A hands-on, zero-cost execution plan to go from beginner to Cloud Security Engineer. Master IAM, Network Defense, and Compliance without spending a dime.
A fresh AWS account is recommended to utilize the 12-month Free Tier eligibility.
Comfort with command line (bash), SSH, and basic file permissions (`chmod`, `chown`).
Understanding of IP addresses, Ports (22, 80, 443), and CIDR notation (e.g., /16 vs /24).
Disclaimer: While this roadmap focuses on Free Tier services, you are responsible for your own AWS bill. Always set up Billing Alarms (covered in Week 1). ChintuCyberVentures is not liable for costs incurred. Use cloud resources ethically.
Aligned with AWS Certified Security - Specialty (SCS-C02)
Combine networking, identity, encryption, and monitoring into a single production-grade deployment.
Completing this capstone demonstrates proficiency in Domain 1 (Threat Response), Domain 3 (Infrastructure Security), and Domain 4 (Identity & Access Management) of the AWS Security Specialty Exam.
Yes, the roadmap is designed specifically around the AWS Free Tier (12 months free for new accounts). However, you must monitor your usage. Some resources (like NAT Gateways or Route53 hosted zones) are not free, and this guide provides free alternatives or warns you to delete them immediately.
You should have basic IT knowledge (what is an IP address, how to use a terminal). If you have zero IT background, we recommend spending a week on "CompTIA Network+" fundamentals before starting Month 1.
This is a self-paced roadmap, not an official AWS course. Completion gives you the skills to pass the AWS Certified Security - Specialty (SCS-C02), but you must book and pay for the exam separately via AWS.
Scroll to the footer and click the "Reset All Progress" link. Warning: This cannot be undone.