Starting AWS learning with the goal of cloud security

Danielm7Danielm7 Posts: 2,269Member ■■■■■■■■□□
My company uses Azure now, but is also looking to add some AWS. I'm not on either of those teams, I'm in security, but I'd like to learn the security side starting with AWS. Should I start with the cloud practitioner cert or skip that and work towards the associate tier?
Thanks. 

Comments

  • srothmansrothman Posts: 12Member ■■□□□□□□□□
    edited September 8
    I think this will very much depend on your experience with cloud as an overall concept. The foundational certifications for both AWS and Azure are very entry-level, and although getting certified from the ground up, so to speak, is very admirable, you will likely be able to pick up the required knowledge by simply running through some of the free online training available for either. I would recommend jumping in at the Associate-level if you have some general IT/virtualization experience, you should do fine.
  • Danielm7Danielm7 Posts: 2,269Member ■■■■■■■■□□
    My cloud experience in general is pretty low, which is why I was considering just starting on the ground floor and the exam is $100 so it's not bad really. I have plenty of general IT and engineering experience but it sounds like the smart idea is still to start fro the bottom. 
  • chrisonechrisone CISSP, CRTP, eCPPT, LFCS, CEH, Azure Fundamentals, Retired Cisco NPs Posts: 1,895Member ■■■■■■■■□□
    I do not manage Azure/AWS, so I lacked the standard knowledge and the basics that was needed in order for me to jump into the security track.  I came out of the AZ-900 experience coming to this conclusion, "If you believe overall general knowledge of the differences between IaaS, PaaS, & SaaS is all you need to jump into the Security track, you are highly misinformed." I need that foundation (Azure AZ-900/365 MS-900 or AWS Cloud Practitioner) before jumping into the security tracks of AWS and Azure.

    I am happy I did not go straight into the security track.  

    2 cents
    2020 Goals:
    Courses: SpecterOps Adversary Tactics: Detection
    Certs: AZ-500 (in-progress), MS-500, Pentester Academy - PACES, Pentester Academy - CRTE, OSCP
  • Danielm7Danielm7 Posts: 2,269Member ■■■■■■■■□□
    That's helpful to know, thanks. Sounds like the path Ill take. 
  • cyberguyprcyberguypr Senior Member Posts: 6,844Mod Mod
    Go for the Practitioner. It's great to establish a solid baseline. My AWS path is Practitioner > Architect Associate > Security. I chose this because my company is just starting to move to the cloud and I didn't have a ton of hands on experience. 
  • stryder144stryder144 Posts: 1,597Member ■■■■■■■■□□
    I, too, think that the entry-level certs in cloud are a good idea.  While I have the CompTIA Cloud+, I plan to take the AWS and Azure entry-level training/exams in order to get my feet wet with their specific technologies.  Then I will move into the associate levels and, eventually, security.  Good luck!
    The easiest thing to be in the world is you. The most difficult thing to be is what other people want you to be. Don't let them put you in that position. ~ Leo Buscaglia

