Foundation Course - Certificate of Cloud Security Knowledge
The Cloud Computing Security Knowledge- Foundation class provides students with a comprehensive one-day review of cloud security fundamentals and prepares them to take the Cloud Security Alliance CCSK v3.0 certificate exam. Starting with a detailed description of cloud computing, the course covers all major domains in the Guidance v3.0 document from the Cloud Security Alliance, and the recommendations from the European Network and Information Security Agency (ENISA)
About The Certificate of Cloud Security Knowledge (CCSK)
The Cloud Security Alliance has developed a widely adopted catalogue of security best practices, the “Security Guidance for Critical Areas of Focus in Cloud Computing, V3.0“. In addition, the European Network and Information Security Agency (ENISA) whitepaper “Cloud Computing: Benefits, Risks and Recommendations for Information Security” is an important contribution to the cloud security body of knowledge.
The Certificate of Cloud Security Knowledge (CCSK) provides evidence that an individual has successfully completed an examination covering the key concepts of the CSA guidance and ENISA whitepaper. More information from CSA
At the end of this Cloud Security training course students will have built a deeper understanding of:
Cloud computing characteristics, resources, service models and security considerations
Creating and Securing a Public Cloud Instance how is security impacted by the adoption of one or more cloud service models. What to expect from providers. Risk, Governance and Compliance considerations when looking at Cloud solutions.
Securing Data in the Public Cloud cloud data storage options, moving data throughout the management lifecycle and encryption architectures.
Securing users and applications in the cloud include the provider in your threat assessment, testing implications, Identity Management standards.
Creating and Securing Private Cloud virtulisation security concepts, managed internally or externally, on or off site.
This course is broken out into 6modules that cover the 13 domains of the CSA Guidance and the ENISA Cloud Computing: Benefits, Risks and Recommendations for Information Security.
Section 1: Introduction to cloud computing
Essential characteristics, service models, deployment models
Section 2: Infrastructure Security for Cloud Computing
Securing base infrastructure, management plane, virtual hosts and networks, IaaS, PaaS, SaaS security
Section 3: Risk, Data and Process
Threat models, Cloud Data Architectures, Data Security Lifecycle, Information Governance, Data Loss prevention, Portability and interoperability, Incident response and more
Section 4: Securing Cloud Applications and Users
Encryption and Key Management, Application Security, Identity and Access management, Security as a Service
Section 5: Governance, Exam preparation
Risk and Governance, Legal and Compliance, Audit, What to look for in a cloud provider
About the Certificate of Cloud Security Knowledge (CCSK)