🎁Summer IT — 5% off all our courses all summer long.Get the offer →
Built for US teams
Payment by wire transferEnhanced confidentialityPerfect for companies with 50 to 500 employeesScheduling to fit any time zone

1 seat held for the next session

30:00Held for another

Request a call back and an advisor reaches you within 24 business hours, Monday to Saturday.

← Back

Training AWS WAF - Securing Web Applications Against Cyberattacks

Ref: JWN281
10 people max.
From $5,775 HT / per person
On-site on request · +$540 with certification exam
5 days
Remote

Share in 2 clicks

Trusted by — schools, companies and industrial groups
Aptar
ArcelorMittal
Equans
EDF
Ubisoft
Microsoft
Aptar
ArcelorMittal
Equans
EDF
Ubisoft
Microsoft
Aptar
ArcelorMittal
Equans
EDF
Ubisoft
Microsoft
Aptar
ArcelorMittal
Equans
EDF
Ubisoft
Microsoft
Aptar
ArcelorMittal
Equans
EDF
Ubisoft
Microsoft
Aptar
ArcelorMittal
Every program built with a dedicated engineer
OpenAI
Anthropic
Mistral AI
NVIDIA
Google
Amazon Web Services
Microsoft Dynamics 365
Salesforce
ServiceNow
SAP
Oracle
Cisco
Fortinet
Palo Alto Networks
Aruba
VMware
Red Hat
Databricks
Snowflake
OVHcloud
Notion
AMD
Apple
OpenAI
Anthropic
Mistral AI
NVIDIA
Google
Amazon Web Services
Microsoft Dynamics 365
Salesforce
ServiceNow

Learning objectives

  • Master AWS WAF to protect enterprise web applications
  • Develop custom rules against SQLi and XSS attacks
  • Configure rate limiting and certified bot management protections
  • Integrate AWS WAF with CloudFront and API Gateway for advanced skills
  • Analyze logs and metrics to optimize professional security
  • Deploy AWS WAF in production with high availability
  • Implement best practices for GDPR compliance in enterprise
A child walking to school with a backpack
Our social commitment

A school kit donated to a child for every training

To fight inequalities in access to education, Learni donates a complete school kit to a child in need for every training booked. You build your skills, a child heads back to school.

  • Backpack, notebooks and essential supplies
  • Distributed through our partner charities
  • Included, at no extra cost to you

The Learni story

Founded by engineers and learning experts, Learni's mission is to make high-impact tech training accessible to teams everywhere. We work remotely with organizations across the US and Canada, in your time zone, to help teams upskill fast.

Don't let this gap widen

Why this program matters

  • Without this upskilling, your team accumulates a technological gap that translates directly into productivity loss.

  • Organizations that don't train their talents on key topics see their competitiveness drop.

  • Every quarter without training is a gap widening with competitors who invest.

  • The cost of inaction quickly exceeds that of well-targeted training.

Imed BEN AMOR
Imed BEN AMOR

Learni trainer · Development expert

73%productivity gap
×3cost of inaction

Program

Module 1AWS WAF Fundamentals: Initial Setup and Managed Rules (AWS Console, Web ACL)

Dive into AWS WAF installation via the AWS Console and AWS CLI, create your first Web ACLs associated with ALB and CloudFront, explore managed rules to block SQL injections, XSS, and bad bot attacks, perform practical exercises on a simulated enterprise environment, test impacts with tools like Burp Suite, produce an initial protection report, and configure rule priorities for immediate and effective security.

Module 2Custom AWS WAF Rules: Rate Limiting and Geoblocking (Regex Expressions, String Matching)

Design custom AWS WAF rules to counter DDoS via rate-based rules, implement advanced matchers like regex and geo-match to restrict suspicious IPs, apply exercises on real API abuse cases, integrate custom headers for enhanced authentication, simulate attacks with Python scripts, generate CloudWatch alerts, and optimize thresholds to minimize false positives while protecting critical production applications.

Module 3AWS WAF Integration: CloudFront, ALB, and API Gateway (Origins, Forwarding Rules)

Integrate AWS WAF with CloudFront for global edge security, configure multiple associations with Application Load Balancers and API Gateway, migrate an existing site to full WAF protection, practice labs on hybrid multi-region architectures, test real-time rule propagation, analyze performance with X-Ray, and produce a scalable integration blueprint ready for enterprise deployment with guaranteed high availability.

Module 4AWS WAF Monitoring: Logs, Metrics, and Analysis (CloudWatch, Athena, Kinesis)

Enable detailed AWS WAF logging to Firehose and S3, query data with Athena for incident hunting, configure CloudWatch dashboards for real-time metrics like blocked requests and latency, perform post-mortem analysis exercises on simulated logs of real attacks, automate alerts via EventBridge, generate compliant reports for audits, and refine rules based on concrete insights for proactive defense in a professional environment.

