The Aviatrix Certified Engineer (ACE) Multicloud Network Security Specialty training is the starting point for your cloud security education.
Course Overview
This specialty training starts by discussing how to secure the access connected from an on-premises edge location (Data Center, Colocation, SD-WAN, Branch, etc.) to the public cloud. Then, it dives into how to secure the network deployed inside the cloud. The nature of the cloud is boundary-less, flexible, constantly changing, and capable of scaling as needed. Network security needs to adapt accordingly. Security is not just another add-on feature or service; it should be distributed and integrated into the network to provide a genuine zero-trust and agile environment.
The ACE Security Specialty training covers various design patterns, including Distributed and Centralized firewalling models with Palo Alto, Check Point, Fortinet, Cisco, and more. It demonstrates the flexibility and multitude of options enterprises have, since one size does not fit all. The training takes into account the native options to implement micro-segmentation and network segmentation. It also covers the highly critical East-West, North-South, Internet Ingress, Internet Egress, and hybrid multicloud security controls.
There is a special focus on cost-saving with legacy firewall vendors’ native advanced NAT options for Egress traffic while enhancing visibility and improving security. The training ends with the Aviatrix Sandbox Starter Tool that provides students with the opportunity to put their course learnings into action.
Prerequisites
Basic knowledge of networking and security concepts is helpful but not required.
No public cloud accounts or instances are required for this course.
What You'll Learn
✅ Learn how cloud security is different than on-premises security
✅ Understand native security in the major cloud service providers (CSPs) – AWS, Azure, GCP, OCI
✅ Learn trends in security and why the model of embedded security is the key
✅ Understand the types of traffic patterns from applications and user perspectives that are possible in the cloud
✅ Cover Audit, InfoSec, governance, and compliance requirements
✅ Use important lessons learned from breaches such as Capital One and SolarWinds to understand security concerns in the cloud
Course Outline
- Introduction to Cloud Security
- Native Security in AWS
- Native Security in Azure
- Native Security in GCP
- Native Security in OCI
- Cloud Security Business Challenges
- Cloud Security Technology Fundamentals
- Protecting the Infrastructure
- Operational Visibility for Security
- Threat Intelligence (ThreatIQ)
- Threat Detection and Threat Guard
- Micro-Segmentation
- Ingress and Egress Flow Control and Deep Packet Inspection
- Change Control
- InfoSec Policies
Comprehensive Guide
View and download the ACE Security Specialty Course Comprehensive Guide
Upcoming Courses
"It's about more than a certification - The ACE Program has given me confidence in my skills to connect CSP, on-premises, and remote sites on the same data plane. I highly recommend ACE to any cloud or network professional!"