Skip to main content

Cloud Operations on AWS with AWS Jam

Written by Gemma Corrado on . Posted in AWS Training, Training.

  • Aws Advanced Training Partner

  • Aws Premium Consuting Partner

Cloud Operations on AWS with AWS Jam

Please find our upcoming course dates at the end of this page!

Course description

This course teaches systems operators and anyone performing cloud operations functions how to manage and operate automatable and repeatable deployments of networks and systems on AWS. You will learn about cloud operations functions, such as installing, configuring, automating, monitoring, securing, maintaining, and troubleshooting these services, networks, and systems. The course also covers specific AWS features, tools, and best practices related to these functions.

The final day is an AWS Jam, a gamified event, with teams competing to score points by completing a series of challenges according to established best practices based on concepts covered in the course. You get to experience a wide range of AWS services in a series of real-world scenarios that represent common operational and troubleshooting tasks. The end result is developing, enhancing, and validating your skillsets in the AWS Cloud through real-world problem solving, exploring new services, features, and understanding how they interoperate.

Course objectives

In this course, you will learn to:

  • Identify the AWS services that support the different phases of Operational Excellence, an AWS Well-Architected Framework pillar
  • Manage access to AWS resources using AWS accounts and organizations and AWS Identity and Access Management (IAM)
  • Maintain an inventory of in-use AWS resources by using AWS services, such as AWS Systems Manager, AWS CloudTrail, and AWS Config
  • Develop a resource deployment strategy using metadata tags, Amazon Machine Images (AMIs), and AWS Control Tower to deploy and maintain an AWS cloud environment
  • Automate resource deployment by using AWS services, such as AWS CloudFormation and AWS Service Catalog
  • Use AWS services to manage AWS resources through CloudOps lifecycle processes, such as deployments and patches
  • Configure a highly available cloud environment that uses AWS services, such as Amazon Route 53 and Elastic Load Balancing, to route traffic for optimal latency and performance
  • Configure AWS Auto Scaling and Amazon EC2 Auto Scaling to scale out your cloud environment based on demand
  • Use Amazon CloudWatch and associated features, such as alarms, dashboards, and widgets, to monitor your cloud environment
  • Manage permissions and track activity in your cloud environment by using AWS services, such as AWS CloudTrail and AWS Config
  • Deploy your resources to an Amazon Virtual Private Cloud (Amazon VPC), establish necessary connectivity to your Amazon VPC, and protect your resources from disruptions of service
  • State the purpose, benefits, and appropriate use cases for mountable storage in your AWS Cloud environment
  • Explain the operational characteristics of object storage in the AWS Cloud, including Amazon Simple Storage Service (Amazon S3) and Amazon S3 Glacier
  • Build a comprehensive cost model to help gather, optimize, and predict your cloud costs by using services such as AWS Cost Explorer and the AWS Cost & Usage Report
  • Work in a team environment to solve real AWS use-case challenges in an AWS Jam

Intended audience

This course is intended for:

  • System administrators and operators who are operating in the AWS Cloud
  • Informational technology workers who want to increase their cloud operations knowledge

Prerequisites

We recommend that attendees of this course have:

  • Successfully completed the AWS Technical Essentials course
  • A background in software development or systems administration
  • Proficiency in maintaining operating systems at the command line, such as shell scripting in Linux environments or cmd/PowerShell in Windows
  • Basic knowledge of networking protocols (TCP/IP, HTTP) 

Activities

This course includes:

  • instructor presentations
  • demonstrations
  • hands-on labs
  • group knowledge checks
  • team-based gamified challenge

Course duration / Price

  • 4 Days
  • € 2,285.00 (excl. tax) per person (DE)

