Hello, my name is Danny Jessee, and I'm the AWS Content Lead here at QA. Feel free to contact me with any questions using the details shown on the screen. Alternatively, you can always get in touch with us by sending an email to platformsupport@qa.com, where one of our cloud experts will reply to your question.

This course has been designed to provide you with the knowledge and skills required to help you answer the following question from the Security Pillar of the AWS Well-Architected Framework: 'How do you incorporate and validate the security properties of applications throughout the design, development, and deployment lifecycle?' To help answer this question for our own workloads, we must dive deeper into the framework itself. You can do this within the appendix of the AWS Well-Architected Framework documentation found here. This guide will highlight the implementation steps recommended by AWS.

Section 11, 'How Do You Incorporate and Validate the Security Properties of Applications Throughout the Design, Development, and Deployment Lifecycle?' This section of the AWS Well-Architected Framework is broken down into eight different best practice subsections, each defining multiple recommendations. These best practices are as follows: train for application security; automate testing throughout the development and release lifecycle; perform regular penetration testing; conduct code reviews; centralise services for packages and dependencies; deploy software programmatically; regularly assess security properties of the pipelines; and build a program that embeds security ownership in workload teams.

Based on these AWS Well-Architected Framework best practices, this course has been curated to provide you with a path of recommended content, including lessons and labs, to help you adhere to these security actions. This course should be used as a knowledge guide for the services and features discussed and in conjunction with the official AWS Well-Architected Framework, which details the recommendations put forward by AWS within each best practice.

Upon completion of this course, you'll have the knowledge and understanding needed to identify potential security weaknesses and vulnerabilities relating to Section 11, plan proposals relating to Section 11 to enable you to adhere to best practices, and implement environment changes based on your proposals. Please note that this course only focuses on Section 11, which forms a small section of the overall Security Pillar.

There are ten other sections within this Pillar which will help you answer the following questions. Section 1, 'How do you securely operate your workload?'; Section 2, 'How do you manage authentication for people and machines?'; Section 3, 'How do you manage permissions for people and machines?'; Section 4, 'How do you detect and investigate security events?'; Section 5, 'How do you protect your network resources?'; Section 6, 'How do you protect your compute resources?'; Section 7, 'How do you classify your data?'; Section 8, 'How do you protect your data at rest?'; Section 9, 'How do you protect your data in transit?'; and Section 10, 'How do you anticipate, respond to and recover from incidents?'

Thanks for watching, now let's dive in. Please be sure to leave a rating for this introduction, and best of luck on your Well-Architected journey.

AWS WAF - Security Pillar SEC 11 - How do you incorporate and validate the security properties of applications throughout the design, development, and deployment lifecycle?

About

Intended Audience