After you have implemented your security measures, you still need to continually assess, audit, andevaluate access to your data and your Amazon S3 configurations. Auditing helps you detect potentialsecurity incidents, identify any security vulnerabilities or configuration changes, and comply with regulatoryobligations. In this course, you learn why you need to audit and how to use Amazon S3 features and otherAWS services to audit your Amazon S3 activity and resources to help improve your security posture.
• Course level: Intermediate• Duration: 60 minutes
Activities
This course includes interactive lessons, demonstrations, and knowledge checks.
Course objectives
In this course, you will learn to:• Use AWS CloudTrail and Amazon S3 access logging to monitor API calls• Use AWS Config to audit the configuration of your AWS resources• Use AWS IAM Access Analyzer for Amazon S3 to monitor access policies• Use AWS Trusted Advisor to monitor Amazon S3 security
Intended audience
This course is intended for:• Cloud architects• Storage architects• Developers• Operations engineers
Prerequisites
We recommend that attendees of this course have:• Completed Cloud Practitioner Essentials or equivalent experience• Completed AWS Storage Offerings• Completed Getting Started with Amazon Simple Storage Service (Amazon S3)
Course outline
Introduction• Directions• Course introduction• Introduction to auditing Amazon S3
Monitoring API calls• Introduction to logging with Amazon S3• Using server access logging• Using AWS CloudTrail• Using AWS CloudTrail• Comparing server access logging to CloudTrail logging
Auditing configurations• Introduction to AWS Config• Using AWS Config
Monitor access policies• Introduction to AWS IAM Access Analyzer• Using Access Analyzer for Amazon S3
Follow best practices• Introduction to AWS Trusted Advisor• Using Trusted Advisor for Amazon S3
Closing• Knowledge check• Feedback
