Enhance your ability to identify and address potential security and compliance issues within your AWS infrastructure.
Browse courses on Trusted Advisor
Show steps
  • Review the official AWS documentation on Trusted Advisor.
  • Follow guided tutorials on how to implement Trusted Advisor in your AWS account.
  • Configure Trusted Advisor checks and alerts based on your specific requirements.
Configure an API Gateway
Creating a practical API Gateway will deepen the understanding of API creation and management in AWS.
Browse courses on API Gateway
Show steps
  • Design the API and define its endpoints and methods.
  • Create an API Gateway in the AWS console.
  • Deploy the API to a URL.
Design a Custom API Gateway Endpoint
Strengthen your understanding of API Gateway by creating and deploying a custom endpoint for your own application.
Browse courses on API Gateway
Show steps
  • Brainstorm and define the purpose and functionality of your custom endpoint.
  • Design the API resources, methods, and request/response structures.
  • Create and deploy the API Gateway endpoint using the AWS console or CLI.
  • Test the endpoint using a tool like Postman or curl.
Write a Blog Post about a Specific AWS Security Feature
Solidify your understanding by articulating your knowledge of a particular AWS security feature and sharing it with the broader community.
Show steps
  • Choose an AWS security feature that interests you.
  • Research and gather information on the feature, including its benefits, use cases, and implementation details.
  • Write a well-written blog post explaining the feature and its significance.

Career center

Learners who complete Securing Applications on AWS will develop knowledge and skills that may be useful to these careers:
Cloud Security Engineer
Designing and implementing secure cloud solutions is a key responsibility of Cloud Security Engineers. You will need knowledge of cloud computing platforms such as AWS, as well as security best practices. This course can help build a foundation in AWS security, teaching you how to use tools like CloudWatch, CloudTrail, Config, Trusted Advisor, WAF, and API Gateway to protect your applications.
See salaries and explore the career path for Cloud Security Engineer
DevSecOps Engineer
DevSecOps Engineers are responsible for integrating security into the software development lifecycle. This requires knowledge of both security and software development processes. This course can help you build a foundation in AWS security, teaching you how to use tools like CloudWatch, CloudTrail, Config, Trusted Advisor, WAF, and API Gateway to protect your applications.
See salaries and explore the career path for DevSecOps Engineer
Security Architect
Security Architects design and implement security solutions for organizations. This requires knowledge of a variety of security technologies and best practices. This course can help you build a foundation in AWS security, teaching you how to use tools like CloudWatch, CloudTrail, Config, Trusted Advisor, WAF, and API Gateway to protect your applications.
See salaries and explore the career path for Security Architect
Cloud Engineer
Cloud Engineers design, build, and manage cloud computing solutions. This requires knowledge of cloud computing platforms such as AWS, as well as security best practices. This course can help build a foundation in AWS security, teaching you how to use tools like CloudWatch, CloudTrail, Config, Trusted Advisor, WAF, and API Gateway to protect your applications.
See salaries and explore the career path for Cloud Engineer
Software Engineer
Software Engineers design, develop, and maintain software applications. This requires knowledge of a variety of programming languages and technologies. This course can help build a foundation in AWS security, teaching you how to use tools like CloudWatch, CloudTrail, Config, Trusted Advisor, WAF, and API Gateway to protect your applications.
See salaries and explore the career path for Software Engineer
Network Engineer
Network Engineers design, build, and manage computer networks. This requires knowledge of a variety of networking technologies and protocols. This course may be useful, as it teaches you how to use tools like CloudWatch, CloudTrail, Config, Trusted Advisor, WAF, and API Gateway to protect your applications.
See salaries and explore the career path for Network Engineer
Systems Administrator
Systems Administrators manage and maintain computer systems. This requires knowledge of a variety of operating systems and software applications. This course may be useful, as it teaches you how to use tools like CloudWatch, CloudTrail, Config, Trusted Advisor, WAF, and API Gateway to protect your applications.
See salaries and explore the career path for Systems Administrator
Database Administrator
Database Administrators manage and maintain databases. This requires knowledge of a variety of database technologies and protocols. This course may be useful, as it teaches you how to use tools like CloudWatch, CloudTrail, Config, Trusted Advisor, WAF, and API Gateway to protect your applications.
See salaries and explore the career path for Database Administrator
Information Security Analyst
Information Security Analysts identify and mitigate security risks. This requires knowledge of a variety of security technologies and best practices. This course can help build a foundation in AWS security, teaching you how to use tools like CloudWatch, CloudTrail, Config, Trusted Advisor, WAF, and API Gateway to protect your applications.
See salaries and explore the career path for Information Security Analyst
Security Analyst
Security Analysts investigate and respond to security incidents. This requires knowledge of a variety of security technologies and best practices. This course can help build a foundation in AWS security, teaching you how to use tools like CloudWatch, CloudTrail, Config, Trusted Advisor, WAF, and API Gateway to protect your applications.
See salaries and explore the career path for Security Analyst
Security Consultant
Security Consultants provide advice and guidance to organizations on how to improve their security posture. This requires knowledge of a variety of security technologies and best practices. This course can help build a foundation in AWS security, teaching you how to use tools like CloudWatch, CloudTrail, Config, Trusted Advisor, WAF, and API Gateway to protect your applications.
See salaries and explore the career path for Security Consultant
IT Auditor
IT Auditors evaluate the security of computer systems and networks. This requires knowledge of a variety of security technologies and best practices. This course may be useful, as it teaches you how to use tools like CloudWatch, CloudTrail, Config, Trusted Advisor, WAF, and API Gateway to protect your applications.
See salaries and explore the career path for IT Auditor
IT Manager
IT Managers oversee the operation of computer systems and networks. This requires knowledge of a variety of IT technologies and best practices. This course may be useful, as it teaches you how to use tools like CloudWatch, CloudTrail, Config, Trusted Advisor, WAF, and API Gateway to protect your applications.
See salaries and explore the career path for IT Manager
IT Director
IT Directors are responsible for the overall management of IT resources within an organization. This requires knowledge of a variety of IT technologies and best practices. This course may be useful, as it teaches you how to use tools like CloudWatch, CloudTrail, Config, Trusted Advisor, WAF, and API Gateway to protect your applications.
See salaries and explore the career path for IT Director
Chief Information Officer (CIO)
CIOs are responsible for the overall management of IT resources within an organization. This requires knowledge of a variety of IT technologies and best practices. This course may be useful, as it teaches you how to use tools like CloudWatch, CloudTrail, Config, Trusted Advisor, WAF, and API Gateway to protect your applications.
See salaries and explore the career path for Chief Information Officer (CIO)

