You can ping the instances irrespective of security group . Just add an Inbound rule of type ICMP where the source is anywhere/your VPC CIDR so that thay can ping successfully.
If you want to become an AWS solution Architect, check out AWS Course by Intellipaat.