Module 5Advanced AWS WAF: Bot Control, ML Models, and Best Practices (Challenge-Response, Managed Rules Pro)

Deploy AWS WAF Bot Control and ML models to detect advanced bots, implement Challenge-Response and intelligent CAPTCHA, explore Managed Rules Pro for zero-day threats, review a complete end-to-end project with trainer code review, simulate a major incident and response plan, finalize with CI/CD via CodePipeline for automated updates, receive a competency certificate and starter kit to immediately secure enterprise infrastructures.

Evaluation method

  • Certifying quiz on AWS WAF and security scenarios
  • Practical evaluation through labs and end-to-end project
  • Oral presentation of deployed custom rules

Learning method

  • Training led by active certified AWS experts
  • Hands-on labs on real AWS accounts and enterprise cases
  • End-to-end project securing a complete web application
  • Digital learning support and printed materials provided

Methods, materials and delivery

The Training AWS WAF - Securing Web Applications Against Cyberattacks program is delivered onsite or remote (blended-learning, virtual classroom, remote presence). At Learni, an industry-certified training organization, every program is built to maximize skills acquisition regardless of the chosen format.

The trainer alternates between demonstrative, interrogative and active methods (through hands-on labs and/or scenarios). This pedagogical approach guarantees concrete learning that's immediately applicable at work.

Equipment required

For the smooth delivery of the Training AWS WAF - Securing Web Applications Against Cyberattacks program, the following equipment is required:

  • Mac or PC computers, high-speed fiber internet, whiteboard or flipchart, projector or interactive touch screen (for remote sessions)
  • Training environments installed on workstations or accessible online
  • Course materials, hands-on exercises and complementary resources
  • Post-training access to materials and educational resources

For intra-company training on a site outside Learni, the client commits to providing all required teaching materials (computers, internet, etc.) for the smooth delivery of the program in line with the prerequisites in the communicated program.

* contact us for remote delivery feasibility** ratio varies depending on the program

Skills assessment methods

Assessment of skills acquired during the Training AWS WAF - Securing Web Applications Against Cyberattacks program is performed through:

  • During training: case studies, hands-on labs and professional scenarios
  • End of training: self-assessment questionnaire and skills evaluation by the trainer
  • After training: completion certificate detailing acquired skills

Program accessibility

Learni is committed to making its programs accessible. All our programs are accessible to people with disabilities. Our teams are available to adapt the pedagogical methods to your specific needs. Please contact us for any adjustment request.

Enrollment terms and lead times

Registration is possible up to 48 business hours before the start of training. All our programs are built for corporate L&D budgets and delivered onsite or remotely.

Our method

Training quality, guaranteed at every step

Before, during, after: we frame the brief, introduce the trainer, tailor the content and measure impact. You stay in control from kickoff to wrap-up.

Step 1

Rigorous trainer selection

Each trainer is validated on three criteria: hands-on field expertise, proven pedagogy and alignment with your industry.

  • Triple validation: technical, pedagogical, sectoral.
  • Minimum rating 4.8/5 over the last 12 sessions.
Step 2

You meet the trainer beforehand

30-minute video call between you and the selected trainer to validate the fit, adjust content and clear any final doubts.

  • Live briefing on goals and team context.
  • Veto right — we swap the trainer for free if needed.
Step 3

Content tailored to your context

No recycled slides. The syllabus is reworked from your real cases: tools, constraints, vocabulary, ongoing projects.

  • Hands-on cases drawn from your stack and projects.
  • Program co-written then validated by your team.
Step 4

Continuous quality follow-up

Live evaluations, 30/90/180-day check-ins and a consolidation plan. If the impact misses the mark, we rework it.

  • NPS, knowledge quizzes and skills self-assessment.
  • Satisfaction guarantee: fully satisfied or free rework.

A simple promise: you don't pay to discover the trainer on day one. Everything is validated upfront, by you.

FAQ

Frequently asked questions

How much does the Training AWS WAF - Securing Web Applications Against Cyberattacks training cost?+
The individual price is $5,775 (USD). The team / on-site group package is shown on the course page. A detailed quote is sent within one business day.
How long is the Training AWS WAF - Securing Web Applications Against Cyberattacks training?+
The training lasts 5 journées, available live online (US time zones) or on-site at your offices.
How is this training paid for?+
Most US teams pay directly through their company (L&D or training budget). We invoice in US dollars and accept bank transfer (ACH/wire) or card, with volume pricing for teams. A purchase order is welcome.
Are there any prerequisites?+
Basic AWS knowledge (EC2, ALB, VPC), TCP/IP networking fundamentals, and OWASP Top 10 threats
Is a certificate delivered at the end?+
Yes. A Learni completion certificate is issued, along with the individual evaluation report.
Does Learni provide the equipment?+
No. A computer and stable internet connection are required for the participant. Learni provides the educational platform, the trainer and all course materials.
On-site & remote

This training across cities

Available on-site and remotely. Pick your city to see the local training center.

Your professional training, anywhere

Let's build
your next
program.

30 minutes with a learning advisor. No commitment. No sales pitch dressed up as a demo.

Reply within 24h · Vetted experts · USD invoicing · W-9 available