Data Protection (SCS-C02)

This lesson introduces the AWS Data Protection services relevant to the AWS Certified Security - Specialty (SCS-C02) exam.

Want more? Try a lab playground or do a Lab Challenge!

Learning Objectives

• Describe authorization controls in Amazon S3
• Understand how to find sensitive data in S3 buckets using Amazon Macie
• Define the AWS Key Management Service (KMS)
• Explain how to secure access to KMS keys and share KMS keys across multiple accounts
• Understand how to manage encryption keys on dedicated hardware using CloudHSM
• Describe how to share secrets between multiple accounts using AWS Secrets Manager
• Explain how AWS Certificate Manager may be used to manage public and private SSL certificates