Beyond individual skill development, SEC549 provides tangible business value. The course teaches students to:
The GCAD certification validates a practitioner's ability to:
, was designed to address the "scramble" many architects face when migrating to enterprise-scale cloud environments. Core Objective: Scaling Beyond "Early Adoption" sans sec 549 2021
: Addresses the technical challenges of encryption, key management, and meeting regulatory requirements within a shared responsibility model.
The course, which originated in 2021, is organized into five key sections focused on cloud security architecture perimeters: SANS Institute Identity & Accounts (Sections 1-2): The course, which originated in 2021, is organized
: Includes aggregating cloud logs from multiple platforms into centralized SIEMs like Microsoft Sentinel for cross-platform threat detection. Key Takeaways for Architects
– Between September 2021 and December 2023, Traxler authored and created the entire SEC549 course. At the time, she was a Principal Security Researcher at Vectra AI, where she had architected core detection logic for the AWS CDR product and conducted foundational research on managed identities, AI-assisted bug-hunting, and S3 ransomware. While SANS updates courses annually, the 2021 syllabus
While SANS updates courses annually, the 2021 syllabus was structured into six dense sections, typically delivered over six days of live training.
Based on course reviews from the 2021 cohort:
Inside the virtual networks, flat subnets are discouraged. Architects learn to implement zero-trust network policies using security groups and network access control lists (ACLs) to restrict traffic down to specific application ports and protocols. Architectural Pillar 4: DevSecOps and Continuous Compliance