Search icon CANCEL
Arrow left icon
Explore Products
Best Sellers
New Releases
Books
Videos
Audiobooks
Learning Hub
Conferences
Free Learning
Arrow right icon
Arrow up icon
GO TO TOP
AWS Certified Security – Specialty (SCS-C02) Exam Guide

You're reading from   AWS Certified Security – Specialty (SCS-C02) Exam Guide Get all the guidance you need to pass the AWS (SCS-C02) exam on your first attempt

Arrow left icon
Product type Paperback
Published in Apr 2024
Publisher Packt
ISBN-13 9781837633982
Length 614 pages
Edition 2nd Edition
Languages
Tools
Arrow right icon
Authors (2):
Arrow left icon
Stuart Scott Stuart Scott
Author Profile Icon Stuart Scott
Stuart Scott
Adam Book Adam Book
Author Profile Icon Adam Book
Adam Book
Arrow right icon
View More author details
Toc

Table of Contents (29) Chapters Close

Preface 1. Section 1:AWS Security Fundamentals
2. Chapter 1: AWS Shared Responsibility Model FREE CHAPTER 3. Chapter 2: Fundamental AWS Services 4. Chapter 3: Understanding Attacks on Cloud Environments 5. Section 2:Incident Response
6. Chapter 4: Incident Response 7. Chapter 5: Managing Your Environment with AWS Config 8. Chapter 6: Event Management with Security Hub and GuardDuty 9. Section 3:Logging and Monitoring
10. Chapter 7: Logs Generated by AWS Services 11. Chapter 8: CloudWatch and CloudWatch Metrics 12. Chapter 9: Parsing Logs and Events with AWS Native Tools 13. Section 4:Infrastructure Security
14. Chapter 10: Configuring Infrastructure Security 15. Chapter 11: Securing EC2 Instances 16. Chapter 12: Managing Key Infrastructure 17. Chapter 13: Access Management 18. Section 5:Identity and Access Management
19. Chapter 14: Working with Access Policies 20. Chapter 15: Federated and Mobile Access 21. Chapter 16: Using Active Directory Services to Manage Access 22. Section 6:Data Protection
23. Chapter 17: Protecting Data in Flight and at Rest 24. Chapter 18: Securely Connecting to Your AWS Environment 25. Chapter 19: Using Certificates and Certificate Services in AWS 26. Chapter 20: Managing Secrets Securely in AWS 27. Chapter 21: Accessing the Online Practice Resources 28. Other Books You May Enjoy

Cross-Region Key Management

While having the ability to create and manage KMS keys on a one-by-one basis is a useful feature to have, either through the AWS Management Console or programmatically from the CLI, once your accounts start to spread out geographically, keeping track of which keys encrypt items in which regions can become burdensome. Luckily, AWS has listened to customer feedback and has introduced functionality in KMS that allows users like yourself to replicate a KMS key from one region to another.

There are some best practices that you should be aware of when starting to manage your KMS keys across multiple regions:

  • Turn on the KMS multi-Region replication: KMS provides the option to enable multi-region replication for customer master keys. By enabling this feature, KMS automatically replicates your CMKs to other regions, allowing you to use the same CMK for encryption and decryption in different regions.
  • Choose a primary Region for creating and managing...
lock icon The rest of the chapter is locked
Register for a free Packt account to unlock a world of extra content!
A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.
Unlock this book and the full library FREE for 7 days
Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of
Renews at R$50/month. Cancel anytime