.png)
Attack Detection on AWS
A comprehensive, hands-on course equipping security teams with the practical skills to master AWS security services and CloudTrail analysis.
In Partnership With:
Course Fee
Full Course Fees
SG Citizen (aged 21-39) or PR
SG Citizen (aged 40 & above)
Full Fees
$19,500
$19,500
$19,500
SkillsFuture Funding
-
$13,650 (70% Subsidy)
$17,550 (90% Subsidy)
Total Nett Fee
$19,500
$5,850
$1,950
GST (9%)
$1,755
$526.5
$526.5
Total Fee Payable
$21,255
$6,376.50
$2,476.50
Supporting Partners:
Additional Funding: SkillsFuture Credits (up to $500), UTAP ($200-$500) & PSEA can be used to pay for course fees after subsidy
Learning Outcomes:
- Master AWS security services and CloudTrail analysis through hands-on, practical exercises that go beyond theory
- Detect and respond to modern attack techniques, including privilege escalation and data exfiltration, within AWS environments
- Investigate real-world attack scenarios and build a robust security foundation for your AWS infrastructure
- Leave with proven, actionable skills to defend and strengthen your organisation's cloud security posture
Course Syllabus:
Chapter 01
AWS Fundamentals
AWS Overview
- Introduction to AWS core concepts and architecture.
Hands-on Configuration
- Practical configuration of AWS services including IAM, EC2, Lambda, and S3. Provides fundamental knowledge before covering how these services are exploited by threat actors.
CloudTrail Fundamentals
- Learn the core concepts and functionalities of AWS CloudTrail.
Configuring CloudTrail
- Master the process of setting up CloudTrail trails to capture relevant events and activities.
Chapter 02
Introduction to AWS CloudTrail (Day 1)
Question text goes here
- Become familiar with different attack scenarios
Log Interpretation
- Develop the ability to decipher CloudTrail logs to identify user activities, API calls, and resource changes.
Threat Detection
- Learn to recognize indicators of compromise (IoCs), indicators of attack (IoA) and anomalies within CloudTrail logs.
Advanced Analysis Techniques
- Explore methods for extracting actionable intelligence from CloudTrail data.
Chapter 03
CloudTrail Log Analysis (Day 1/Day 2)
Question text goes here
- Become familiar with different attack scenarios
Common AWS Attack Vectors
- Explore real-world attack scenarios, including unauthorised access and data exfiltration.
Threat Actor Tactics
- Analyse the techniques employed by malicious actors to target AWS environments, aligning them with the industry-standard MITRE ATT&CK Framework.
Chapter 04
Understanding the AWS Threat Landscape (Day 2)
Question text goes here
- Become familiar with different attack scenarios
Advanced Threat Hunting with CloudTrail
- Analyse attacker methodologies and tactics as captured in CloudTrail logs to understand the techniques used by adversaries, enabling you to proactively identify and counteract potential threats.
Practical Tips for Effective CloudTrail-Based Threat Hunting
- Learn proven best practices and actionable strategies to perform robust threat hunting with CloudTrail, ensuring you can efficiently monitor, detect, and respond to evolving cyber risks.
Chapter 05
AWS Attack Detection (Day 2)
Question text goes here
- Become familiar with different attack scenarios
Training Schedule:
Day 1
- AWS Fundamentals, CloudTrail Introduction, and Log Analysis foundations
Day 2
- AWS Threat Landscape, Attack Detection, and hands-on investigation scenarios
28th & 29th March, 10:00 AM - 6:00 PM
Question text goes here
Training Methodology:
Hands-On Labs
- Practical exercises configuring AWS services and analysing real attack scenarios
Live Demonstrations
- Instructor-led attack simulations and CloudTrail investigation walkthroughs
Real-World Case Studies
- Analysis of actual cloud security incidents and threat actor tactics
Interactive Discussions
- Q&A sessions and group analysis of threat detection scenarios
Question text goes here
- Become familiar with different attack scenarios
FAQs:
Is there any funding or subsidies available?
- SkillsFuture Opening Credits of $500 and UTAP Claims of up to $250 are applicable for this workshop
What are the prerequisites?
- Basic understanding of cloud security concepts and AWS services is recommended.
Will I receive a certificate?
- Yes, participants receive a certificate of completion from Centre for Cybersecurity Institute.
Is this course suitable for beginners?
- This course is designed for security professionals with basic AWS knowledge. Some familiarity with cloud concepts is beneficial.
What tools will I need?
- All lab environments and tools are provided. Participants need a laptop with internet connectivity.
Who are the trainers?
- ANG Wei Chea — A SecOps Tech Lead with over 15 years of experience in cloud threat detection and detection engineering, Wei Chea holds CISSP, GCFA, GCTI, and Offensive AWS Security Professional certifications and has shared his research at global conferences including HitCon, FIRST 2024, and ISC2 APAC Congress.
- LOH In Ming — A Principal Consultant specialising in cloud incident response, purple teaming, and security assessments across Asia Pacific, In Ming holds OSCP, OSCE, CRTP, and CARTP certifications and co-delivered "Intro to AWS Threat Detections" at FIRST 2024.
Question text goes here
- Become familiar with different attack scenarios
Quick Info
Programme Fee
$100 (Before SkillsFuture Credits)
Duration
2 days (14 hours)
Schedule
28th & 29th March, 10:00 AM - 6:00 PM
Teacher-to-Student Ratio
1:10
Delivery Mode
On-site
Location
84 Punggol Way, #07-69, Singapore 829911
View Course BrochureRegister NowBook Your SlotView Brochure
Secure Your Future
Find out more about how we can help you secure your future in cybersecurity
