Objectives

The participant:

• Can use various tools to monitor the cloud space and avoid misconfigurations in the areas of network, identity and access management (IAM) and data security.
• Detects security incidents and rectifies them appropriately.

Content

• Recap of the BMW Cloud Security 1 Training | Threat Scenarios, CIA Model, Security Principles, Security at BMW.
• Security monitoring to prevent misconfigurations | CSP tools, security standards, Cloudroom Security Score.
• Preventing Network Access | BMW Network Architecture, Security Groups, Encryption in Transit, Encryption in Transit.
• Prevent unauthorized access | AWS IAM: Roles and permissions.
• Prevent application security issues | Security frameworks, vulnerability scans.
• Avoiding data security issues | Encrypted data storage.
• Recognizing security incidents and responding appropriately | Tools for monitoring and auditing, Cloud Security Posture Management (CSPM).
• Tips and tricks for implementation, good practices.

Target Group

• Partners with advanced cloud knowledge who want to develop a broader and deeper understanding of cloud security and AWS, regardless of a specific technical role.

Good to know

• BMW Level "Cloud Beginner".
  • XLAB - BMW Cloud Basic 1 (trainer-led or self-learning).
  • XLAB - BMW Cloud Basic 2 AWS (trainer-led or self-learning).
• XLAB - BMW Cloud Potential AWS or first practical experience with own Azure deployments.
• The ability to read and understand source code.
• Familiarity with a command line interface (e.g. Linux Bash).
• First experience with cloud resources/services.
• First experience with Terraform CLI (optional).
• Contact: cloudtrainings@bmw.de
• Prior knowledge is checked on the participant's own responsibility.