AAA in AWS
Authentication, Authorization, and Access Control
174 docs tagged with "Security"
View all tagsAAA of Security
Authentication, Authorization, and Accounting
Access Control
Protective measures for C-I-A
Acquisition and Procurement
Managing goods and services
Agreement Types
The different agreement types you'll encounter when working in Cybersecurity
Alarms and EventBridge
CloudWatch Alarms and EventBridge
Alerting and Monitoring
Alert, monitor, and scan
Aligning Security with Business
Wearing two hats
Amazon GuardDuty
Intelligent threat detection
Amazon Inspector
Automated and continual vulnerability management
Amazon Macie
Protecting sensitive data
Asset and Change Management
Enhancing resource utilization
Asymmetric Encryption
Using a pair of keys
Attestation of Findings
Verifying software integrity and authenticity
Audits and Assessments
Internal and external assessments
Authentication Protocols
PAP, NTLM, Kerberos, and the sorts
Automating Tasks
Sample tasks to automate
Automation and Orchestration
When to Automate and Orchestrate
AWS Artifact and Macie
Compliance Management with Artifact and Macie
AWS Certificate Manager
Provision and manage SSL/TLS certificates
AWS Config
Assess, audit, and evaluate configurations
AWS KMS
Create and control your cryptographic keys
AWS Secrets Manager
Centrally manage your secrets
AWS Security Specialty Exam
Resources for the exam
AWS Trusted Advisor
Optimize costs, performance, etc.
Azure Security
Azure Security
Baselines and Standards
Security Baselines and Security Standards
Blockchain
A distributed ledger technology
Business Continuity
Sustaining operations during disruption
Business Continuity Plan
Sustaining operations during disruption
Certificate Revocation
Verifying and Invalidating
Certification - AZ-500
Notes for the Microsoft Azure Security Technologies (AZ-500)
Chain of Custody
The paper trail for evidence handling
Change Process and Components
Change Management Process and Owners
Choosing Encryption Algorithms
The perfect encryption algorithm
CIA Triad
Confidentiality, Integrity, and Availability
CISSP Preparation
Preparing for the CISSP Exam
Client and Server Security
Security issues on each side
CloudTrail
Amazon CloudTrail
CloudWatch
Amazon CloudWatch
Code versus Ciphers
Algorithm for encrypting and decrypting information
Collecting Evidence
Order of Volatility and Data Collection Procedures
Common Hashing Attacks
Common Hashing Attacks
Compliance
Adherence to laws, regulations, standards, and policies
Computer Crimes
Laws protecting against computer crimes
Conducting Investigations
Types of Investigations in Cybersecurity
Control Frameworks
COBIT, ISO 27001, NIST 800-53, etc.
Controls Management
Consistently managing security controls
Cryptography Basics
Securing information through encoding
Data Backups
Backup Types and Considerations
Data Encryption
Encrypting data at rest and in motion
Data Handling
Classifications, Ownership, and Lifecycle
Data Loss Prevention
Identify, monitor, and protect sensitive data
Data Privacy
Generally Accepted Privacy Principles (GAAP)
Data Protection
Ways to protect your data in AWS
Data Security
Securing data
Data Security Policies
Framework for ensuring C-I-A
Data States and Types
States, Types, and Classifications of Data
Database Security
Database Security
DDOS Attacks
Distributed Denial of Service (DDoS)
Defense in Depth
Identity and Access Management
Destroying Data
Sanitizing and destroying data
Digital Certificate Types
Types of digital certificates for enterprise
Digital Forensics
Investigating devices to uncover evidence
Distributed Computing Models
Large-scale parallel and distributed systems
DNS and Web Security
Hierarchical and decentralized naming system
DR in the Real-world
Real-world Disaster Recovery
Dynamic Data Masking
Dynamic Data Masking in Azure SQL
ELB Security
Securing your Loadbalacers
Email Security
Protecting email accounts and systems
Embedded Systems
Specialized computing systems with specific functions
Encryption Tools
Securing data through various methods
Escalation and Notification
Act immediately, contain the situation
Escrow, Recovery, and Stretching
Ways to store, recover, and secure keys
Evidence Types
Types of Evidence in Cybersecurity
Evolution of Security
Security Information and Event Management
Firewalls
Firewalls - Its uses and types
First steps
Securing your AWS Account
Gap Analysis
Current performance versus desired performance
Governance
Overall management of the organization's IT resources
Governance Elements
Policies, Standards, Procedures, and Guidelins
HA and DR
High Availability and Disaster Recovery
Hardware Security
Securing hardware memory and interfaces
Hashing
Converting data into fixed-size value using a function
IAM Concepts
Identity and Access Management
IAM in AWS
Identity and Access Management
Identity Federation
SSO,, OAuth, SAML, and OIDC
IDS and IPS
Intrusion Detection and Intrusion Prevention
Import/Export Contols (US)
GDPR, HIPAA,PCI DSS, etc.
