Dates: November 8-9, 2016

Times: Tuesday - 9:00am – 4:00pm
            Wednesday – 10:00am – 4:00pm

Location: Turnberry Isle Miami, 19999 W Country Club Dr, Aventura, FL 33180

AWS customers continue to labor over demonstrating their alignment with security, compliance and audit assertions in AWS customer environments. Additionally, the majority of CURRENT technology governance processes relies predominantly on administrative and operational security controls with LIMITED technology enforcement.

This workshop is designed to teach AWS Security Consultants, Practitioners and Managed Security Service Provider (MSSP) how to secure and manage regulated customer workloads in AWS. This hands-on class will focus on the security of an AWS customer account design (e.g. AWS CIS Foundation Benchmark), security architecture (e.g. AWS CIS 3-Tier Benchmark) and security automation leading practices. The result will enable consultants, practitioners, and MSSPs to securely design, architect and implement security automation in an AWS customer account, document their security governance/audit readiness and integrate AWS security partner’s solutions such as Allgress, Splunk,, CloudPassage,  CloudCheckr and Barracuda to name a few…

AWS Security Consultants, Practitioners and Managed Security Service Provider (MSSP) will learn how to design, innovate and advance Technology Governance through automation, which will effectively dominate security governance of an AWS customer account. AWS consultants practitioners and MSSP will learn how to automate security, compliance and real-time audit assertions in an AWS customer account by leveraging technology innovations and the Amazon Partner Network (APN) through Security Automation in the cloud.

  • Assimilate and leverage AWS Shared Responsibly Model, Services and Regions
  • Establish secure foundational account design and/or remediation of existing customer accounts
  • Configure and manage AWS Security ServicesConfigure, manage and AWS Security Services
  • Implement and design security automation services through AWS services and partner solutions
  • Document, manage, secure and audit the use of AWS services using real-time risk management processes
  • Leverage the shared compliance across multiple security frameworks (e.g. CJIS, NIST, ISO, PCI, etc.)
  • Learn about and leverage key security partners from the AWS Partner Network (APN)
  • AWS Security Consultants, Practitioners and Managed Security Service Provider (MSSP) that secure, audit, govern and/or test an organization’s AWS IT services.

This course is delivered through a mix of:

  • Instructor-Led Training (ILT)
  • AWS Security and DevOPS Competency Partner Demos
  • Hands-On Labs - This course allows you to test new skills and apply knowledge to your working environment through a variety of practical exercises.

Alert Logic
CloudCheckr Logo

Time Activity Presenter / Sponsor
0815 – 0900 Registration, Account Set-up and Breakfast  
  Workshop Schedule  

0900 – 0910



0910 – 0930

Overview & Introductions

Tim Sandage

0930 – 1000

Module-1 Security, Compliance and Audit in AWS

  • Shared Responsibility
  • AWS Compliance and Audit on AWS

Tim Sandage

1015 – 1045



1045 – 1115

Module-2 Foundation Leading Practices

  • Identity and Access Management (IAM)
  • Logging/Monitoring (CloudTrail, Config and CloudWatch)

Tim Sandage & Brian Tracy

1130 – 1200



1200 – 1300


1300 – 1330



1330 – 1400

Module-3 AWS Encryption Services
  • Control Framework Mapping
  • KMS, HSM and Encryption in the cloud

Tim Sandage

1410 – 1440



1440 – 1530

Hands-on Lab (AWS Foundation)


1530 – 1600



After Hours Activities


1600 – 1730

Cocktail Party


1630 – 1830

9-Hole Best Ball Golf @ The resort

Time Activity Presenter / Sponsor

0930 – 1000

  Workshop Schedule  

1000 – 1030



1030 – 1115

Module – 4 AWS Core Services
  • Amazon Elastic Compute Cloud (EC2)
  • Amazon VPC

Brian Tracy

1130 – 1200



1200 – 1230

Module 5 - AWS Security by Design
  • Modernizing Technology Governance
  • Security Automation
Tim Sandage

1230 – 1330

Presentation/Demo & Lunch


1330 – 1415

Module 6 - Designing Security IN AWS
  • CSIS 20 Critical Security Controls
  • AWS CIS Benchmarks (Foundation & 3-Tier)

Tim Sandage

1430 – 1500



1500 – 1545

Hands-on Lab


1545 – 1615

AWS Managed Service Partner Overview

Barbara Kessler

1615 – 1630

Close-out, Questions and Resources

Tim and Brian

After Hours Activities


1630 – 1930

Sponsored Party (Dinner & Drinks)

  • Miami – South Beach