Course outline

  • Day 1

    • Module 1: Introduction to Cloud Operations on AWS
      • What is Cloud Operations
      • AWS Well-Architected Framework
      • AWS Well-Architected Tool
    • Module 2: Access Management
      • AWS Identity and Access Management (IAM)
      • Resources, accounts, and AWS Organizations
    • Module 3: System Discovery
      • Methods to interact with AWS services
      • Tools for automating resource discovery
      • Inventory with AWS Systems Manager and AWS Config
      • Hands-On Lab: Auditing AWS Resources with AWS Systems Manager and AWS Config
    • Module 4: Deploy and Update Resources
      • Cloud Operations in deployments
      • Tagging strategies
      • Deployment using Amazon Machine Images (AMIs)
      • Deployment using AWS Control Tower
    • Module 5: Automate Resource Deployment
      • Deployment using AWS CloudFormation
      • Deployment using AWS Service Catalog
      • Hands-On Lab: Infrastructure as Code

  • Day 2

    • Module 6: Manage Resources
      • AWS Systems Manager
      • Hands-On Lab: Operations as Code
    • Module 7: Configure Highly Available Systems
      • Distributing traffic with Elastic Load Balancing
      • Amazon Route 53
    • Module 8: Automate Scaling
      • Scaling with AWS Auto Scaling
      • Scaling with Spot Instances
      • Managing licenses with AWS License Manager
    • Module 9: Monitor and Maintain System Health
      • Monitoring and maintaining healthy workloads
      • Monitoring AWS infrastructure
      • Monitoring applications
      • Hands-On Lab: Monitor Applications and Infrastructure
    • Module 10: Data Security and System Auditing
      • Maintaining a strong identity and access foundation
      • Implementing detection mechanisms
      • Automating incident remediation

  • Day 3

    • Module 11: Operate Secure and Resilient Networks
      • Building a secure Amazon Virtual Private Cloud (Amazon VPC)
      • Networking beyond the VPC
    • Module 12: Mountable Storage
      • Configuring Amazon Elastic Block Store (Amazon EBS)
      • Sizing Amazon EBS volumes for performance
      • Using Amazon EBS snapshots
      • Using Amazon Data Lifecycle Manager to manage your AWS resources
      • Creating backup and data recovery plans
      • Configuring shared file system storage
      • Hands-On Lab: Automating with AWS Backup for Archiving and Recovery
    • Module 13: Object Storage
      • Deploying Amazon Simple Storage Service (Amazon S3)
      • Managing storage lifecycles on Amazon S3
    • Module 14: Cost Reporting, Alerts, and Optimization
      • Gaining AWS cost awareness
      • Using control mechanisms for cost management
      • Optimizing your AWS spend and usage
      • Hands-On Lab: Capstone lab for CloudOps

  • Day 4

    • AWS Jam
      • Participate in team-based challenges in a real AWS environment
      • Compete with your colleagues in a gamified, hands-on learning experience
      • Apply your learning from the course on various AWS services

IMPORTANT: Please bring your notebook (Windows, Linux or Mac) to our trainings. If this is not possible, please contact us in advance.

Course materials are in English, on request also in German (if available).
The Course language is German, on request also in English.

Neue Termine in Planung!

Continue reading

Advanced Architecting on AWS with AWS Jam

Written by Gemma Corrado on . Posted in AWS Training, Training.

  • Aws Advanced Training Partner

  • Aws Premium Consuting Partner

Advanced Architecting on AWS with AWS Jam

Please find our upcoming course dates at the end of this page!

COURSE DESCRIPTION

In this course, each module presents a scenario with an architectural challenge to be solved. You will examine available AWS services and features as solutions to the problem. You will gain insights by participating in problem-based discussions and learning about the AWS services that you could apply to meet the challenges. Over 3 days, the course goes beyond the basics of cloud infrastructure and covers topics to meet a variety of needs for AWS customers. Course modules focus on managing multiple AWS accounts, hybrid connectivity and devices, networking with a focus on AWS Transit Gateway connectivity, container services, automation tools for continuous integration/continuous delivery (CI/CD), security, and distributed denial of service (DDoS) protection, data lakes and data stores, edge services, migration options, and managing costs. The course concludes by presenting you with scenarios and challenging you to identify the best solutions.

