Sans Sec 549 2021 Extra Quality -
The SANS SEC549: Cloud Security Architecture course (also known as Enterprise Cloud Security Architecture) is an advanced-level training program designed to help security professionals build secure, scalable, and resilient cloud environments. While widely available in 2021 as a newer addition to the SANS cloud curriculum, it continues to focus on shifting from traditional on-premises security to cloud-native architectural patterns. Core Learning Objectives
35 Hands-On Labs: Practical exercises simulate enterprise scenarios, including threat modeling, identity federation, and centralized network inspection. sans sec 549 2021
Day 2: Infrastructure as Code (IaC) Security
This day was the heart of the course. The instructors argued: “If you manage your cloud via a console, you are doing it wrong; if you do it via code, you need to secure that code.” The SANS SEC549: Cloud Security Architecture course (also
Objective: Get AdministratorAccess in same AWS account. including threat modeling
3. Compute & Serverless
- EC2 user-data extraction (privilege escalation)
- Lambda backdoors via resource-based policies
- Azure Functions – triggering from blob events to pivot
- GCP Cloud Functions – service account impersonation