    Connect With Me || My Blog Site || Follow Me
  • averageguy72averageguy72 Senior Member Posts: 308Member ■■■■□□□□□□
    I would suggest associate to give you a baseline of core services and then the security track.  I've only done AWS so far, but plan on doing Azure next year.  
    CISSP / CCSP / CCSK / CRISC / CISM / CISA / CASP / Security+ / Network+ / A+ / CEH / eNDP / AWS Certified Advanced Networking - Specialty / AWS Certified Security - Specialty / AWS Certified DevOps Engineer - Professional / AWS Certified Solutions Architect - Professional / AWS Certified SysOps Administrator - Associate / AWS Certified Solutions Architect - Associate / AWS Certified Developer - Associate / AWS Cloud Practitioner
  • yoba222yoba222 Posts: 1,064Member ■■■■■■■□□□
    I'm kind of in the same boat and have been recently "assigned" to getting cloud literate over the next several months to pivot into cloud security. Thanks for asking this Danielm7 and thanks guys for these responses. Very helpful! But man, starting from Cloud Practitioner and then AZ-900; this reminds me of A+/Network+ days all over again a bit.
    2017: GCIH | LFCS
    2018: CySA+ | PenTest+ |CCNA CyberOps
    2019: VHL 20 boxes
    2020: OSCP | CISSP
  • JoJoCal19JoJoCal19 California Kid Posts: 2,801Mod Mod
    The Practitioner isn’t helpful if you want to work with the technology in my opinion. I feel it’s better to study for the Practitioner, but skip the exam. Put that money you'd spend on the exam towards A Cloud Guru or Linux Academy sub, and Jon Bonso's practice exam for the Associate.
    Have: CISSP, CISM, CISA, CRISC, eJPT, GCIA, GSEC, CCSP, CCSK, AWS CSAA, AWS CCP, CEHv8, CHFIv8, ITIL-F, MS Cyber Security - USF, BSBA - UF, MSISA - WGU
    Currently Working On: Python, OSCP Prep
    Next Up:​ OSCP
    Studying:​ Code Academy (Python), Bash Scripting, Virtual Hacking Lab Coursework
  • Danielm7Danielm7 Posts: 2,269Member ■■■■■■■■□□
    JoJoCal19 said:
    The Practitioner isn’t helpful if you want to work with the technology in my opinion. I feel it’s better to study for the Practitioner, but skip the exam. Put that money you'd spend on the exam towards A Cloud Guru or Linux Academy sub, and Jon Bonso's practice exam for the Associate.
    That's a good idea too. I'm on the ACloudGuru trial now so I could take that route, thanks!
  • Azt7Azt7 ITIL, MCSA Office 365, MCSE Productivity, AWS CSAA, Azure Architect Posts: 114Member ■■■■□□□□□□
    JoJoCal19 said:
    The Practitioner isn’t helpful if you want to work with the technology in my opinion. I feel it’s better to study for the Practitioner, but skip the exam. Put that money you'd spend on the exam towards A Cloud Guru or Linux Academy sub, and Jon Bonso's practice exam for the Associate.
    Great point !

    I would say go directly for the Associate Architect certification, Most trainings will break things down for you. 

    At the end of the day, cloud is just basic computing applied to a vendor data center. So we mostly have all the basics, it's just getting down to the trillion services that makes it a headache sometimes. 
    Certifications : ITIL, MCSA Office 365, MCSE Productivity, AWS CSAA, Azure Architect, CCSK
    Studying for :  TOGAF - 01/20
    2020 : ISO 27032 Lead Cybersecurity Manager - COBIT
    2021 : CGEIT 
  • TheFORCETheFORCE Senior Member Posts: 2,297Member ■■■■■■■■□□
    @Danielm7 did you start yet man? I'm looking to do the same. Have you collected any material for what you going to start studying first? Let me know and we can get a group started or something 
  • Danielm7Danielm7 Posts: 2,269Member ■■■■■■■■□□
    I started going through the acloudguru material and then got an email from SANS for a beta exam for something. So now I have a limited time to index and work on that. So... have to get that done first and then I'll be back to AWS. 
  • LonerVampLonerVamp OSCP, GCFA, GWAPT, CISSP, OSWP, CCNA Cyber Ops, Sec+, Linux+, AWS CCP, CCSK Posts: 402Member ■■■■■■□□□□
    I'm going down a similar route. I took the AWS Cloud Practitioner exam a month ago and CCSK a few weeks ago.

    I benefited greatly from the AWS CP studying and exam (it's cheap), but largely because I didn't know much about AWS services and pricing. I knew that S3 were buckets and just stored data, and after 15+ years as a sysadmin, I knew the benefits and models of the cloud just fine. Taking that course/exam on allowed me to at least know what the services are and how pricing generally works in a way that I can converse with others and approach the next round of learning.

