SEC595: Applied Data Science and AI/Machine Learning for Cybersecurity Professionals

Experience SANS training through course previews.
Learn MoreLet us help.
Contact usBecome a member for instant access to our free resources.
Sign UpWe're here to help.
Contact UsThe SANS SEC549 course materials are built around the fictional company, Delos International Management and its phased journey to the cloud. In course labs, students play the role of Delos Security Architects, tasked with helping them navigate their transformation into a cloud-first organization.
Delos International Management is rebuilding their network architecture to manage traffic flow throughout the enterprise. The Inspection VPC uses a hub and spoke network architecture with the AWS Transit Gateway (TGW). Inbound traffic is centralized in a single VPC hosting all Delos public IP addresses and internet gateways. The AWS Transit Gateway (TGW) inspection route table ensures all inbound, outbound, and east/west traffic is sent to an AWS Gateway Load Balancer service and through a firewall appliance. Allowed traffic is traffic is routed through the hub and spoke network to a backend service. Outbound traffic is also centralized into a single VPC hosting NAT Gateways. The firewall appliance inspects outbound traffic and restricts communications to allowed fully qualified domain name (FQDN) names.
This cheat sheet was developed by Eric Johnson to support SEC549: Cloud Security Architecture.
Kat Traxler is the Principal Security Researcher at Vectra AI focusing on threat detection in the public cloud. Prior to her current role, she worked in various stages in the SDLC performing web application penetration testing and security architecture design for Web, IAM, Payment Technologies and Cloud Native Technologies. She is the lead author of SEC549: Cloud Security Architecture.
Learn moreEric is a co-founder and principal security engineer at Puma Security focusing on modern static analysis product development and DevSecOps automation. He is co-author and instructor for three SANS Cloud Security courses.
Learn more