Advertisements

AWS Security Specialty SCS-C02: Complete Exam Prep 2026

Advertisements
Master IAM, KMS, GuardDuty & network security — full SCS-C02 exam prep with hands-on AWS labs and real-world scenarios
1
1/5
(90) Ratings
27 students
Created by Armaan Sidana
Advertisements

What you'll learn

  • Master all AWS security services — IAM, KMS, GuardDuty, Macie, Inspector, Shield, WAF, and Security Hub — tested on the SCS-C02 exam
  • Design and implement secure AWS architectures covering encryption, network controls, identity federation, and incident response strategies
  • Analyze real-world cloud attack scenarios and apply AWS-native detective and preventive controls to protect data and infrastructure
  • Pass the AWS Certified Security – Specialty (SCS-C02) exam with confidence using exam-focused practice, tips, and domain-by-domain prep
This course includes:
5.5 total hours on-demand video
0 articles
0 downloadable resources
17 lessons
Full lifetime access
Access on mobile and TV
Certificate of completion
Advertisements

Course content

Requirements

  • Basic AWS knowledge required — understand core services like EC2, S3, VPC, and IAM before starting. AWS Cloud Practitioner level or equivalent
  • Familiarity with networking fundamentals — TCP/IP, DNS, firewalls, and VPNs. No advanced networking degree needed, just solid basics
  • General security concepts recommended — encryption, authentication, and access control. CompTIA Security+, CEH, or CISSP experience is a plus
  • A free or paid AWS account to follow along with hands-on demos. All labs use the AWS Free Tier where possible to minimize your costs

Description

AWS Certified Security – Specialty (SCS-C02) | Complete Exam Prep

Are you ready to become a certified AWS Security professional? This course is a complete, hands-on preparation guide for the AWS Certified Security – Specialty (SCS-C02) exam — one of the most respected and highest-paying certifications in cloud security today.

Whether you’re a cloud engineer, DevOps professional, or an experienced security practitioner moving into AWS, this course walks you through every exam domain with clear explanations, real-world scenarios, and practical AWS console demonstrations.

What Makes This Course Different

This course was built by an instructor who holds OSCP, CEH, and CISA certifications — so you don’t just learn what AWS

security services do, you learn how attackers very concept is tied to real-world cloud attackpatterns and defensive architecture.

Course Modules

Module 0 – Course Introduction & Exam Overview

Understand the SCS-C02 exam structure, domains, question types, and how to use this course effectively to pass on your

first attempt.

Module 1 – AWS Security Fundamentals

Review core AWS concepts critical to security: the shared responsibility model, AWS global infrastructure, regions,

availability zones, and the AWS Well-Architect

Module 2 – Identity and Access Management (IAM

Master IAM users, groups, roles, and policies. Understand permissions boundaries, policy evaluation logic, service control policies (SCPs), and cross-account access patt

Module 3 – Advanced IAM & Identity Federation

Explore AWS IAM Identity Center (SSO), SAML 2.0, OIDC federation, Cognito user pools and identity pools, and

attribute-based access control (ABAC).

Module 4 – Data Protection & Encryption

Learn AWS Key Management Service (KMS) — CMKs, key policies, grants, and envelope encryption. Cover S3 server-side

encryption (SSE-S3, SSE-KMS, SSE-C), client-sior dedicated hardware security modules.

Module 5 – Secrets and Certificate Management

Deep dive into AWS Secrets Manager, Systems Manager Parameter Store, and AWS Certificate Manager (ACM). Learn rotation

strategies, cross-account secret sharing, and  management.

Module 6 – Network Security & Infrastructure P

Design secure VPC architectures with security groups, NACLs, VPC Flow Logs, and PrivateLink. Implement AWS WAF, Shield

Standard and Advanced, AWS Firewall Manager, aed perimeter defense.

Module 7 – DDoS Mitigation & Edge Security

Understand DDoS attack categories and how AWS Shield Advanced, CloudFront, Route 53, and Global Accelerator work together

to absorb and deflect volumetric attacks.

Module 8 – Threat Detection with Amazon GuardD

Configure GuardDuty findings, suppression rules, and multi-account management with AWS Organizations. Integrate GuardDuty

with EventBridge, Lambda, and Security Hub forows.

Module 9 – Security Logging & Monitoring

Set up comprehensive logging with CloudTrail (management and data events), CloudWatch Logs, VPC Flow Logs, and S3 server

access logs. Build security dashboards and ala

Module 10 – Amazon Macie & Data Classification

Use Macie to automatically discover and protect sensitive data (PII, financial records) in S3. Configure custom data

identifiers, findings, and automated remediati

Module 11 – Vulnerability Management with Amaz

Deploy Inspector v2 for continuous EC2 and container vulnerability scanning. Understand CVE prioritisation, integration

with ECR, and automated patching workflows usi

Module 12 – AWS Security Hub & Centralized Vis

Aggregate findings from GuardDuty, Inspector, Macie, and third-party tools into Security Hub. Configure security standards

(CIS AWS Foundations, AWS Foundational Securitutomated response workflows.

Module 13 – Incident Response on AWS

Build an incident response plan aligned to the NIST framework using AWS-native tools. Practice containment via IAM policy

revocation, EC2 isolation, snapshot forensics, techniques.

Module 14 – Compliance, Governance & Auditing

Use AWS Config rules and conformance packs to enforce compliance continuously. Cover AWS Audit Manager, AWS Artifact, and

how to demonstrate compliance for PCI-DSS, HIP

Module 15 – Securing Compute & Containers

Harden EC2 instances with Systems Manager Session Manager, patch baselines, and IMDSv2. Secure containerised workloads on

ECS and EKS with IAM roles for service account ECR image scanning.

Module 16 – Exam Strategy, Practice & Final Re

Walk through all five SCS-C02 exam domains with a structured final review, exam-day tips, question dissection strategies,

and a full-length practice session targeting t

By the end of this course you will be able to:

– Architect and implement end-to-end AWS secur

– Configure every major AWS security service with confidence

– Detect, investigate, and respond to cloud se

– Pass the AWS Certified Security – Specialty (SCS-C02) exam

Who This Course Is For:

Cloud engineers, DevOps professionals, IT security practitioners, and anyone pursuing the AWS Security Specialty

certification.

Enrol now and take the next step in your cloud

Who this course is for:

  • Cloud engineers and DevOps professionals who want to specialise in AWS security and validate their skills with the SCS-C02 certification
  • IT security professionals (CISSP, CEH, CISA) expanding into cloud security and targeting the AWS Certified Security Specialty credential
  • AWS Solutions Architects or SysOps Administrators ready to move into security roles and add a specialty certification to their profile
  • Cybersecurity students and career-changers who want a high-paying cloud security job and need a structured, exam-ready learning path.
Advertisements
D6017BB73F91389039EC
Advertisements
Advertisements
Free Online Courses with Certificates
Logo
Register New Account