Skip to main content

Terraform Engineering

Written by wamrhein on . Posted in Terraform Training, Topseller, Training.

Terraform Engineering

current course dates can be found at the bottom of this page … company training available on request!

Course description

The first day of the Terraform Engineering course contains the same content as the Terraform Essentials course. The second day focuses on the practical integration of Terraform into production environments. Based on this requirement, advanced functionalities of Terraform will be discussed and also the ecosystem of helpful tools and concepts around Terraform and pipelines will be worked out by means of practical exercises. This course is particularly suitable for participants who want to use/implement Terraform productively.

Our trainers have excellent training skills and Terraform project experience.

We offer open trainings in Hamburg, Hanover and Düsseldorf. We are also happy to conduct training at your location.

Course objectives

In this course, you will learn to:

  • Understand benefits of using Terraform to create cloud resources
  • Understand Terraform basic commands and functionality
  • Understand and apply language concepts to efficiently write readable and reusable code
  • Gain hands-on experience working with Terraform
  • Understand and use advanced Terraform concepts
  • Helpful open source tools when used in pipelines/git-based workflows
  • Try out advanced terraform commands and coding

Prerequisites

We recommend that attendees of this course have:

  • Basic understanding of general networking concepts and multi-layer architectures.
  • Understanding of cloud computing concepts
  • Basic knowledge of basic AWS services (VPC, EC2, S3)
  • Basic knowledge of software development and system administration (git, Bash, advanced editor)
  • Basic understanding of git-based workflows/pipelines

Course duration / Price

  • 2 days / € 1500.00 (excl. tax) per person (DE)

Course outline

  • Introduction
  • Basic commands
  • Core concepts 1 (State, Resources, Variables)
  • Coding block 1 – Practical exercise
  • Core concepts 2 (References, Outputs, Naming, Functions)
  • Coding block 2 – Practical exercise
  • Core Concepts 3 (External Resources, Loops & If/Else, Locals, Meta Arguments)
  • Coding Block 3 – Practical Exercise
  • Reusable Code: Modules
  • Quiz, outlook and certification
  • CI/CD Concepts 1 (Remote State, Local Tooling, Debugging, Testing)
  • Coding Block 1 – Practical Exercise
  • CI/CD Concepts 2 (Custom Modules, Pipeline Tooling, Advanced CLI)
  • Coding block 2 – Practical exercise
  • CI/CD Concepts 3 (Authentication, Dynamics, Loops, Templating)
  • Coding block 3 – Practical exercise
  • Terraform Top20 Good Practices
  • Quiz, Outlook

IMPORTANT: Please bring your notebook (Windows, Linux or Mac) to our trainings. If this is not possible, please contact us in advance.

The practical exercises are performed in prepared working environments available via web browser – no software needs to be installed. The course materials are in English, the trainer’s course language is German.

Developing on AWS Training

Written by wamrhein on . Posted in AWS Training, Topseller, Training.

Developing on AWS Training

current course dates can be found at the bottom of this page … company training available on request!

Course description

This course teaches experienced developers how to programmatically interact with AWS services to build web solutions. It guides you through a high-level architectural discussion on resource selection and dives deep into using the AWS Software Development Kits (AWS SDKs) and Command Line Interface (AWS CLI) to build and deploy your cloud applications. You will build a sample application during this course, learning how to set up permissions to the development environment, adding business logic to process data using AWS core services, configure user authentications, deploy to AWS cloud, and debug to resolve application issues. The course includes code examples to help you implement the design patterns and solutions discussed in the course. The labs reinforce key course content and help you to implement solutions using the AWS SDK for Python, .Net, and Java, the AWS CLI, and the AWS Management Console.

