Online Project Certificate in Multi Cloud Network Architecture (AWS, GCP, Azure)

Learn Multi Cloud Network Architecture and gain technical design expertise in AWS, GCP and Azure Cloud Network Services.

Pre-order now

Our self paced online course would suit professionals who want to develop Architecture expertise for the following types of Cloud Security Transformation Projects:

On Premise and Public Cloud Network Service Integration to Support, Cybersecurity and Vulnerability Management projects for Security Scanning and hosting third party Vulnerability Scanning solutions
AWS, Azure and GCP Cloud Network Integration for creating Machine Learning, Data Mining, Security Scanning, Artificial Intelligence Data assets for Threat Intelligence
Hybrid AWS, GCP, Azure Cloud Integration between IaaS, PaaS, and SaaS integration across third party, on premise and legacy network environments
Migration of legacy infrastructure across, GCP, AWS and Azure Cloud Infrastructure
AWS, GCP and Azure Container Scanning of Cloud Infrastructure, Application and Data Asset within on premise environment to identify Security Vulnerabilities
Deployment of Security Testing Tools such as Checkmarx, Tenable IO, Nessus, Aquasec, Netsparker etc within a Multi Cloud environment to perform, Mobile, Infrastructure, Application Security Testing
Cloud Security Native Scanning of On premise AWS, GCP, Azure Container Registries to identify CVE Vulnerabilities and develop Threat Intelligence and Risk Scoring

Multi Cloud Solution Network Architecture Expertise Upskill

Are you experiencing any of the following blockers in your Architecture career ?

Technical Design Authorities and project politics have blocked your previous solution design work and you want to upskill with a superior skillset, knowledge, and expertise?
You lost your Architecture contract due to not having enough Cloud design or subject domain expertise in Kubernetes and Containers ?
Are you moving into a AWS, Azure, and GCP Cloud Architecture role but have no experience in delivering the Project Design Deliverables for Network Design ?
Are you seeking cloud multi cloud project experience in how to produce a Cloud Architecture Design Documentations?
You want to gain specialised expertise on AWS, GCP and Azure Networking, gain hands on project deliverable experience so you can hit the ground running as a contractor or consultant ?
You want to upskill into AWS, GCP and Azure Architecture projects roles but what practical delivery experience of that Niche ?
You have many Architecture Certifications and Training but want direct hands on experience of producing Multi Cloud Architecture Documentations that mirror the actual requirements for Cloud Security Transformation projects.
Your a generalist Solutions Architect but want to gain specialized domain networking knowledge in AWS, GCP and Azure Cloud Environments.
You have completed accredited certifications but don't have any direct hands Architecture experience when it comes to completing Architecture Design Documentations ?
Your a Multi faceted IT Solution Architect contractor and want to immediately capitalise on the high market demands/£ daily rates ? and seeking a faster turnaround on upskilling and learning
You get no project practical value from doing accredited training which simply test your knowledge based on exams and give no project experience?

Our project based training can help address all of the above blockers and fast track your learning and design capabilities and help you get your design documentations over the fence.

What You Will Learn

AWS, GCP, Azure Networking Fundamentals with particular emphasis on the following domains:

Technical Mastery of AWS, Azure, GCP Foundational Networking Concepts
GCP Network Architecture comprising of VPCs, High availability, failover, and disaster recovery strategies, DNS strategy (e.g., on-premises, Cloud DNS), Security and data exfiltration requirements,Load balancing Hybrid connectivity, Container networking, IAM roles, SaaS, PaaS, and IaaS services, Microsegmentation for security purposes (e.g., using metadata, tags, service accounts)
Designing GCP Virtual Private Cloud (VPC) instances, considerations include, IP address management and bring your own IP (BYOIP) Standalone vs. Shared VPC, Multiple vs. single, Regional vs. multi-regional, VPC Network Peering, Firewalls (e.g., service account-based, tag-based) Custom routes. Using managed services (e.g., Cloud SQL, Memorystore).
Designing GCP hybrid and multi-cloud network, considerations include ; Dedicated Interconnect vs. Partner Interconnect, Multi-cloud connectivity , Direct Peering, IPsec VPN, Failover and disaster recovery strategy, Regional vs. global VPC routing mode, Accessing multiple VPCs from on-premises locations (e.g., Shared VPC, multi-VPC peering topologies), Bandwidth and constraints provided by hybrid connectivity solutions, Accessing Google Services/APIs privately from on-premises locations, IP address management across on-premises locations and cloud, DNS peering and forwarding
Designing Google Kubernetes Engine clusters, considerations include ; VPC-native clusters using alias IPs , Clusters with Shared VPC , Creating Kubernetes Network Policies, Private clusters and private control plane endpoints, Adding authorized networks for cluster control plane endpoints
GCP Designing firewall rules, considerations include; Target network tags and service accounts, Rule priority, Network protocols, Ingress and egress rules, Firewall rule logging, Firewall Insights, Hierarchical firewalls
GCP Designing VPC Service Controls, considerations include: Creating and configuring access levels and service perimeters, VPC accessible services, Perimeter bridges, Audit logging, Dry run mode
Designing GCP load balancing, considerations include, Backend services and network endpoint groups (NEGs), Firewall rules to allow traffic and health checks to backend services, Health checks for backend services and target instance groups, Configuring backends and backend services with balancing methods, session affinity, and capacity scaling/scaler, TCP and SSL proxy load balancers, Load balancers (e.g., External TCP/UDP Network Load Balancing, Internal TCP/UDP Load Balancing, External HTTP(S) Load Balancing, Internal HTTP(S) Load Balancing), Protocol forwarding, Accommodating workload increases using autoscaling vs. manual scaling
Designing GCP Cloud Armor policies, considerations include: Security policies, Web application firewall (WAF) rules (e.g., SQL injection, cross-site scripting, remote file inclusion), Attaching security policies to load balancer backends
Designing GCP Hybrid Cloud Services, considerations include Hybrid Connectivity, Cloud CDN, Cloud DNS, Cloud NAT, and Multi Packet Network Inspection Services, and Managing, monitoring, and optimizing network operations

What You Will Learn

Gain Technical Mastery in AWS, GCP, Azure Networking Services

Designing AWS Networking Services considerations include ,API Gateway, App Mesh, Client VPN, AWS Cloud Map ,Amazon CloudFront ,AWS Direct Connect, Elastic Load Balancing, Global Accelerator, PrivateLink, Amazon Route 53 , AWS Site-to-Site VPN, AWS Transit Gateway. Amazon VPC
Designing AWS Serverless Services, considerations include: EventBridge (Amazon CloudWatch Events,Fargate, Lambda, Amazon Simple Notification Service (Amazon SNS),Amazon Simple Queue Service (Amazon SQS)Amazon Simple Storage Service (Amazon S3)
Design Security, identity, and compliance services considerations include: Firewall Manager, Identity and Access Management (IAM) Network Firewall, Resource Access Manager (AWS RAM, Shield, WAF
Designing AWS Container Services, considerations include, Elastic Container Registry (Amazon ECR), Elastic Container Service (ECS), Elastic Kubernetes Service (EKS), Fargate
Designing Azure Security Services, considerations include Firewall, Network Security Groups, Application Firewall, Private Link and Endpoints, Service Endpoints and monitor Networks
Designing Azure routing services, considerations include Secure and Monitor, Networks, Private Access to Azure services,
Designing Azure Network Services, considerations include site to site VPN, point to site VPN, Express Route, Virtual Networks, cross V=Net Connectivity, Virtual WAN, Virtual Networking Routing, Application Gateway, Front Door, Virtual Network NAT, and Load Balancer

Core Business Takeways

Corporate employees will be able to bring the following direct benefit realizations to Cyber Security and Vulnerability Management related IT projects

Develop Solutions Designs for AWS, GCP and Azure Cloud Transformation Projects
Hands on experience in completing Solution Design Documents with AWS, GCP, Azure Network Designs
Technical Subject Matter Expertise in AWS, Azure and GCP Networking Technologies
Practical experience and understanding of developing Hybrid and On Premise Cloud Network Integration Designs
Provide Guidance to Testing, Cloud Development on implementation and deployment of Azure, GCP and AWS Networking Solutions
Multi Faceted Cloud Solution Expertise on AWS, GCP and Azure Cloud Services
Technical Mastery in AWS, GCP and Azure Networking Foundational Concepts
Establish Architecture Roadmap for Cybersecurity and Vulnerability Management projects for deployment of AWS, GCP and Azure Paas, IaaS and SaaS services

Who Should Enroll

This is a project based online training programme that is aimed for experienced Architects who want to develop multi faceted expertise towards Cybersecurity and Vulnerability Management projects in a AWS Cloud Environment.

