AWS Certified Security – Specialty (SCS-C01)

The AWS Certified Security – Specialty (SCS-C01) is a certification offered by Amazon Web Services (AWS) intended for individuals who perform a security role with at least two years of hands-on experience securing AWS workloads.

This certification exam generally covers the following domains:

1. Incident Response: 12%
2. Logging and Monitoring: 20%
3. Infrastructure Security: 26%
4. Identity and Access Management: 20%
5. Data Protection: 22%

Here’s a brief description of each domain:

1. Incident Response: It tests your ability to assess and troubleshoot incidents, conduct investigations, and interpret and take action on AWS abuse notices.
2. Logging and Monitoring: This domain tests your ability to design and implement security monitoring and alerting and implement and manage AWS logging services.
3. Infrastructure Security: Knowledge in this domain involves the ability to design and implement a secure network infrastructure and to manage the security of the infrastructure.
4. Identity and Access Management: Here you’ll need to design and implement a secure access management strategy and understand the tools and techniques necessary for managing access to AWS.
5. Data Protection: In this domain, you’re tested on your ability to design and implement data protection strategies and encryption mechanisms.

It’s recommended that candidates for this exam have familiarity with AWS services, a deep understanding of security controls for workloads on AWS, and knowledge of security operations and risk.

The certification process involves a multiple-choice, multiple-answer exam. You can take the exam at a testing center or from the comfort and convenience of a home or office location as an online proctored exam.