The final day is an AWS Jam, a gamified event, with teams competing to score points by completing a series of challenges according to established best practices based on concepts covered in the course. You get to experience a wide range of AWS services in a series of real-world scenarios that represent common operational and troubleshooting tasks. The result is developing, enhancing, and validating your skillsets in the AWS Cloud through real-world problem solving, exploring new services, features, and understanding how they interoperate.

COURSE OBJECTIVES

In this course, you will learn to:

  • Review the AWS Well-Architected Framework to ensure an understanding of best cloud design practices by responding to poll questions while following a graphic presentation
  • Demonstrate the ability to secure Amazon Simple Storage Service (Amazon S3) virtual private cloud (VPC) endpoint connections in a lab environment
  • Identify how to implement centralized permissions management and reduce risk using AWS Organizations organizational units (OUs) and service control policies (SCPs) with AWS Single SignOn
  • Compare the permissions management capabilities of OUs, SCPs, and AWS SSO with and without AWS Control Tower to determine best practices based on use cases
  • Discuss AWS hybrid network designs to address traffic increases and streamline remote work while ensuring FIPS 140-2 Level 2, or Level 3 security compliance
  • Explore the solutions and products available to design a hybrid infrastructure, including access to 5G networks, to optimize service and reduce latency while maintaining high security for critical on-premises applications
  • Explore ways to simplify the connection configurations between applications and high-performance workloads across global networks
  • Demonstrate the ability to configure a transit gateway in a lab environment
  • Identify and discuss container solutions and define container management options
  • Build and test a container in a lab environment
  • Examine how the AWS developer tools optimize the CI/CD pipeline with updates based on near-real-time data
  • Identify the anomaly detection and protection services that AWS offers to defend against DDoS attacks
  • Identify ways to secure data in transit, at rest, and in use with AWS Key Management Service (AWS KMS) and AWS Secrets Manager
  • Determine the best data management solution based on frequency of access, and data query and analysis needs
  • Set up a data lake and examine the advantages of this type of storage configuration to crawl and query data in a lab environment
  • Identify solutions to optimize edge services to eliminate latency, reduce inefficiencies, and mitigate risks
  • Identify the components used to automate the scaling of global applications using geolocation and traffic control
  • Deploy and activate an AWS Storage Gateway file gateway and AWS DataSync in a lab environment
  • Review AWS cost management tools to optimize costs while ensuring speed and performance
  • Review migration tools, services, and processes that AWS provides to implement effective cloud operation models based on use cases and business needs
  • Provide evidence of your ability to apply the technical knowledge and experience gained in the course to improve business practices by completing Review Projects
  • Work in a team environment to solve real AWS use-case challenges in an AWS Jam

INTENDED AUDIENCE

This course is intended for:

  • Cloud Architects
  • Solutions Architects
  • anyone who designs solutions for
    cloud infrastructures

PREREQUISITES

We recommend that attendees of this course have:

  • Knowledge and experience with core AWS services from the Compute, Storage, Networking, and AWS Identity and Access Management (IAM) categories
  • Attended the Architecting on AWS classroom training OR
  • Achieved the AWS Certified Solutions Architect – Associate certification OR
  • Have at least 1 year of experience operating AWS workloads

ACTIVITIES

This course includes:

  • presentations
  • group discussions
  • use cases
  • videos
  • assessments
  • hands-on labs
  • team-based gamified challenge

COURSE DURATION / PRICE

  • 4 days
  • € 2,485.00 (excl. tax) per person (DE)