Cloud Architects, Solution Architects, Network Security Architects, or Cybersecurity Architects who need to complete a High Level or Low Solution Design Document and gain design approvals from Technical Design Authorities or Cloud Architecture Boards within the Work place for AWS Cloud Projects

How We Examine

Award Certification

You will complete and submit a Project Deliverable - High Level Solution Design Document based on a AWS Project Case study related to financial services or banking. You will also submit a supporting Business Case Slide Deck that provides an overview of your Solution Design. Your Slide Deck must be supported by a Recorded Video or Audio file and aligns to the scope of your proposed Architecture solution. You will be given a set of functional, non functional and business requirements that will form part of your design scope and business scope. This project work and Slide deck submission mirrors what is often expected by Solution and Cloud Architects as critical path for submitting design work for a project in a DevOps/Agile/Waterfall or SSDL project lifecycle environment.

Course curriculum

1. 1.2 Virtual Machines in the Cloud
2. 1.3 GCP Cloud Containers
1. 2.0 Designing, Planning GCP Network
2. 2.1 Designing Network Architecture
3. 2.2 Designing VPC
4. 2.3 Designing Hybrid Network
5. 2.4 Designing Hybrid Network
6. 2.5 Designing Container IP Addressing for GKE
1. 3.0 Configuring VPC Networks
2. 3.1 Configuring Static and Dynamic Routing with Cloud Router
3. 3.2 Configuring VPC Peering
4. 3.3 Configuring Shared VPC
5. Unit 3.4 NAT in GCP
1. 4.0 Configuring Load Balancing
2. 4.1 Configuring Cloud Content Delivery
1. Unit 5.0 Configuring Interconnect
2. Unit 5.1 Configuring Site to Site IPSec VPN
3. Unit 5.2 Cloud Router Configuration
1. 6.0 Configuring Identity and Access Management (IAM)
2. 6.1 Configuring Cloud Armour Security Policies
3. 6.2 Configuring Third Party Software Device (NGFW) insertion into VPC
4. 6.3 Implementing Routes and Firewall Rules in Multi NIC Environment
1. 7.0 Logging and Monitoring with GCP Operations
2. 7.1 VPC Flow Logs
3. 7.2 Firewall Rules Logging
4. 7.3 VPC Audit Logs
5. 7.4 Packet Mirroring
1. 8.0 Google Cloud Traffic Director
2. 8.1 Istio and Service Mesh
3. 8.2 Configuring GCP Service Directory
4. 8.3 Configuring Service Directory and DNS
5. 8.4 Hub and spoke Networks with Network Connectivity Center
1. 9.0 Design, Implement and Management Hybrid Networking
2. 9.1 Design, implement and manage a site to site VPN Connection
3. 9.2 Design, implement point to site VPN Connection
1. 10.0 Design and Implement Private IP Addressing for Virtual Networks
2. 10.1 Design and Implement Name Resolution
3. 10.2 Design and Implement Cross VNet Connectivity
4. 10.3 Design and Implement Azure WAN Architecture
1. 11.0 Design, Implement and Manage Virtual Network Routing
2. 11.1 Design and Implement an Azure Load Balancer
3. 11.2 Design and implement Azure Application Gateway
4. 11.3 Implement Azure Front Door
5. 11.4 Implement Azure Traffic Manager
6. 11.5 Design and Implement Azure Virtual Network NAT
1. 12.0 Design, Implement and Azure Firewall
2. 12.1 Implement and Manage Network Security Groups (NSGs)
3. 12.2 Implement Web Application Firewall (WAF)
4. 12.3 Monitor Networks
1. 13.0 Design and Implement Azure Private Link Service and Private Endpoints.
2. 13.1 Design and Implement Service Endpoints
3. 13.2 Configure VNet Integration for PaaS
1. 15.0 Introduction Virtual Private Cloud (AWS)
2. 15.1 Subnets, Route Tables, IP Addressing and Security Groups
3. 15.3 Network Access Control Lists
4. 15.4 Internet Gateways, Network Address Translation
5. 15.5 Egress Only Internet Gateways (EIGWs), VPN Gateways,
6. 15.6 VPN Endpoints, VPC Peering,
1. 16.0 VPN Networking
2. 16.1 VPC Endpoints, Gateway Endpoints, Interface VPC Endpoints
3. 16.2 Transitive Routing, IP Addressing,
4. 16.3 Site to Site VPN
5. 16.4 Client to Site VPN
6. 16.5 Design Patterns
1. 17.0 AWS Direct Connectivity Services
2. 17.1 Physical Logical Connectivity
3. 17.2 Resilient Connectivity
4. 17.3 Introduction to Virtual Private Networks
5. 17.4 Site to Site VPN
6. 17.5 Client to Site VPN
7. 17.6 VPN Design Patterns
1. 18.0 Application/Network Load Balancing Services
2. 18.1 EC2 DNS EC2 DNS
3. 18.2 Amazon Route S3
4. 18.3 Elastic Load Balancing
1. 19.0 Introduction to Cloud Front
2. 19.1 Content Delivery Network
3. 19.2 AWS CDN- Cloud Front
4. 19.3 AWS Security Services
5. 19.4 Data Flow Security
6. 19.5 Detection and Response/Governance
1. 20.0 Network Performance Monitoring Services
2. 20.1 AWS EC2 Instance Network Features
3. 20.2 NAT Gateways
4. 20.3 VPN Network Performance
5. 20.4 Amazon Elastic Compute Cloud EC2
1. 21.0 Multi Region Network Automation /NetDevOps
2. 21.1 Infrastructure As Code
3. 21.2 Network Monitoring Tools
1. 22.0 Introduction to Service Requirements
2. 22.1 Elastic Network Interface
3. 22.2 Cloud Services- Network Requirements
4. 22.3 AWS EMR Requirements
5. 22.4 AWS Relational Database Service (RDS)
6. 22.5 AWS Redshift
7. 22.6 AWS Glue, Elastic Beanstalk
1. 23.0 Introduction to Hybrid Architecture
2. 23.1 Application Architectures
3. 23.2 VPC Endpoints/ AWS Direct Connect
4. 23.3 Transitive Routing Hybrid IT
1. 24.0 Introduction to Network Troubleshooting
2. 24.1 Methodology for Troubleshooting
3. 24.2 Network Troubleshooting Tools/Scenarios
1. 25.0 Threat Modelling
2. 25.1 Network Management/Ownership
3. 25.2 Controlling Access /Encryption Options
4. 25.3 Network Monitoring
5. 25.4 Penetration Testing/ Vulnerability
1. 26.0 Introduction to Scenarios and Reference Architectures
2. 26.1 Hybrid Networking Scenario
3. 26.2 Multi Location Resiliency

