Managing and Remediating Findings in Amazon GuardDuty
This course looks at how to collate and manage findings from multiple AWS accounts with Amazon GuardDuty. Amazon GuardDuty is a regionally based, intelligent, threat-detection service which will monitor unusual and unexpected behavior.
By the end of this course, you will be able to implement, manage and monitor your own Amazon GuardDuty findings across your own accounts through the analysis of AWS CloudTrail event logs, VPC flow logs, and DNS logs.
This course has been created for security operations engineers and architects who focus on monitoring and assessing threats to their AWS environment. I will explain the process and method in how to achieve this using Amazon GuardDuty in addition to a demonstration of its configuration
To get the most from this course you should be familiar with basic concepts of Amazon GuardDuty. For more information on this service, please see our existing course here: Understanding Amazon GuardDuty