This lesson introduces the AWS Data Protection services relevant to the AWS Certified Security - Specialty (SCS-C02) exam.
Want more? Try a lab playground or do a Lab Challenge!
Learning Objectives
- Describe authorization controls in Amazon S3
- Understand how to find sensitive data in S3 buckets using Amazon Macie
- Define the AWS Key Management Service (KMS)
- Explain how to secure access to KMS keys and share KMS keys across multiple accounts
- Understand how to manage encryption keys on dedicated hardware using CloudHSM
- Describe how to share secrets between multiple accounts using AWS Secrets Manager
- Explain how AWS Certificate Manager may be used to manage public and private SSL certificates