AWS Security for Non-Majors – Respond

Run through real-world incident response scenarios

Course Information

  • Title: AWS Security for Non-Majors – Respond
  • Instructor: Kevin Murakoshi, Principal Solutions Architect, Amazon Web Services
  • Time: Oct. 14-15, 1-5 p.m. ET each day
  • Duration: 4 hours per day, 8 hours total
  • Cost: $100 for CICP subscribers; $150 for Internet2 members; $200 for non-members
  • Delivery: Virtual via Zoom
  • Registration: Register
Kevin Murakoshi headshot
Kevin Murakoshi, Principal Solutions Architect, Amazon Web Services

Course Overview

The third installment in the AWS Security for Non-Majors series puts detection into action. Over two days, participants will work through a selection of realistic incident response scenarios drawn from AWS CIRT’s publicly released workshop library.

Attendees will practice investigating alerts, containing incidents, collecting evidence, and remediating compromised resources. Build the muscle memory needed to respond confidently when something goes wrong.

This course is the third in a series of three security courses. We encourage you to review AWS Security Foundations for Non-Majors – Protect | July 13 – Aug 7 and AWS Security for Non-Majors – Detect | Aug 19-20 and consider participating in the whole series.

Skill Level and Target Audience

  • Beginner to intermediate
  • Security professionals; Campus cloud administrators; System administrators; IT professionals with minimal working knowledge of AWS who want to gain a foundational understanding of AWS security and protection concepts

Course Objectives:

By the end of this course, participants will have worked through realistic incident response scenarios and built the muscle memory needed to investigate, contain, and remediate security events in AWS.

Participants will be able to:

  • Work through realistic incident response scenarios based on real AWS CIRT cases
  • Investigate a ransomware-style event involving S3 data exfiltration and deletion
  • Detect and respond to unauthorized cryptomining activity using GuardDuty findings
  • Contain an incident by identifying and revoking compromised resources
  • Collect and preserve evidence for post-incident analysis
Register Today

Use Your CLASS Vouchers

Does your institution have voucher value available to spend on CLASS events? Please contact us to check your institution’s voucher balance or redeem your voucher for registration.

Contact Us

If you have further questions, please contact us.