    That said, you'll probably learn similar things in the SA-A, as you go deeper in. But it's nice to have that bigger picture of AWS, too. For me, the next steps as SA-A and then the Security Specialty. I may add SysOps in there or CCSP, but the end goal is really Security Specialty.

    Security Engineer/Analyst/Geek, Red & Blue Teams
    OSCP, GCFA, GWAPT, CISSP, OSWP, CCNA Cyber Ops, Sec+, Linux+, AWS CCP, CCSK
    2019 goals: GWAPT, Linux+, (possible: SLAE, CCSK, AWS SA-A)
  • TheFORCETheFORCE Senior Member Posts: 2,297Member ■■■■■■■■□□
    yeah i need to start collecting or use some of the free resources Amazon has on their AWS training. 
  • yoba222yoba222 Posts: 1,064Member ■■■■■■■□□□
    I'm just going through Linux Academey trainings (essentials, Cloud Practitioner, etc.). Haven't been on Linux Academy in a few years and I'm impressed that they increased the level of polish instead of letting it stagnate. But then it's like $40 a month I think.
    2017: GCIH | LFCS
    2018: CySA+ | PenTest+ |CCNA CyberOps
    2019: VHL 20 boxes
    2020: OSCP | CISSP
  • Infosec_SamInfosec_Sam Security+, CCENT, ITIL Foundation, A+ Madison, WIPosts: 396Admin Admin
    yoba222 said:
    I'm just going through Linux Academey trainings (essentials, Cloud Practitioner, etc.). Haven't been on Linux Academy in a few years and I'm impressed that they increased the level of polish instead of letting it stagnate. But then it's like $40 a month I think.
    Yeah, we were right next to the Linux Academy booth at Black Hat last month, so I got a chance to chat with them and check out their content for a bit. It's honestly really high-quality stuff, and their team was super nice. Highly recommend Linux Academy (for anything you can't get on our own skills platform, of course  ;) )
    Community Manager at Infosec!
    Who we are | What we do
  • ClickClackClickClack Net+ Posts: 22Member ■■■□□□□□□□
    yoba222 said:
    I'm just going through Linux Academey trainings (essentials, Cloud Practitioner, etc.)...
    I picked up Linux Academy's AWS Concepts, AWS Essentials, and AWS Serverless Concepts for free on Udemy. These may be available for free on the Community Edition of Linux Academy too (e.g. free, no labs, limited content on the LA site). I was impressed by the amount of information these short courses provided.  I liked them enough that I paid for the Linux Academy's Cloud Practitioner on Udemy during a sale.
  • ClmClm 5th Raikage (AWS) / Cloud Sec Senpai Posts: 443Member ■■■■□□□□□□
    I would Definitely  Grab the AWS Architect Associate the practitioner is more for sales folks. It doesn't help when it comes to understanding moving to the  cloud after that i would grab the Security specialty CCSK and CCSP are good to haves as well.
    I find your lack of Cloud Security Disturbing!!!!!!!!!
    Connect with me on LinkedIn https://www.linkedin.com/in/myerscraig

  • Danielm7Danielm7 Posts: 2,269Member ■■■■■■■■□□
    I convinced work to pay for a year of linuxacadamy so I've been going through the Azure fundamental materials first, really enjoying the hands on labs portion they have on that site. All I had to say was "I want to start learning about azure security" since we use that, and boom, approved. So I plan on getting everything I can out of the subscription since I'm prepaid for the year now. 
  • MitMMitM Posts: 604Member ■■■■□□□□□□
    great thread.  My primary focus is network security. The two tracks that interest me the most are the Security specialty and Adv Networking.  Two challenging certs from what I hear and think is great.

    I wasn't sure if it was acceptable to go through the Cloud Practitioner material and then straight to the security specialty cert.  I wasn't sure the AWS-SAA gives you too much details, if you're not planning on being a cloud architect/engineer?
Sign In or Register to comment.