CCSK v4 Examination Preparation Course
Duration
3 Days
Level
Advanced Level
Design and Tailor this course
As per your team needs
The Certificate of Cloud Security Knowledge (CCSK) is designed for any IT professional working in cloud computing and for security professionals with or without cloud background. Many non-security professionals like developers, IT operations, audit/compliance get value out of it. The CCSK certificate is widely recognized as the standard of expertise for cloud security and gives a cohesive and vendor-neutral understanding of how to secure data in the cloud.
This course covers the complete curriculum of CCSK v4 which will provide critical insights into issues such as data security, key management and identity and access management.
The CCSK enables everyone, from information security experts and CEOs to department managers and technical sales teams, the ability to utilize cloud services more securely and speak with confidence about cloud security concerns.
- Information Security Professionals
- Cloud Practitioners
- Cloud Security Practitioners
- IT Consultants
- IT Architects
- IT Engineers, Software Engineers, Testers etc. who are looking to change their current career domain and exploring options in Cloud Security
- Definitions of Cloud Computing
- Service Models
- Deployment Models
- Reference and Architecture Models
- Logical Model
- Cloud Security Scope, Responsibilities, and Models
- Areas of Critical Focus in Cloud Security
- Tools of Cloud Governance
- Enterprise Risk Management in the Cloud
- Effects of various Service and Deployment Models
- Cloud Risk Trade-offs and Tools
- Legal Frameworks Governing Data Protection and Privacy
- Cross-Border Data Transfer
- Regional Considerations
- Contracts and Provider Selection
- Contracts
- Due Diligence
- Third-Party Audits and Attestations
- Electronic Discovery
- Data Custody
- Data Preservation
- Data Collection
- Response to a Subpoena or Search Warrants
- Compliance in the Cloud
- Compliance impact on cloud contracts
- Compliance scope
- Compliance analysis requirements
- Audit Management in the Cloud
- Right to audit
- Audit scope
- Auditor requirements
- Governance Domains
- Six phases of the Data Security Lifecycle and their key elements
- Data Security Functions, Actors and Controls
- Business Continuity and Disaster Recovery in the Cloud
- Architect for Failure
- Management Plane Security
- Cloud Network Virtualization
- Security Changes With Cloud Networking
- Challenges of Virtual Appliances
- SDN Security Benefits
- Micro-segmentation and the Software Defined Perimeter
- Hybrid Cloud Considerations
- Cloud Compute and Workload Security
- Major Virtualizations Categories
- Network
- Storage
- Containers
- Incident Response Lifecycle
- How the Cloud Impacts IR
- Opportunities and Challenges
- Secure Software Development Lifecycle
- How Cloud Impacts Application Design and Architectures
- Data Security Controls
- Cloud Data Storage Types
- Managing Data Migrations to the Cloud
- Securing Data in the Cloud
- IAM Standards for Cloud Computing
- Managing Users and Identities
- Authentication and Credentials
- Entitlement and Access Management
- Potential Benefits and Concerns of SecaaS
- Major Categories of Security as a Service Offerings
- Big Data
- Internet of Things
- Mobile
- Serverless Computing
- Understanding on IT Infrastructure, basics of software development life cycle and networking terminologies.
- Having some knowledge about Cloud Architecture is an advantage for this course, however that is not mandatory, the first module will cover all cloud concepts “Cloud Computing Concepts and Architectures”.