Course objectives

In this course, you will learn to:

  • Build a simple end-to-end cloud application using AWS Software Development Kits (AWS SDKs), Command Line Interface (AWS CLI), and IDEs.
  • Configure AWS Identity and Access Management (IAM) permissions to support a development environment.
  • Use multiple programming patterns in your applications to access AWS services.
  • Use AWS SDKs to perform CRUD (create, read, update, delete) operations on Amazon Simple Storage Service (Amazon S3) and Amazon DynamoDB resources.
  • Build AWS Lambda functions with other service integrations for your web applications.
  • Understand the benefits of microservices architectures and serverless applications to design.
  • Develop API Gateway components and integrate with other AWS services.
  • Explain how Amazon Cognito controls user access to AWS resources.
  • Build a web application using Cognito to provide and control user access.
  • Use DevOps methodology to reduce the risks associated with traditional application releases and identify AWS services that help in implementing DevOps practices.
  • Use AWS Serverless Application Model (AWS SAM) to deploy an application.

Intended audience

This course is intended for experienced:

  • Software developers
  • Solution architects
  • IT workers who want to improve their developing skills using AWS Services

Prerequisites

We recommend that attendees of this course have:

  • Working knowledge of AWS core services
  • Programming experience in any one of the following languages: Java, C#/.Net or Python

Activities

This course includes:

  • Training with instructor
    Practical exercises

Course duration / Price

  • 3 days
  • € 2,095.00 (excl. tax) per person (DE)
  • CHF 2,500.00 (excl. tax) per person (CH)

Course outline

Day 1: Basics

  • Introduction to development in AWS
  • Selecting a data store
  • Developing storage solutions with Amazon S3
  • Developing Flexible NoSQL Solutions with Amazon DynamoDB

Day 2: Connecting Applications and Data with Event-Driven Processing

  • Working with Events
  • Developing Event Driven Solutions with Amazon Kinesis Stream
  • Developing Event Driven Solutions with Amazon SWF, Amazon SQS, and Amazon SNS
  • Developing Event Driven Solutions with AWS Lambda

Day 3: Developing and Deploying Secure and Scalable Applications

  • Develop secure applications
  • Capture data for scalability in the cache
  • Monitor your applications and AWS resources with Amazon CloudWatch
  • Deploy applications with AWS Elastic Beanstalk and AWS CloudFormation

IMPORTANT: Please bring your notebook (Windows, Linux or Mac) to our trainings. If this is not possible, please contact us in advance.

Course materials are in English, on request also in German (if available).
Course language is German, on request also in English.

Security Engineering on AWS

Written by wamrhein on . Posted in AWS Training, Topseller, Training.

  • Aws Advanced Training Partner

  • Aws Premium Consuting Partner

Security Engineering on AWS

Please find our upcoming course dates at the end of this page!

COURSE DESCRIPTION

Security is a concern for both customers in the cloud, and those considering cloud adoption. An increase in cyberattacks and data leaks remains top of mind for most industry personnel. The Security Engineering on AWS course addresses these concerns by helping you better understand how to interact and build with Amazon Web Services (AWS) in a secure way. In this course, you will learn about managing identities and roles, managing and provisioning accounts, and monitoring API activity for anomalies. You will also learn about how to protect data stored on AWS. The course explores how you can generate, collect, and monitor logs to help identify security incidents. Finally, you will review detecting and investigating security incidents with AWS services.

COURSE OBJECTIVES

In this course, you will learn to:

  • State an understanding of AWS cloud security based on the CIA triad.
  • Create and analyze authentication and authorizations with IAM.
  • Manage and provision accounts on AWS with appropriate AWS services.
  • Identify how to manage secrets using AWS services.
  • Monitor sensitive information and protect data via encryption and access controls.
  • Identify AWS services that address attacks from external sources.
  • Monitor, generate, and collect logs.
  • Identify indicators of security incidents.
  • Identify how to investigate threats and mitigate using AWS services.

INTENDED AUDIENCE

This course is intended for:

  • Security engineers
  • Security architects
  • Cloud architects
  • Cloud operators working across all global segments

PREREQUISITES

We recommend that attendees of this course have:

  • Completed the following courses:
  • Working knowledge of IT security practices and infrastructure concepts.
  • Familiarity with the AWS Cloud.

