The cloud has many uses, from making data more accessible to fostering teamwork and enabling content management much simpler. And since most businesses are already taking advantage of cloud computing, it only makes sense that you arm yourself with the necessary expertise in cloud security. Foji Global Technology Services helps novice and seasoned cybersecurity practitioners find resources that are appropriate for their needs and help secure their organization from cyberattacks and other internet-related risks. A high level course breakdown can be seen below.

Part One: Introduction

Module 1: Installation and Review of Tools

Visual Studio Code
Git and GitHub Account
Git overview
Creating Repositories
Committing and pushing to GitHub
Creating Branches, Merging Branches, Pull Request and Code Reviews

Part Two: Infrastructure Security (Infrasec)

Module 2: AWS Infrastructure Review and Project One

General Review of AWS EC2, S3, ALB, Route53, Auto-Scaling Group

Project One:

Build Full Test Infrastructure using AWS Console (VPC, IAM, SG, ASG, S3, ALB, Route53)

Module 3: AWS Infrastructure Build with Terraform and Project Two

Installation and Setup of Terraform
Introduction to Terraform (Variables, providers, Resources, Data Sources etc)
Create and Publish Terraform Modules
Creating AWS Resources with Terraform

Project Two

Build Non-Production Infrastructure using Terraform (VPC, SG, ASG, S3, ALB, Route53)

Module 4: CICD Pipelines Introduction with GitHub Actions

Introduction to CICD Pipelines with Github actions
Setup Terraform Cloud for Remote State Management
Create Deployment Pipelines for production Infrastructure Provisioning using Terraform
IaC CICD pipeline code scanning using github actions and Snyk

Module 5: AWS Organizations, SSO, MFA for UI and CLI Access

General Overview of AWS organizations, SSO and their Benefits
General Overview of Microsoft Azure Entra ID SSO and MFA, Conditional Access etc
Configure and Manage SSO/MFA Integrations between AWS and Microsoft EntraID

Module 6: Zero Trust Network Infrastructure, VPNs.

General overview of Zero Trust Architecture and P81 solution Implement and Manage Zero Trust with Checkpoint SASE and AWS.
Implement and Manage AWS Transit Gateways
Create a Site-to-Site VPN Tunnel for Access to your AWS Infrastructure using P81 Zero trust Network. Limit Access to Resources based on departments and group assignments.

Module 7: Cloud Security Posture Management and Guardrails

Implement CSPM using Security Hub frameworks for multi-accounts/regions
Remediate Changes and Implement AWS Guard Rails
Introduction to AWS Firewall Manager and Security auditing

Part Three: Application Security (AppSec)

Module 8: CICD Application Deployment and Security and Project Three

Deploy Sample Application using Github and AWS CloudFront
Source code scanning and analysis using Snyk
CICD Integration with Snyk and Github Actions
DAST Scanning and vulnerability analysis using OWASP ZAP

Module 9: AWS WAF, Security Hub, Guard Duty, CloudTrail, CloudWatch and Project Five

Create, Tune and Enforce AWS WAF Rules for non-production and production.
WAF Creation with AWS Firewall Manager
Create Centralized CloudTrail for all AWS Accounts for auditing.

Module 10: Docker App Containerization

Introduction to docker
Build and Publish Docker Image to Docker Hub/ECR
Docker Image CICD Pipeline Scanning using Github actions and Snyk

Module 11: Kubernetes(K8s) and Project 4

Introduction to Kubernetes and EKS
Install and configure ArgoCD for K8s cluster management
Deploy and manage applications to K8s using ArgoCD

Module 12: Python and Project 5

Introduction to Python (Variables, Conditions, Loops, Functions etc)
Introduction to AWS Python Library (boto3) and Lambda
Automate multiple AWS processes using Python

Module13 Bonus – Google Cloud Platform (GCP)

Introduction GCP and Provision Resources in GCP using Terraform
Create and Deploy a Sample Application in GCP.

Registration

Need more information? Reach out to us by sending us a message.