About this course

$199.00
111 lessons

Discover your potential, starting today

Enroll today

FAQ

How do I study this course

You study this course online at your own self pace and decide if you want to pursue it part time or full time.
How long do I have to finish this course

You have up to 6 months to finish this course
When should the Project Work be Submitted

You have up to 2 months to complete the project Work and the Slide Deck submission
Do you have a course refund policy

Yes we have a 7 days course refund policy
What are the course materials like ?

The course materials consist of Online Course Notes, Supporting Videos and Audio files.
Do I have direct trainer support

Yes you can reach out to trainers directly
Do you deliver classroom training for this course

Not at the moment,
How long should the Video or Audio Recordings should be for the Project submission

Either Video or Audio recordings can be of at least minimum 5 mins and up to 30 mins
Do I have to submit both Recorded Video and Audio File

No, you only submit one.

What is course quality like

We are a CPD Supplier so our course quality aligns to all relevant AWS best practices and Industry standards.
Where are you based

We are based in the UK
Do you offer online training for corporate employees

yes
Do you provide the Document Template for the High Level Solution Design Document

Yes
How is the Project Work marked ?

They are marked as either as a pass or a fail. Our trainers are working IT contractors in the UK Banking sector and will judge your project submissions based on Detailed Designs of the Architecture Modells, Quality and Integrity of the Solution Designs in the Solution Design Document. Guidance will be provided how to complete this critical path document.

Defence Cyber School (UK)