ACTIVITIES

This course includes:

  • presentations
  • demonstrations
  • group exercises
  • hands-on labs

COURSE DURATION / PRICE

  • 3 days
  • € 2,685.00 (excl. tax) per person (DE)
  • CHF 2,500.00 (excl. tax) per person (CH)

Course outline

  • Day 1

    • Module 1: Security Overview and Review
      • Explain Security in the AWS Cloud.
      • Explain AWS Shared Responsibility Model.
      • Summarize IAM, Data Protection, and Threat Detection and Response.
      • State the different ways to interact with AWS using the console, CLI, and SDKs.
      • Describe how to use MFA for extra protection.
      • State how to protect the root user account and access keys.
    • Module 2: Securing Entry Points on AWS
      • Describe how to use multi-factor authentication (MFA) for extra protection.
      • Describe how to protect the root user account and access keys.
      • Describe IAM policies, roles, policy components, and permission boundaries.
      • Explain how API requests can be logged and viewed using AWS CloudTrail and how to view and analyze access history.
      • Hands-On Lab: Using Identity and Resource Based Policies.
    • Module 3: Account Management and Provisioning on AWS
      • Explain how to manage multiple AWS accounts using AWS Organizations and AWS Control Tower.
      • Explain how to implement multi-account environments with AWS Control Tower.
      • Demonstrate the ability to use identity providers and brokers to acquire access to AWS services.
      • Explain the use of AWS IAM Identity Center (successor to AWS Single Sign-On) and AWS Directory Service.
      • Demonstrate the ability to manage domain user access with Directory Service and IAM Identity Center.
      • Hands-On Lab: Managing Domain User Access with AWS Directory Service

  • Day 2

    • Module 4: Secrets Management on AWS
      • Describe and list the features of AWS KMS, CloudHSM, AWS Certificate Manager (ACM), and AWS Secrets Manager.
      • Demonstrate how to create a multi-Region AWS KMS key.
      • Demonstrate how to encrypt a Secrets Manager secret with an AWS KMS key.
      • Demonstrate how to use an encrypted secret to connect to an Amazon Relational Database Service (Amazon RDS) database in multiple AWS Regions
      • Hands-on lab: Lab 3: Using AWS KMS to Encrypt Secrets in Secrets Manager
    • Module 5: Data Security
      • Monitor data for sensitive information with Amazon Macie.
      • Describe how to protect data at rest through encryption and access controls.
      • Identify AWS services used to replicate data for protection.
      • Determine how to protect data after it has been archived.
      • Hands-on lab: Lab 4: Data Security in Amazon S3
    • Module 6: Infrastructure Edge Protection
      • Describe the AWS features used to build secure infrastructure.
      • Describe the AWS services used to create resiliency during an attack.
      • Identify the AWS services used to protect workloads from external threats.
      • Compare the features of AWS Shield and AWS Shield Advanced.
      • Explain how centralized deployment for AWS Firewall Manager can enhance security.
      • Hands-on lab: Lab 5: Using AWS WAF to Mitigate Malicious Traffic

  • Day 3

    • Module 7: Monitoring and Collecting Logs on AWS
      • Identify the value of generating and collecting logs.
      • Use Amazon Virtual Private Cloud (Amazon VPC) Flow Logs to monitor for security events.
      • Explain how to monitor for baseline deviations.
      • Describe Amazon EventBridge events.
      • Describe Amazon CloudWatch metrics and alarms.
      • List log analysis options and available techniques.
      • Identify use cases for using virtual private cloud (VPC) Traffic Mirroring.
      • Hands-on lab: Lab 6: Monitoring for and Responding to Security Incidents
    • Module 8: Responding to Threats
      • Classify incident types in incident response.
      • Understand incident response workflows.
      • Discover sources of information for incident response using AWS services.
      • Understand how to prepare for incidents.
      • Detect threats using AWS services.
      • Analyze and respond to security findings.
      • Hands-on lab: Lab 7: Incident Response

IMPORTANT: Please bring your notebook (Windows, Linux or Mac) to our training. If this is not possible, please contact us in advance.

Course materials are in English, on request also in German (if available).
The course language is German, on request also in English.

Neue Termine in Planung!

Continue reading

  • 1
  • 2