Incident Identification
Monitoring is key to detecting signs of incidents
Incident Mitigation
Full mitigation mode to control damage and loss
Incident Response
Summary of Incident Response Terminologies
Incident Response Plan
Processes and tools used in incident response
Infrastructure Controls
Selecting Infrastructure Controls
Infrastructure Security
Securing your AWS Infrastructure
Integrations and APIs
Combining into one comprehensive system
Intellectual Property Protection
Protecting the legal rights if creators and owners
IR Models and Exercises
Incident Response Models and Exercises
Lessons Learned Sessions
Reflect and Improve
Logging
Centralizing and Investigating Logs
Logging and Monitoring
Logging and monitoring options in AWS
Logging Tools
Tools for Logs
Logical Access
Electronic methods to restrict access
Logs and Insights
CloudWatch Logs and Insights
Management Reviews
Management Reviews and Approval
Managing Incident Responses
Detecting and remediating incidents
Mobile Assets Deployment
BYOD, COPE, and CYOD
Mobile Systems
The different types of mobile communications systems
Network Cabling
Physical, logical, and secure ports
Network Traffic Flow
Packet Captures and the sorts
Networking Security
Networking Security
New Subscription shows Zero Credit
New Subscription shows Zero Credit
NIST 800-34 Revisions 1
NIST Definitions from 800-34 Revisions 1
On-Premise Architecture
Securing on-premise datacenters
Other Technologies
Different types of secure architectures
OWASP Top Ten
The OWASP Top 10 is a standard awareness document for developers and web application security.
Penetration Testing
Simulated cyber attack
Phases of Digital Forensics
Identification, Collection, Analysis, and Reporting
Physical Access
Tangible security measures
Ports and Protocols
Physical, logical, and secure ports
Preserving Evidence
Preservation of Evidence
Privilege Access Management
Implementing Principle of Least Privilege
Protecting Data
Protecting and Mishandling Data
Public Key Infrastructure
Using asymmetrical key pairs
RAID
Redundant Array of Independent Disks
Reconnaisance in Pentesting
Phase 1 of Penetration Testing
Recovery and Reconstitution
Restoring to normal operations
Responsible Disclosure
Disclosing information in confidence
Restrict S3 Buckets Access
Limiting the access on your S3 Buckets
Risk Management
Managing and Prioritizing Risks
Risk Management Frameworks
CIS, ISO, NIST etc.
Risk Management Process
Identify, assess, and prioritize risk
S3 Encryption Mechanisms
Methods to encrypt S3
SCAP
Security Content Automation Protocol
Securing Azure Solutions
Securing Azure Solutions with Azure Active Directory
Securing the Network
Securing the network infrastructure
Security Awareness
Understanding of potential threats
Security Controls
Physical, Technical, Administrative, etc.
Security Design
Security Design Principles
Security Metrics
Measuring efficiency with metrics
Security Models
Security Design Principles
Security Policies
Common security policies
Security Policy Framework
Policies, procedures, and controls
Security Requirements
Security Design Principles
SIEM
Security Information and Event Management
Single Pane of Glass
A central point of access
SNMP
Simple Network Management Protocol
SOAR
Security Orchestration, Automation, and Response
SPOF and IT Contingency
SPOF Analysis and IT Contingency Plans
Standards and Frameworks
GDPR, HIPAA,PCI DSS, etc.
Storage Security
Storage Security
Study Plan
Study Plan for CompTIA Security+
Symmetric Encryption
Using the same key
System Hardening
Hardening and Securing the Infrastructure
Terminologies
Summary of cybersecurity terms
The Basics
Identity and Access Management
The Code of Ethics
The ISC2 Code of Ethics
Third-Party Vendor Risks
Potential security from external entities
TLS and IPSec
Transport Layer Security and IP Security
Tor Browser
The Onion Router
Trusted OS
Enhanced security features in real-time
Types of Assessments
Internal and external assessments
Updates and Patches
Managing patches
Vendor Assessment
Assessing vendors
Vendor Management
Assessing vendors
Virtual Private Network
Extending a private network over a public one
Vulnerability Management
Identifying Vulnerabilities
Vulnerability Remediation
Response and Remediate
Vulnerability Scans
Vulnerability Scans
WAF and API Gateway
Security through Managed Firewall and API Gateway features
Wireless Networking
wireless Networking
Wireless Security
Securing wireless infrastructure
Zero Trust
No one should be trusted by default
Zero Trust Concepts
Zero Trust Concepts