Certificate of Cloud Security Knowledge (CCSK) Foundation (CSA authorized)

Overview:

The CCSK Foundation course starts with the fundamentals, then increases in complexity as it works through all 16 domains of the CSA Security Guidance, recommendations from the European Union Agency for Network & Information Security (ENISA), and an overview of the Cloud Controls Matrix.

This is a Cloud Security Alliance (CSA) authorized course and NobleProg is an official CSA Training Partner.

This course is delivered by CSA Authorized CCSK Instructors.
All attendees receive:

official CSA CCSK Foundation course certificates
official CCSK Foundation Student Handbooks
1 CCSK exam voucher and 1 re-attempt exam voucher

This course covers the most current version of the CCSK exam - currently version 4.1.

Course Outline:

Module 1. Cloud Architecture

The fundamentals of cloud computing, including definitions, architectures, and the role of virtualization. Key topics include cloud computing service models, delivery models, and fundamental characteristics. It also introduces the Shared Responsibilities Model and a framework for approaching cloud security.

Topics Covered:

Unit 1 - Introduction to Cloud Computing
Unit 2- Introduction & Cloud Architecture
Unit 3 - Cloud Essential Characteristics
Unit 4 - Cloud Service Models
Unit 5 - Cloud Deployment Models
Unit 6 - Shared Responsibilities

Module 2. Infrastructure Security for Cloud

Delves into the details of securing the core infrastructure for cloud computing- including cloud components, networks, management interfaces, and administrator credentials. It delves into virtual networking and workload security, including the basics of containers and serverless.

Topics Covered:

Unit 1 - Module Intro
Unit 2 - Intro to Infrastructure Security for Cloud Computing
Unit 3 - Software Defined Networks
Unit 4 - Cloud Network Security
Unit 5 - Securing Compute Workloads
Unit 6 - Management Plane Security
Unit 7 - BCDR

Module 3. Managing Cloud Security and Risk

Covers important considerations for managing security for cloud computing. It begins with risk assessment and governance, then covers legal and compliance issues, such as discovery requirements in the cloud. It also covers important CSA risk tools including the CAIQ, CCM, and STAR registry.

Topics Covered:

Unit 1 - Module Introduction
Unit 2 - Governance
Unit 3 - Managing Cloud Security Risk
Unit 4 - Legal
Unit 5 - Legal Issues In Cloud
Unit 6 - Compliance
Unit 7 - Audit
Unit 8 - CSA Tools

Module 4. Data Security for Cloud Computing

Covers information lifecycle management for the cloud and how to apply security controls, with an emphasis on public cloud. Topics include the Data Security Lifecycle, cloud storage models, data security issues with different delivery models, and managing encryption in and for the cloud, including customer managed keys (BYOK).

Topics Covered:

Unit 1 - Module Introduction
Unit 2 - Cloud Data Storage
Unit 3 - Securing Data In The Cloud
Unit 4 - Encryption For IaaS
Unit 5 - Encryption For PaaS & SaaS
Unit 6 - Encryption Key Management
Unit 7 - Other Data Security Options
Unit 8 - Data Security Lifecycle

Module 5. Application Security and Identity Management for Cloud Computing

Covers identity management and application security for cloud deployments. Topics include federated identity and different IAM applications, secure development, and managing application security in and for the cloud.

Topics Covered:

Unit 1 - Module Introduction
Unit 2 - Secure Software Development Life Cycle (SSDLC)
Unit 3 - Testing & Assessment
Unit 4 - DevOps
Unit 5 - Secure Operations
Unit 6 - Identity & Access Management Definitions
Unit 7 - IAM Standards
Unit 8 - IAM In Practice

Module 6. Cloud Security Operations

Key considerations when evaluating, selecting, and managing cloud computing providers. We also discuss the role of Security as a Service providers and the impact of cloud on Incident Response.

Topics Covered: