AWS Security Technology Syllabus

IAM, organizations, network controls, data protection, logging, detection and incident response. A structured learning blueprint for students and working engineers.

12 ModulesSuggested 6-8 week path - 40 guided hoursIntermediateBatch on Request

Who Is This For

  • Cloud engineers, security engineers and AWS administrators
  • Security professionals comparing technologies before choosing a specialization
  • Teams creating an internal enablement, migration or operations plan

Prerequisites

  • AWS core services, networking and IAM fundamentals
  • Comfort reading technical diagrams, logs and policy decisions
  • Access to a vendor tenant or lab is helpful but not assumed by this published syllabus

Full Technology Syllabus — 12 Modules

M 1AWS shared responsibility and security architecture
  • Explain AWS shared responsibility and security architecture using current Amazon Web Services terminology and connect it to the AWS Security architecture
  • Practice: map the components, identities, data paths and trust boundaries for AWS shared responsibility and security architecture
  • Evidence: produce an annotated architecture diagram and explain the validation result
M 2Organizations, accounts and multi-account guardrails
  • Explain Organizations, accounts and multi-account guardrails using current Amazon Web Services terminology and connect it to the AWS Security architecture
  • Practice: compare a baseline design with a risky or incomplete design for Organizations, accounts and multi-account guardrails
  • Evidence: produce a design decision record and explain the validation result
M 3IAM users, roles, policies and permission boundaries
  • Explain IAM users, roles, policies and permission boundaries using current Amazon Web Services terminology and connect it to the AWS Security architecture
  • Practice: trace one permitted and one denied access decision for IAM users, roles, policies and permission boundaries
  • Evidence: produce an access-flow worksheet and explain the validation result
M 4IAM Identity Center and federated access
  • Explain IAM Identity Center and federated access using current Amazon Web Services terminology and connect it to the AWS Security architecture
  • Practice: plan a least-privilege configuration and a safe rollout sequence for IAM Identity Center and federated access
  • Evidence: produce a change plan with rollback steps and explain the validation result
M 5VPC security groups, NACLs, endpoints and network inspection
  • Explain VPC security groups, NACLs, endpoints and network inspection using current Amazon Web Services terminology and connect it to the AWS Security architecture
  • Practice: review policy order, dependencies, exceptions and rollback conditions for VPC security groups, NACLs, endpoints and network inspection
  • Evidence: produce a policy review checklist and explain the validation result
M 6KMS, encryption, secrets and certificate services
  • Explain KMS, encryption, secrets and certificate services using current Amazon Web Services terminology and connect it to the AWS Security architecture
  • Practice: configure or assess the control with secure defaults for KMS, encryption, secrets and certificate services
  • Evidence: produce a configuration evidence sheet and explain the validation result
M 7S3 and workload data protection
  • Explain S3 and workload data protection using current Amazon Web Services terminology and connect it to the AWS Security architecture
  • Practice: test expected and unexpected behavior against explicit pass criteria for S3 and workload data protection
  • Evidence: produce a pass/fail validation record and explain the validation result
M 8CloudTrail, Config and Security Hub
  • Explain CloudTrail, Config and Security Hub using current Amazon Web Services terminology and connect it to the AWS Security architecture
  • Practice: locate the relevant telemetry and build an investigation timeline for CloudTrail, Config and Security Hub
  • Evidence: produce an investigation timeline and explain the validation result
M 9GuardDuty, Inspector and Detective workflows
  • Explain GuardDuty, Inspector and Detective workflows using current Amazon Web Services terminology and connect it to the AWS Security architecture
  • Practice: triage a realistic finding and separate risk from expected activity for GuardDuty, Inspector and Detective workflows
  • Evidence: produce a triage note with severity rationale and explain the validation result
M 10WAF, Shield and edge protection
  • Explain WAF, Shield and edge protection using current Amazon Web Services terminology and connect it to the AWS Security architecture
  • Practice: tune a noisy control without removing required visibility for WAF, Shield and edge protection
  • Evidence: produce a tuning record with before-and-after evidence and explain the validation result
M 11Incident response and forensic readiness
  • Explain Incident response and forensic readiness using current Amazon Web Services terminology and connect it to the AWS Security architecture
  • Practice: troubleshoot a production-style failure using an evidence-first workflow for Incident response and forensic readiness
  • Evidence: produce a troubleshooting runbook entry and explain the validation result
M 12Well-Architected security capstone
  • Explain Well-Architected security capstone using current Amazon Web Services terminology and connect it to the AWS Security architecture
  • Practice: combine design, validation, operations and handover in the capstone for Well-Architected security capstone
  • Evidence: produce a concise capstone handover and portfolio artifact and explain the validation result

Practice Blueprint

🗺️

Architecture and trust-boundary mapping

Map components, identities, data paths and trust boundaries.

⚙️

Guided configuration and policy review

Build and review a safe configuration or policy change.

🔎

Alert, log or finding investigation

Use logs, findings or alerts to make an evidence-based decision.

🧰

Troubleshooting and operational capstone

Combine design, validation, tuning and handover into one scenario.

Learning Outcomes

  • Explain the AWS Security architecture and its security control points
  • Design a safe configuration and policy workflow for AWS Security
  • Use platform evidence to investigate, tune and troubleshoot
  • Document decisions, risks, validation evidence and next actions

Official Reference Set

This learning path uses vendor documentation as the source of truth and connects practical work to current workforce and control frameworks.

FAQ

Q 1Is a live batch currently scheduled?

This is a published technology learning blueprint. Contact Techclick to confirm current trainer availability, delivery format, schedule, lab access and pricing before making a decision.

Q 2Does this promise vendor certification?

No. Vendor certification programmes and exam blueprints change independently. This syllabus focuses on practical technology skills and official documentation.

Q 3Can Techclick customize this for a team?

Yes, subject to trainer and lab availability. Share your existing environment, target outcomes and preferred timeline for a scoped discussion.

Need an AWS Security learning path?

Share your role, current experience and desired outcome. Techclick will confirm whether a suitable batch or custom workshop is available.