Cybr Courses

Ready to go beyond just passing the exam? While our free AWS Certified Security Specialty course gives you everything needed to pass the certification, this Premium Edition is designed for professionals who want to learn AWS security in practice, not just theory.

What makes Premium different?

• Hands-On Labs: Practice with real AWS environments using the same tools you'll use on the job
• Scenarios: Tackle security challenges based on real-world situations
• Knowledge-Check Quizzes: Validate your understanding and identify knowledge gaps before the exam

Already enrolled in the free course? Perfect! This premium content is an add-on to that course - no need to start over or duplicate efforts.

New to Cybr? Start with the free course to get a feel for our teaching approach.

This course is under active development with new content regularly released for the SCS-C03 version of the exam.

In this hands-on course, learn how to use Kubernetes with GitLab CI/CD, and learn key concepts of container security.

You will learn about:

• How to install GitLab server and Kubernetes on AWS EC2
• Container security concepts
• Kubernetes fundamentals
• GitLab & Kubernetes security concepts
• Securing container images
• Securing Kubernetes Microservices
• Monitoring and logging for container security
• Compliance and governance
• Supply chain security (SCS)
• and more

Please note: All video lessons and text lessons/notes have been added, but not all 1-click deploy hands-on labs are available yet.  You can still complete this course in its entirety if you plan on using your own environment.

This course covers Microsoft Defender for Cloud, a cloud-native application protection platform (CNAPP) that provides security posture management and workload protection for Azure, AWS, GCP, and on-premises environments. You'll learn to configure security policies, implement compliance frameworks like NIST 800-53, protect various workloads including VMs, containers, and storage accounts, and automate incident response using Logic Apps and workflow automation.

Learn how to effectively respond to incidents in your AWS accounts regardless of whether you are running a single or multi-account setup using CloudTrail Lake and Athena — two native AWS services.

This Incident Response (IR) course simulates attacks against your AWS environments that have been seen in the real-world. After simulating attacks, you’ll put on your security analyst hat to respond to the incident. You will then learn how to follow IR playbooks from AWS and eventually even create your own by following NIST’s 4 phases:

• Preparation
• Detection and Analysis
• Containment, Eradication, and Recovery
• Post-Incident Activity

You’ll learn how to gather information to understand what’s going on and what resources are involved, and how to properly contain the affected resources. You will then take steps to eradicate the threat, recover (and harden) your configurations, and put together a report that you can turn into an updated playbook specific to your environments and use cases.

The attack scenarios and end-to-end projects include:

• IAM credentials exposure to S3 backdoor and data exfiltration
• IAM credentials exposure to EC2 cryptomining

The final section of the course then shows you how to take what you’ve learned and apply it to multi-account setups with centralized CloudTrail logging in a Log Archive account, and centralized IR querying with CloudTrail Lake in a Security Tooling account. 

Learn how to secure your cloud infrastructure with one of our best-selling courses: Introduction to AWS Security. Designed for AWS security beginners (but not complete beginners to AWS), this training course provides you with the essential knowledge and skills to protect your AWS environments and resources from all sorts of threats.

Led by industry experts with extensive experience in AWS security, this course offers a deep dive into the fundamental concepts and best practices for securing cloud infrastructure in Amazon Web Services. You'll gain a solid understanding of Identity and Access Management (IAM), data access control and encryption (including securing S3), network and infrastructure security, and monitoring & logging.

Our interactive learning approach combines comprehensive lessons, interactive diagrams, and hands-on lab 🧪 exercises as well as challenges to help you both grasp security concepts and know how to apply them in real-world scenarios. You'll have the opportunity to reinforce your learning and gain hands-on experience configuring security measures directly in the AWS Management Console.

Upon completion, you'll be awarded a certificate of completion. This certificate can be added to LinkedIn and can serve as a valuable asset when showcasing your skills to potential employers or clients.

Enroll in our Introduction to AWS Security course today and gain the knowledge and confidence to start protecting your AWS environment effectively!

Learn hands-on how to exploit AWS cloud misconfigurations and build practical skills with step-by-step walkthroughs, labs, and CTFs. This course uses and teaches 4 primary tools:

• CloudGoat
• Pacu
• ChatGPT
• AWS CLI

CloudGoat enables you to deploy vulnerable-by-design AWS scenarios in your own environments, although we will be providing a couple of those scenarios as 1-click deploy 🧪 Cybr Hands-On Labs if you would rather not use your own environments. Not all of the scenarios will be available with our labs due to how vulnerable they are.

In addition to using the AWS command line interface (CLI), we’ll be using a cloud penetration testing tool called Pacu.

We will also be using ChatGPT by having it craft payloads, troubleshoot for us, and overall help us speed up and be more effective.

This course is primarily for individuals who want to perform security assessments of AWS environments and resources, or who want to learn what to do once they’ve gained access to a set of limited AWS credentials. There are a couple of scenarios that show how to gain initial access to credentials through misconfigurations, but this course is mostly focused on helping you find privilege escalation paths.

• What are IAM roles and how are they different from users?
• When should you use roles, and how?
• What are differences between trust policies, managed policies, and inline policies?
• What's an effective way to assume roles?
• How does role chaining work? How does cross-account access work?
• What is IAM Roles Anywhere and how does it work?
• What are service-linked roles, and how are they different from service roles?
• What are security implications of using roles?

In this hands-on course, you’ll learn how to use Terraform to securely deploy resources on AWS using Infrastructure as Code (IaC).

Guided by instructors with experience running Terraform in production, we’ll take you step-by-step from zero prior Terraform knowledge to confidently writing infrastructure as code and deploying production-ready AWS resources securely.