You're reading from AWS Certified Security – Specialty (SCS-C02) Exam Guide Get all the guidance you need to pass the AWS (SCS-C02) exam on your first attempt

Product type Paperback

Published in Apr 2024

Publisher Packt

ISBN-13 9781837633982

Length 614 pages

Edition 2nd Edition

Languages

Python

Tools

AWS

Concepts

IT Certification

Authors (2):

Stuart Scott

Adam Book

View More author details

Table of Contents (29) Chapters

Preface

1. Section 1:AWS Security Fundamentals

2. Chapter 1: AWS Shared Responsibility Model FREE CHAPTER

3. Chapter 2: Fundamental AWS Services

4. Chapter 3: Understanding Attacks on Cloud Environments

5. Section 2:Incident Response

6. Chapter 4: Incident Response

7. Chapter 5: Managing Your Environment with AWS Config

8. Chapter 6: Event Management with Security Hub and GuardDuty

9. Section 3:Logging and Monitoring

10. Chapter 7: Logs Generated by AWS Services

11. Chapter 8: CloudWatch and CloudWatch Metrics

12. Chapter 9: Parsing Logs and Events with AWS Native Tools

13. Section 4:Infrastructure Security

14. Chapter 10: Configuring Infrastructure Security

15. Chapter 11: Securing EC2 Instances

16. Chapter 12: Managing Key Infrastructure

17. Chapter 13: Access Management

18. Section 5:Identity and Access Management

19. Chapter 14: Working with Access Policies

20. Chapter 15: Federated and Mobile Access

21. Chapter 16: Using Active Directory Services to Manage Access

22. Section 6:Data Protection

23. Chapter 17: Protecting Data in Flight and at Rest

24. Chapter 18: Securely Connecting to Your AWS Environment

25. Chapter 19: Using Certificates and Certificate Services in AWS

26. Chapter 20: Managing Secrets Securely in AWS

27. Chapter 21: Accessing the Online Practice Resources

28. Other Books You May Enjoy

Understanding the Identity and Access Management (IAM) Service

AWS IAM is a service provided by AWS that helps you control who can access your AWS resources and what they can do with them. It allows you to manage user accounts, set up permissions, and ensure the security of your AWS infrastructure.

Suppose you want to create a new user for your team member named Alice. You can do this quickly and easily with the AWS CLI using the following command:

aws iam create-user --user-name Alice

After your user Alice has been created, you would need to assign her permissions based on her job role and function. In this case, you could give Alice access to the Amazon S3 service, which she could use to put and retrieve files:

aws iam attach-user-policy --user-name Alice --policy-arn arn:aws:iam::aws:policy/AmazonS3FullAccess

After attaching the managed S3 policy to user Alice, you realize it would be better to make sure that Alice only has permission to access the specific buckets...

The rest of the chapter is locked

You're reading from AWS Certified Security – Specialty (SCS-C02) Exam Guide Get all the guidance you need to pass the AWS (SCS-C02) exam on your first attempt

Table of Contents (29) Chapters

Understanding the Identity and Access Management (IAM) Service

Unlock this book and the full library FREE for 7 days

Authors (2)

Personalised recommendations for you