Duration: 5 Days
Course Overview
As powerful as cloud computing is for the organization, understanding its information security risks and mitigation strategies is critical. Legacy approaches are inadequate, and organizations need competent, experienced professionals equipped with the right cloud security knowledge and skills to be successful. They need CCSPs.
Backed by the two leading non-profits focused on cloud and information security, the Cloud Security Alliance (CSA) and (ISC)², the CCSP credential denotes professionals with deep-seated knowledge and competency derived from hands-on experience with cyber, information, software and cloud computing infrastructure security. CCSPs help you achieve the highest standard for cloud security expertise and enable your organization to benefit from the power of cloud computing while keeping sensitive data secure.
How can I attend my course?
COURSE OBJECTIVES
For those who qualify, the CCSP exam will test their competence in the six CCSP domains of the (ISC)² Common Body of Knowledge (CBK), which cover:
• Architectural Concepts & Design Requirements
• Cloud Data Security
• Cloud Platform & Infrastructure Security
• Cloud Application Security
• Operations
• Legal & Compliance
After completing this course, the student will be able to:
• Describe the physical and virtual components of and identify the principle technologies of cloud based systems
• Define the roles and responsibilities of customers, providers, partners, brokers and the various technical professionals that support cloud computing environments
• Identify and explain the five characteristics required to satisfy the NIST definition of cloud computing
• Differentiate between various as a Service delivery models and frameworks that are incorporated into the cloud computing reference architecture
• Discuss strategies for safeguarding data, classifying data, ensuring privacy, assuring compliance with regulatory agencies and working with authorities during legal investigations
• Contrast between forensic analysis in corporate data center and cloud computing environments
• Evaluate and implement the security controls necessary to ensure confidentiality, integrity and availability in cloud computing
• Identify and explain the six phases of the data lifecycle
• Explain strategies for protecting data at rest and data in motion
• Describe the role of encryption in protecting data and specific strategies for key management
• Compare a variety of cloud-based business continuity / disaster recovery strategies and select an appropriate solution to specific business requirements
• Contrast security aspects of Software Development Lifecycle (SDLC) in standard data center and cloud computing environments
• Describe how federated identity and access management solutions mitigate risks in cloud computing systems
• Conduct gap analysis between baseline and industry-standard best practices
• Develop Service Level Agreements (SLAs) for cloud computing environments
• Conduct risk assessments of existing and proposed cloud-based environments
• State the professional and ethical standards of (ISC)² and the Certified Cloud Security Professional
Course Content
Domain 1: Architectural Concepts and Design Requirements
• Understand Cloud Computing Concepts
• Describe Cloud Reference Architecture
• Understand Security Concepts Relevant to Cloud Computing
• Understand Design Principles of Secure Cloud Computing
• Identify Trusted Cloud Services
Domain 2: Cloud Data Security
• Understand Cloud Data Lifecycle (CSA Guidance)
• Design and Implement Cloud Data Storage Architectures
• Design and Apply Data Security Strategies
• Understand and Implement Data Discovery and Classification Technologies
• Design and Implement Relevant Jurisdictional Data Protections for Personally Identifiable Information (PII)
• Design and Implement Data Rights Management
• Plan and Implement Data Retention, Deletion, and Archiving Policies
• Design and Implement Auditability, Traceability and Accountability of Data Events
Domain 3: Cloud Platform and Infrastructure Security
• Comprehend Cloud Infrastructure Components
• Analyze Risks Associated to Cloud Infrastructure
• Design and Plan Security Controls
• Plan Disaster Recovery and Business Continuity Management
Domain 4: Cloud Application Security
• Recognize the need for Training and Awareness in Application Security
• Understand Cloud Software Assurance and Validation
• Use Verified Secure Software
• Comprehend the Software Development Life-Cycle (SDLC) Process
• Apply the Secure Software Development Life-Cycle
• Comprehend the Specifics of Cloud Application Architecture
• Design Appropriate Identity and Access Management (IAM) Solutions
Domain 5: Operations
• Support the Planning Process for the Data Center Design
• Implement and Build Physical Infrastructure for Cloud Environment
• Run Physical Infrastructure for Cloud Environment
• Manage Physical Infrastructure for Cloud Environment
• Build Logical Infrastructure for Cloud Environment
• Run Logical Infrastructure for Cloud Environment
• Manage Logical Infrastructure for Cloud Environment
• Ensure Compliance with Regulations and Controls (e.g., ITIL, ISO/IEC 20000-1)
• Conduct Risk Assesment to Logical and Physical Infrastructure
• Understand the Collection, Acquisition and Preservation of Digital Evidence
• Manage Communication with Relevant Parties
Domain 6: Legal and Compliance
• Understand Legal Requirements and Unique Risks within the Cloud Environment
• Understand Privacy Issues, Including Jurisdictional Variation
• Understand Audit Process, Methodologies, and Required Adaptations for a Cloud Environment
• Understand Implications of Cloud to Enterprise Risk Management
• Understand Outsourcing and Cloud Contract Design
• Execute Vendor Management
COURSE PREREQUISITES
Recommended prerequisites:
• CISSP – Official (ISC)2 Certified Information Systems Security Professional Training (CISSP) incl Exam
TEST CERTIFICATION
This is an (ISC)2 certification prep course for the CCSP exam
To book this course please call
+44 (0) 1444 410296 or email Info@kplknowledge.co.uk
Training and accreditation is provided through Global Knowledge