Course outline

  • Day 1

    • Module 1: Reviewing Architecting Concepts
      • Group Exercise: Review Architecting on AWS core best practices
      • Hands-On Lab: Securing Amazon S3 VPC Endpoint Communications
    • Module 2: Single to Multiple Accounts
      • AWS Organizations for multi-account access and permissions
      • AWS SSO to simplify access and authentication across AWS accounts and third-party services
      • AWS Control Tower
      • Permissions, access, and authentication
    • Module 3: Hybrid Connectivity
      • AWS Client VPN authentication and control
      • AWS Site-to-Site VPN
      • AWS Direct Connect for hybrid public and private connections
      • Increasing bandwidth and reducing cost
      • Basic, high, and maximum resiliency
      • Amazon Route 53 Resolver DNS resolution
    • Module 4: Specialized Infrastructure
      • AWS Storage Gateway solutions
      • On-demand VMware Cloud on AWS
      • Extending cloud infrastructure services with AWS Outposts
      • AWS Local Zones for latency-sensitive workloads
      • Your 5G network with and without AWS Wavelength
    • Module 5: Connecting Networks
      • Simplifying private subnet connections
      • VPC isolation with a shared services VPC
      • Transit Gateway Network Manager and VPC Reachability Analyzer
      • AWS Resource Access Manager
      • AWS PrivateLink and endpoint services
      • Hands-On Lab: Configuring Transit Gateways

  • Day 2

    • Module 6: Containers
      • Container solutions compared to virtual machines
      • Docker benefits, components, solutions architecture, and versioning
      • Container hosting on AWS to reduce cost
      • Managed container services: Amazon Elastic Container Service (Amazon ECS) and Amazon Elastic Kubernetes Service (Amazon EKS)
      • AWS Fargate
      • Hands-On Lab: Deploying an Application with Amazon EKS on Fargate
    • Module 7: Continuous Integration/Continuous Delivery (CI/CD)
      • CI/CD solutions and impact
      • CI/CD automation with AWS CodePipeline
      • Deployment models
      • AWS CloudFormation StackSets to improve deployment management
    • Module 8: High Availability and DDoS Protection
      • Common DDoS attacks layers
      • AWS WAF
      • AWS WAF web access control lists (ACLs), real-time metrics, logs, and security automation
      • AWS Shield Advanced services and AWS DDoS Response Team (DRT) services
      • AWS Network Firewall and AWS Firewall Manager to protect accounts at scale
    • Module 9: Securing Data
      • What cryptography is, why you would use it, and how to use it
      • AWS KMS
      • AWS CloudHSM architecture
      • FIPS 140-2 Level 2 and Level 3 encryption
      • Secrets Manager
    • Module 10: Large-Scale Data Stores
      • Amazon S3 data storage management including storage class, inventory, metrics, and policies
      • Data lake vs. data warehouse: Differences, benefits, and examples
      • AWS Lake Formation solutions, security, and control
      • Hands-On Lab: Setting Up a Data Lake with Lake Formation

  • Day 3

    • Module 11: Large-Scale Applications
      • What are edge services and why  would you use them
      • Improve performance and mitigate risk with Amazon CloudFront
      • Lambda@Edge
      • AWS Global Accelerator: IP addresses, intelligent traffic distribution, and health checks
      • Hands-On Lab: Migrating an On-Premises NFS Share Using AWS DataSync and Storage Gateway
    • Module 12: Optimizing Cost
      • On-premises and cloud acquisition/deprecation cycles
      • Cloud cost management tools including reporting, control, and tagging
      • Examples and analysis of the five pillars of cost optimization
    • Module 13: Migrating Workloads
      • Business drivers and the process for migration
      • Successful customer practices
      • The 7 Rs to migrate and modernize
      • Migration tools and services from AWS
      • Migrating databases and large data stores
      • AWS Schema Conversion Tool (AWS SCT)
    • Module 14: Review Projects
      • Use the Online Course Supplement (OCS) to review use cases, investigate data, and answer architecting design questions about Transit Gateway, hybrid connectivity, migration, and cost optimization

  • Day 4

    • AWS Jam
      • Participate in team-based challenges in a real AWS environment
      • Compete with your colleagues in a gamified, hands-on learning experience
      • Apply your learning from the course on various AWS services

IMPORTANT: Please bring your notebook (Windows, Linux or Mac) to our training. If this is not possible, please contact us in advance.

Course materials are in English, on request also in German (if available).
The course language is German, on request also in English.

