Learn the basics
This document is not intended to “teach” anything specifically, instead it lays out my personal framework for systematically learning important concepts. This is the order and content I read while studying… There are 1000’s of nested pages of architecture and developer guides to sift though and it can easily become a rabbit hole…
I follow a simple principle, write down all the things you don’t know and assume and then go learn learn and validate them …
Currently porting over some old study guides and notes, this page is still work in progress while I find time to port my notes …
know what you don’t know – KWYDK
where are GCP locations, regions and zones
- https://docs.aws.amazon.com/whitepapers/latest/aws-overview/global-infrastructure.html
- https://docs.aws.amazon.com/whitepapers/latest/fault-tolerant-components/aws-global-infrastructure.html
- https://aws.amazon.com/about-aws/global-infrastructure/regions_az/
- https://aws.amazon.com/about-aws/global-infrastructure/regional-product-services/?p=ngi&loc=4
- https://aws.amazon.com/wavelength/features/
- https://aws.amazon.com/about-aws/global-infrastructure/localzones/?p=ngi&loc=3
basic building blocks of AWS
- https://docs.aws.amazon.com/whitepapers/latest/aws-overview/introduction.html
- https://aws.amazon.com/architecture/well-architected/?achp_wa1&&wa-lens-whitepapers.sort-by=item.additionalFields.sortDate&wa-lens-whitepapers.sort-order=desc#AWS_Well-Architected_and_the_Five_Pillars
how are you billed in AWS
what internal security does AWS have (Not the cloud offerings)
- https://docs.aws.amazon.com/whitepapers/latest/introduction-aws-security/introduction-aws-security.pdf
- https://d1.awsstatic.com/whitepapers/compliance/AWS_Risk_and_Compliance_Whitepaper.pdf
- https://aws.amazon.com/financial-services/case-studies/
what enterprise organizations should learn first
- https://d1.awsstatic.com/whitepapers/aws_cloud_adoption_framework.pdf
- https://aws.amazon.com/executive-insights/cloud-strategy/
- https://aws.amazon.com/manufacturing/case-studies/
what do smaller organizations learn first
how are identities managed in AWS
- https://docs.aws.amazon.com/IAM/latest/UserGuide/best-practices.html
- https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_providers.html
- https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_providers_saml_3rd-party.html
- https://aws.amazon.com/blogs/security/aws-federated-authentication-with-active-directory-federation-services-ad-fs/
resource hierarchy and access control
- https://docs.aws.amazon.com/whitepapers/latest/cost-optimization-laying-the-foundation/aws-account-structure.html
- https://aws.amazon.com/blogs/mt/best-practices-for-organizational-units-with-aws-organizations/
- https://aws.amazon.com/blogs/industries/defining-an-aws-multi-account-strategy-for-telecommunications-companies/
- https://docs.aws.amazon.com/organizations/latest/userguide/orgs_getting-started_concepts.html
- https://levelup.gitconnected.com/the-quick-lowdown-on-aws-organizations-c55775bf45f9
- https://docs.aws.amazon.com/organizations/latest/userguide/orgs_permissions_overview.html
how are users authenticated to the platform?
- https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_providers_saml_3rd-party.html
- https://docs.aws.amazon.com/AmazonS3/latest/userguide/RESTAuthentication.html
- https://docs.aws.amazon.com/cli/latest/reference/configure/
how is authorization handled in AWS?
- https://docs.aws.amazon.com/IAM/latest/UserGuide/best-practices.html
- https://docs.aws.amazon.com/IAM/latest/UserGuide/introduction_access-management.html
- https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_examples.html
- https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_identity-vs-resource.html
- https://docs.aws.amazon.com/IAM/latest/UserGuide/introduction_attribute-based-access-control.html
how do you connect to/from AWS vpc and services?
- https://docs.aws.amazon.com/directconnect/latest/UserGuide/Welcome.html
- https://docs.aws.amazon.com/vpc/latest/userguide/vpn-connections.html
- https://docs.aws.amazon.com/whitepapers/latest/aws-vpc-connectivity-options/amazon-vpc-to-amazon-vpc-connectivity-options.html
how do you connect within AWS vpC?
- https://docs.aws.amazon.com/whitepapers/latest/aws-vpc-connectivity-options/vpc-peering.html
- https://docs.aws.amazon.com/whitepapers/latest/aws-vpc-connectivity-options/aws-privatelink.html
- https://aws.amazon.com/blogs/architecture/one-to-many-evolving-vpc-design/
what are the core security options within AWS?
- IAM
- Encryption
- Logging
- Ddos protection
- Configuration Management
- Vulnerability Management
what are common / popular services i should dig into next?
- https://docs.aws.amazon.com/toolkit-for-visual-studio/latest/user-guide/vpc-tkv.html
- https://docs.aws.amazon.com/route53/?id=docs_gateway
- https://docs.aws.amazon.com/cloudfront/?id=docs_gateway
- https://docs.aws.amazon.com/ec2/?id=docs_gateway
- https://docs.aws.amazon.com/rds/?id=docs_gateway
- https://docs.aws.amazon.com/s3/?id=docs_gateway
what are some third party security technologies?
- https://www.g2.com/categories/cloud-compliance?utf8=%E2%9C%93&order=g2_score
- https://www.gartner.com/smarterwithgartner/top-actions-from-gartner-hype-cycle-for-cloud-security-2020/
@secSandman 