Generic selectors
Exact matches only
Search in title
Search in content
Post Type Selectors

Aviatrix Certified Engineer Multicloud Network Security Specialty

The Aviatrix Certified Engineer (ACE) Multicloud Network Security Specialty training is the starting point for your cloud security education.


This specialty training starts by discussing how to secure the access connected from an on-premises edge location (Data Center, Colocation, SD-WAN, Branch, etc.) to the public cloud. Then, it dives into how to secure the network deployed inside the cloud. The nature of the cloud is boundary-less, flexible, constantly changing, and capable of scaling as needed. Network security needs to adapt accordingly. Security is not just another add-on feature or service; it should be distributed and integrated into the network to provide a genuine zero-trust and agile environment.


The ACE Security Specialty training covers various design patterns, including Distributed and Centralized firewalling models with Palo Alto, Check Point, Fortinet, Cisco, and more. It demonstrates the flexibility and multitude of options enterprises have, since one size does not fit all. The training takes into account the native options to implement micro-segmentation and network segmentation. It also covers the highly critical East-West, North-South, Internet Ingress, Internet Egress, and hybrid multicloud security controls.


There is a special focus on cost-saving with legacy firewall vendors’ native advanced NAT options for Egress traffic while enhancing visibility and improving security. The training ends with a self-service hands-on lab that provides students with the opportunity to put their course learnings into action.

Course Format and System Requirements

The ACE Security Course is in a virtual, instructor-led format with lecture content, demos, and lab walkthroughs.


5 Hours

Course Objectives

  • Learn how cloud security is different than on-premises security
  • Understand native security in the major cloud service providers (CSPs) – AWS, Azure, GCP, OCI
  • Learn trends in security and why the model of embedded security is the key
  • Understand the types of traffic patterns from applications and user perspectives that are possible in the cloud
  • Cover Audit, InfoSec, governance, and compliance requirements
  • Use important lessons learned from breaches such as Capital One and SolarWinds to understand security concerns in the cloud

Intended Audience

  • Security Architects, Engineers, Operators, and Practitioners
  • Security and Network Security Directors, Influencers, and Technical Decision-Makers
  • Cloud Security Architects and Engineers


Basic knowledge of networking and security concepts is helpful but not required. 

No public cloud accounts or instances are required for this course. 

Course Outline

  • Introduction to Cloud Security
  • Native Security in AWS
  • Native Security in Azure
  • Native Security in GCP
  • Native Security in OCI
  • Cloud Security Business Challenges
  • Cloud Security Technology Fundamentals
  • Protecting the Infrastructure
  • Operational Visibility for Security
  • Threat Intelligence (ThreatIQ)
  • Threat Detection and Threat Guard
  • Micro-Segmentation
  • Ingress and Egress Flow Control and Deep Packet Inspection
  • Change Control
  • InfoSec Policies

Upcoming Trainings

The ACE certification has had a very positive impact on my career trajectory. The training has allowed me to better understand the ever-changing multicloud world which has helped me become a more effective network engineer.
Dinesh Mathiyazhagan
Cloud Networking Engineer
Software Industry