Neue Termine in Planung!

Continue reading

Security Engineering on AWS with AWS Jam

Written by Gemma Corrado on . Posted in AWS Training, Training.

  • Aws Advanced Training Partner

  • Aws Premium Consuting Partner

Security Engineering on AWS with AWS Jam

Please find our upcoming course dates at the end of this page!

COURSE DESCRIPTION

This course demonstrates how to efficiently use AWS security services to stay secure in the AWS Cloud. The course focuses on the security practices that AWS recommends for enhancing the security of your data and systems in the cloud. It highlights the security features of AWS key services including compute, storage, networking, and database services. You will also learn how to leverage AWS services and tools for automation, continuous monitoring and logging, and responding to security incidents.

The final day is an AWS Jam, a gamified event, with teams competing to score points by completing a series of challenges according to established best practices based on concepts covered in the course. You get to experience a wide range of AWS services in a series of real-world scenarios that represent common operational and troubleshooting tasks. The end result is developing, enhancing, and validating your skillsets in the AWS Cloud through real-world problem solving, exploring new services, features, and understanding how they interoperate.

COURSE OBJECTIVES

In this course, you will learn to:

  • Identify security benefits and responsibilities of using the AWS Cloud
  • Build secure application infrastructures
  • Protect applications and data from common security threats
  • Perform and automate security checks
  • Configure authentication and permissions for applications and resources
  • Monitor AWS resources and respond to incidents
  • Capture and process logs
  • Create and configure automated and repeatable deployments with tools such as AMIs and AWS CloudFormation
  • Work in a team environment to solve real AWS use-case challenges in an AWS Jam

INTENDED AUDIENCE

This course is intended for experienced

  • Security Engineers
  • Security Architects
  • Information Security Professionals

PREREQUISITES

We recommend that attendees of this course have:

ACTIVITIES

This course includes:

  • presentations
  • demonstrations
  • hands-on labs
  • team-based gamified challenge

COURSE DURATION / PRICE

  • 4 Days
  • 3,175.00 (excl. tax) per person (DE)

Course outline

  • Day 1

    • Module 1: Security on AWS
      • Security in the AWS cloud
      • AWS Shared Responsibility Model
      • Incident response overview
      • DevOps with Security Engineering
    • Module 2: Identifying Entry Points on AWS
      • Identify the different ways to access the AWS platform
      • Understanding IAM policies
      • IAM Permissions Boundary
      • IAM Access Analyzer
      • Multi-factor authentication
      • AWS CloudTrail
      • Lab 01: Cross-account access
    • Module 3: Security Considerations: Web Application Environments
      • Threats in a three-tier architecture
      • Common threats: user access
      • Common threats: data access
      • AWS Trusted Advisor
    • Module 4: Application Security
      • Amazon Machine Images
      • Amazon Inspector
      • AWS Systems Manager
      • Lab 02: Using AWS Systems Manager and Amazon Inspector
    • Module 5: Data Security
      • Data protection strategies
      • Encryption on AWS
      • Protecting data at rest with Amazon S3, Amazon RDS, Amazon DynamoDB
      • Protecting archived data with Amazon S3 Glacier
      • Amazon S3 Access Analyzer
      • Amazon S3 Access Points

  • Day 2

    • Module 6: Securing Network Communications
      • Amazon VPC security considerations
      • Amazon VPC Traffic Mirroring
      • Responding to compromised instances
      • Elastic Load Balancing
      • AWS Certificate Manager
    • Module 7: Monitoring and Collecting Logs on AWS
      • Amazon CloudWatch and CloudWatch Logs
      • AWS Config
      • Amazon Macie
      • Amazon VPC Flow Logs
      • Amazon S3 Server Access Logs
      • ELB Access Logs
      • Lab 03: Monitor and Respond with AWS Config
    • Module 8: Processing Logs on AWS
      • Amazon Kinesis
      • Amazon Athena
      • Lab 04: Web Server Log Analysis
    • Module 9: Security Considerations: Hybrid Environments
      • AWS Site-to-Site and Client VPN connections
      • AWS Direct Connect
      • AWS Transit Gateway
    • Module 10: Out-Of-Region Protection
      • Amazon Route 53
      • AWS WAF
      • Amazon CloudFront
      • AWS Shield
      • AWS Firewall Manager
      • DDoS mitigation on AWS

