What's included

• Half day of hands-on labs
• Up to 10 participants
• IAM best practices and least-privilege design
• Network security and segmentation strategies
• Encryption at rest and in transit
• Compliance automation with AWS Config and SCPs
• Security monitoring and alerting setup
• Incident response basics and runbook design
• Course materials included

Who is this for?

This workshop is aimed at engineers and DevOps practitioners who build and maintain cloud infrastructure but want to strengthen their security knowledge. It is especially relevant for teams that do not have a dedicated security function and where engineers are expected to make security decisions as part of their day-to-day work. It is also a strong fit for organisations preparing for compliance certifications (ISO 27001, SOC 2, Cyber Essentials) who want their engineering team to understand the practical controls that underpin those frameworks. Participants should have some experience working with AWS.

How it works

The session is delivered remotely over half a day and is structured around real-world scenarios rather than abstract theory. Your team will work through hands-on labs covering IAM policy design, VPC security group configuration, encryption setup, and compliance automation using AWS Config rules and service control policies. The session also covers how to set up security monitoring and alerting, and how to design basic incident response runbooks so your team knows what to do when something goes wrong. All course materials are provided afterwards for reference.