Reading list

We've selected seven books that we think will supplement your learning. Use these to develop background knowledge, enrich your coursework, and gain a deeper understanding of the topics covered in Securing Applications on AWS.
Cover image
Cloud Security: A Comprehensive Guide To Secure...
Save
Provides a comprehensive overview of cloud security, covering topics such as cloud security architecture, risk management, and compliance.
Cloud Security: A Comprehensive Guide to Secure...
Kindle Edition
$$
Cover image
Conflict and Development
Save
Provides a comprehensive introduction to web application security. It covers a range of topics, including OWASP Top 10, security testing, and web application firewalls.
Conflict and Development
Paperback
Check
Conflict and Development
Kindle Edition
Check
Cover image
Threats
Save
Provides a step-by-step guide to threat modeling. It covers a range of topics, including threat identification, risk assessment, and mitigation strategies.
Threat Modeling: Designing for Security
Paperback
$$
Threats: What Every Engineer Should Learn From Star...
Kindle Edition
$$
Cover image
AWS Certified Security Study Guide
Save
Is the official study guide for the AWS Certified Security - Specialty (SCS-C01) exam. It provides comprehensive coverage of the exam topics, including AWS security services and best practices.
AWS Certified Security Study Guide: Specialty (SCS...
Paperback
$$
AWS Certified Security Study Guide: Specialty (SCS...
Kindle Edition
$$
Cover image
AWS Certified Solutions Architect - Associate (SAA...
Save
Comprehensive guide to securing applications on AWS. It covers a wide range of topics, including AWS security services and best practices.
AWS Certified Solutions Architect - Associate (SAA...
Paperback
Check
AWS Certified Solutions Architect - Associate (SAA...
Kindle Edition
Check
Cover image
Amazon Web Services in Action
Save
Provides a collection of security patterns for cloud applications. It covers a wide range of topics, including AWS security services and best practices.
Amazon Web Services in Action, Third Edition: An in...
Paperback
$$$
Amazon Web Services in Action
Paperback
$$
Amazon Web Services in Action
Audible Audiobook
$$
Amazon Web Services in Action
Kindle Edition
$$
Cover image
Penetration Testing: A Survival Guide
Save
Provides a hands-on guide to AWS security penetration testing. It covers a wide range of topics, including AWS security services and best practices.
Penetration Testing: A Survival Guide
Kindle Edition
$$$

Share

Help others find this course page by sharing it with your friends and followers:
Facebook
LinkedIn
Reddit
X
Link
Email

Similar courses

Similar courses are unavailable at this time. Please try again later.
Course image
Time
133 hours
Level
Intermediate
Via
Pluralsight
Instructor
Mark Wilkins
Language
English
This course belongs to a collection called AWS Cloud Security. It's comprised of eight courses:
  1. Introduction to AWS Cloud Security
  2. Identity and Access Management on AWS: Users
  3. Securing Data on AWS
  4. Securing AWS Infrastructure
  5. Monitoring AWS Cloud Security
  6. AWS Networking Deep Dive: Virtual Private Cloud (VPC)
  7. Securing Applications on AWS (viewing)
  8. AWS Cloud Security Best Practices
Traffic lights
Read about what's good
what should give you pause
and possible dealbreakers
Strong foundation for learners with an interest in securing Cloud-based applications
Taught by Mark Wilkins, industry authority on cloud security and data protection
Emphasizes emerging frameworks and compliance standards in AWS, highly relevant to industry
Builds a strong foundation in AWS security services and their practical implementation
Share this
Share to help others discover this course.
Facebook LinkedIn X Reddit Link Email
Begin learning today
Enroll now to gain full access to Securing Applications on AWS.
Enroll now
Save for later
Add this course to your list. Find it anytime.
Save
Our mission

OpenCourser helps millions of learners each year. People visit us to learn workspace skills, ace their exams, and nurture their curiosity.

Our extensive catalog contains over 50,000 courses and twice as many books. Browse by search, by topic, or even by career interests. We'll match you to the right resources quickly.

Find this site helpful? Tell a friend about us.

Affiliate disclosure

We're supported by our community of learners. When you purchase or subscribe to courses and programs or purchase books, we may earn a commission from our partners.

Your purchases help us maintain our catalog and keep our servers humming without ads.

Thank you for supporting OpenCourser.

© 2016 - 2025 OpenCourser