  • Day 3

    • Module 11: Security Considerations: Serverless Environments
      • Amazon Cognito
      • Amazon API Gateway
      • AWS Lambda
    • Module 12: Threat Detection and Investigation
      • Amazon GuardDuty
      • AWS Security Hub
      • Amazon Detective
    • Module 13: Secrets Management on AWS
      • AWS KMS
      • AWS CloudHSM
      • AWS Secrets Manager
      • Lab 05: Using AWS KMS
    • Module 14: Automation and Security by Design
      • AWS CloudFormation
      • AWS Service Catalog
      • Lab 06: Security automation on AWS with AWS Service Catalog
    • Module 15: Account Management and Provisioning on AWS
      • AWS Organizations
      • AWS Control Tower
      • AWS SSO
      • AWS Directory Service
      • Lab 07: Federated Access with ADFS

  • Day 4

    • AWS Jam
      • Participate in team-based challenges in a real AWS environment
      • Compete with your colleagues in a gamified, hands-on learning experience
      • Apply your learning from the course on various AWS services

IMPORTANT: Please bring your notebook (Windows, Linux or Mac) to our training. If this is not possible, please contact us in advance.

Course materials are in English, on request also in German (if available).
The course language is German, on request also in English.

Neue Termine in Planung!

Continue reading

AWS Certified Database – Specialty

Written by Annika Thiemann on . Posted in AWS Training, Certifications, Training.

Who should take this exam?

AWS Certified Database – Specialty is intended for individuals with experience and expertise working with on-premises and AWS Cloud-based relational and non-relational databases. Before you take this exam, we recommend you have:

  • Five years of experience with common database technologies
  • Two years of hands-on experience and expertise working with on-premises and AWS Cloud-based relational and NoSQL databases
  • Ability to understand and differentiate the key features of AWS database services
  • Ability to analyze needs and requirements to design and recommend appropriate database solutions by using AWS services

Prerequisites

To earn this certification, you’ll need to take and pass the AWS Certified Database – Specialty exam. The exam features a combination of two question formats: multiple choice and multiple response. Additional information, such as the exam content outline and passing score, is in the exam guide.

Recommended training

Exam

AWS-Certified-Database – Specialty-Exam

Recertification

AWS certifications are valid for three years. If you want to maintain your AWS certification status, you must periodically demonstrate your expertise through recertification. Recertification strengthens the overall value of your AWS certification and demonstrates to customers and employers that your credential includes current AWS knowledge, competencies, and AWS best practices.

Recertification for Specialty Certifications

Take the current Specialty exam

You can take the current Specialty exam for the certification you already have. For example, if you are an AWS Certified Security – Specialist, you can take the current AWS Certified Security – Specialty exam to recertify. You can use your 50% discount voucher from the Benefits section of your AWS Certification account to re-certify or use it for any future certification exams you want to take.

AWS Certified SAP on AWS – Specialty

Written by Annika Thiemann on . Posted in AWS Training, Certifications, Training.

Prerequisites

AWS Certified: SAP on AWS – Specialty is intended for individuals in roles that require experience with both SAP and AWS. Before you take this exam, we recommend you have:

  • Five or more years of SAP experience
  • One or more years of experience working with SAP on AWS
  • Ability to design an SAP solution that runs in the AWS Cloud in adherence with best practices laid out in the AWS Well-Architected Framework, and SAP certification and support requirements

Exam and recommended training

To earn this certification, you’ll need to take and pass the AWS Certified: SAP on AWS – Specialty exam. The exam features a combination of two question formats: multiple choice and multiple response. Additional information, such as the exam content outline and passing score, is in the exam guide.