December 16, 2019

Tenchi Security announces cloud infrastructure security training course

Most infrastructure, operations, development and security teams are struggling to keep up with the pace of change of IT environments. In no area is this more true than in the cloud, given the frantic pace of new functionality and the race to migrate and meet business goals. The outcome has been a number of incidents and data leaks caused by the incorrect use of cloud infrastructure. In line with its mission to help organizations use public cloud securely, Tenchi Security is proud to announce the first open class of its AWS Cloud Infrastructure Security course.

A Gartner study shows that through 2025, 90% of the organizations that fail to control public cloud use will inappropriately share sensitive data. Most leaks will happen due to the lack of proper expertise on how to securely configure, operate, develop and design infrastructure and applications on cloud environments. It's only natural that teams used to dealing with on-premises environments need to be properly trained to be able to properly use something as disruptive as the public cloud. There are a variety of tools, techniques and best practices that can be used to avoid or mitigate these issues, but they will only be used by teams that have the requisite cloud security knowledge.

The AWS Cloud Infrastructure Security course was developed precisely to address this knowledge gap. It aims to empower your development, operations, architecture and security teams to apply sound security practices on their daily work. This is a fundamental course, that will cover the secure use of the AWS main Infrastructure as a Service (IaaS) offerings. Its content is appropriate to all technical professionals that will have contact with cloud environments, even if they don't have previous cloud or information security experience.

Highlights from the course content

access and privileges control with IAM (Identity and Access Management);
encryption of data at rest with KMS (Key Management Service);
secure object storage in S3 (Simple Storage Service);
secure access, privileges, hardening and patching of instances in EC2 (Elastic Cloud Compute);
use of Virtual Private Cloud (VPC) and secure connectivity to on-premises users and networks ;
segregate the infrastructure using Organizations and SSO (Single Sign-On) to integrate with your corporate directory;
an overview of native AWS security tools (GuardDuty, CloudTrail, Config).

The course material has been fully updated to cover the relevant new features and announcements from the 2019 re:Invent. All modules also include practical labs where students will get hands-on experience implementing the concepts presented.

Find out more by downloading the course datasheet.

Highlights from the course content

access and privileges control with IAM (Identity and Access Management);
encryption of data at rest with KMS (Key Management Service);
secure object storage in S3 (Simple Storage Service);
secure access, privileges, hardening and patching of instances in EC2 (Elastic Cloud Compute);
use of Virtual Private Cloud (VPC) and secure connectivity to on-premises users and networks ;
segregate the infrastructure using Organizations and SSO (Single Sign-On) to integrate with your corporate directory;
an overview of native AWS security tools (GuardDuty, CloudTrail, Config).

Benefits

Reduce delays and accelerate the ROI of your cloud projects.
Mitigate the risk of data leaks caused by incorrect cloud configuration and usage.
Automate or eliminate repetitive security tasks to gain agility and reduce costs.
Prepare your environment to minimize the impact and lower the time to detect and respond to security incidents.
Simplify regulatory compliance and best practice adoption.
Motivate and retain your personnel.

The first open class of the AWS Cloud Infrastructure Security course will be delivered in Brazilian Portuguese at São Paulo, Brazil in Februrary of 2020.

Date: Feb 3rd to Feb 7th
Training hours: 40
Location: São Paulo, SP, Brazil
This class is closed, please get in touch for other dates or in-company options.

Instructors:

Alexandre (or Alex) Sieira is a successful information security entrepreneur in the information security field with a global footprint since 2003. He began his security career as a Co-Founder and CTO of CIPHER, an international security consulting and MSSP headquartered in Brazil which was later acquired by Prosegur. In 2015, he became Co-Founder and CTO of Niddel, a bootstrapped security analytics SaaS startup running entirely on the cloud, which was awarded a Gartner Cool Vendor award in 2016. After the acquisition of Niddel by Verizon in January 2018, he became the manager of the Product Management team for Verizon's Security Services Detect tower of managed security services.

Rodrigo Montoro has over eighteen years of experience in the information security and technology markets. Most of his work has been focused on endpoint security monitoring and hardening, network security monitoring and threat detection. He is the inventor of two patents related to techniques for the detection of malicious documents and traffic. He co-founded and coordinated the rules writing activities of the Brazilian community for Snort, a widely-used open-source tool for networking intrusion detection. Montoro is also an accomplished international lecturer, having present at respected conferences such as OWASP AppSec (US and Brazil), SANS DFIR Summit and SIEM Summit, Toorcon, Hackers 2 Hackers Conference (São Paulo and Mexico), SecTor, Mind The Sec, Roadsec, FISL, SOURCE (Boston a Seattle), ZonCon, BlackHat (São Paulo), BSides (Las Vegas and São Paulo). His professional experience includes several highly respected Brazilian information security companies, and also Sucuri Security and Trustwave Spiderlabs.

For inquiries and enrolment details, please reach out to us at contact@tenchisecurity.com.

Tenchi also offers in-company training in English or Portuguese, including the following courses:

AWS Cloud Infrastructure Security
AWS Cloud Monitoring & Incident Response
Enterprise and Cloud ATT&CK

‍