Aviatrix Certified Engineer Multicloud Network Security Specialty

The Aviatrix Certified Engineer (ACE) Multicloud Network Security Specialty training is the starting point for your cloud security education.

This specialty training starts by discussing how to secure the access connected from an on-premises edge location (Data Center, Colocation, SD-WAN, Branch, etc.) to the public cloud. Then, it dives into how to secure the network deployed inside the cloud. The nature of the cloud is boundary-less, flexible, constantly changing, and capable of scaling as needed. Network security needs to adapt accordingly. Security is not just another add-on feature or service; it should be distributed and integrated into the network to provide a genuine zero-trust and agile environment.

The ACE Security Specialty training covers various design patterns, including Distributed and Centralized firewalling models with Palo Alto, Check Point, Fortinet, Cisco, and more. It demonstrates the flexibility and multitude of options enterprises have, since one size does not fit all. The training takes into account the native options to implement micro-segmentation and network segmentation. It also covers the highly critical East-West, North-South, Internet Ingress, Internet Egress, and hybrid multicloud security controls.

There is a special focus on cost-saving with legacy firewall vendors’ native advanced NAT options for Egress traffic while enhancing visibility and improving security. The training ends with a self-service hands-on lab that provides students with the opportunity to put their course learnings into action.

Course Format and System Requirements

The ACE Security Course is in a virtual, instructor-led format with lecture content, demos, and lab walkthroughs.

Duration

5 Hours

Course Objectives

• Learn how cloud security is different than on-premises security
• Understand native security in the major cloud service providers (CSPs) – AWS, Azure, GCP, OCI
• Learn trends in security and why the model of embedded security is the key
• Understand the types of traffic patterns from applications and user perspectives that are possible in the cloud
• Cover Audit, InfoSec, governance, and compliance requirements
• Use important lessons learned from breaches such as Capital One and SolarWinds to understand security concerns in the cloud

Intended Audience

• Security Architects, Engineers, Operators, and Practitioners
• Security and Network Security Directors, Influencers, and Technical Decision-Makers
• Cloud Security Architects and Engineers

Prerequisites

Basic knowledge of networking and security concepts is helpful but not required. 

No public cloud accounts or instances are required for this course. 

Course Outline

• Introduction to Cloud Security
• Native Security in AWS
• Native Security in Azure
• Native Security in GCP
• Native Security in OCI
• Cloud Security Business Challenges
• Cloud Security Technology Fundamentals
• Protecting the Infrastructure
• Operational Visibility for Security
• Threat Intelligence (ThreatIQ)
• Threat Detection and Threat Guard
• Micro-Segmentation
• Ingress and Egress Flow Control and Deep Packet Inspection
• Change Control
• InfoSec Policies

Comprehensive Guide

View and download the ACE Security Specialty Course Comprehensive Guide