This course is designed for large, or scaling organizations. It focuses on automating cloud governance to enhance security. This includes retiring manual processes in account management, budget enforcement, and security operations and compliance. These areas allow for governance without inhibiting agility, speed, or innovation. They also allow for decision makers with the visibility, control, and governance necessary to protect sensitive data and systems.
Course Objectives
 In this course, you will learn how to:
- Configure AWS Organizations to create a multi-account environment
- Establish a landing zone with AWS Control Tower
- Enable cross-account security audits using AWS Identity and Access Management (IAM)
- Implement identity management using AWS IAM Identity Center (Successor to AWS Single Sign-On)
- Federate access using IAM Identity Center
- Enforce policies using prepackaged guardrails
- Centralize logging using AWS CloudTrail and AWS Config
- Define workflows for provisioning accounts using AWS Service Catalog
Intended Audience
 This course is intended for:
- Solutions Architects
- Security Engineers
Prerequisites
 We recommend that attendees of this course have the following prerequisites:
-  AWS Security Fundamentals course  or  AWS Security Essentials course Â
Â
Course Outline
- Module 1 –Governance at Scale
- Module 2 –Governance Automation
- Module 3 – Preventive Controls
- Module 4 – Detective Controls
