CCSP - Certified Cloud Security Professional
There are very few acclaimed Cloud Security training. If you need to have a provider independent Cloud Security Training, the ISC2 CCSP is for you.
Duration
.
Audience
- Manager or Technical Architect that need to take Security as a main concern of their strategy should consider following the training. The Certification is clearly a determining factor
- The Architect or Security Architect willing to get a good grasp of Cloud Security
Prerequisite
There are no specific requisite.
Objectives
Aside from presenting the big picture of Cloud & Cloud Security, this course will cover 11 high level aspect of Cloud Security.
Attendee will have a good understanding of the Concepts related to Cloud based architecture with respect to Security.
Information
- Course duration : 4 days
- Material : Teachers notes + a Book.
(Course is a lecture. There are no EXERCISES). - Other : Certification is not foreseen at the end of the Training. Students should register themselves.
- Price of the certification is NOT included in the default offer (unless mentioned differently).
Detailled program
Chapter 1 : Architectural Concept
- Business Requirements
- Cloud Evolution, Vernacular, and Definition
- Cloud Computing Roles and Responsibilities
- Foundational Concepts of Cloud Computing
- Q & A
Chapter 2 : Design Requirements
- Data Inventory and Discovery
- Boundaries of Cloud Models (IaaS, Paas, SaaS)
- Design principles for Protecting Sensitive Data
- Q & A
Chapter 3 : Data Classification
- Business Requirements Analysis
- Jurisdictional Requirements
- Data Rights management
- Data Control
- Q & A
Chapter 4 : Cloud Data Security
- Cloud Data Life Cycle
- Cloud Storage Architectures
- Cloud Data Security Foundational Strategies
- Q & A
Chapter 5 : Security in the Cloud
- Shared Cloud platform Risks and Responsabilities
- Cloud Computing Risks by Deployment and Service Models
- Virtualization
- Cloud Attack Surface
- Disaster recovery (DR) and Business Continuity (BC)
- Q & A
Chapter 6 : Responsibilities in the Cloud
- Foundations of Managed Services
- Business Requirements
- Shared responsibilities by Service Types
- Shared administration of OS, Middelware, or Application
- Shared responsibilities Data Access
- Lack of Physical Access
- Q & A
Chapter 7 : Cloud Application Security
- Training & Awareness
- Cloud-Secure Software Development Life Cycle (SDLC)
- ISO/IEC-27034-1 Standards for Secure Application Development
- Identity and Access Management (IAM)
- Cloud Application Architecture
- Cloud Application Assurance and Validation
- Q & A
Chapter 8 : Operations Elements
- Physical/Logical Operations
- Security Training & Awareness
- Basic Operation Application Security
- Q & A
Chapter 9 : Operation Management
- Monitoring, Capacity, and Maintenance
- Change & Configuration
- Business Continuity & Disaster Recovery (BC/DR)
- Q & A
Chapter 10 : Legal & Compliance - Part 1
- Legal Requirements & Unique Risks in the Cloud Environment
- Audit Processes, Methodologies, and Cloud Adaptations
- Q & A
Chapter 11 : Legal & Compliance - Part 2
- The Impact of Diverse Geographical Locations and Legal Juridictions
- Business Requirements
- Cloud Contract Design and Management for Outsourcing
- Identifying Appropriate Supply Chain and Vendor Management Process
- Q & A