• Online, Self-Paced

Cloud services vary in size and complexity, and the deployed architecture impacts directly on service and data asset security. This course describes and explores aspects of cloud computing architectural design, and defines associated cloud systems and cloud components. In addition to Cloud Reference Architecture, the course outlines definitions and roles, computing characteristics, and cloud deployment models. In this course, you will learn about cloud security, cloud networks, virtualization within the cloud system, data encryption and aspects of cloud interoperability, trusted cloud services, cloud system management, and operational considerations. The course covers the essential topics for the ISC2's Certified Cloud Security Professional examination Domain 1 requirements.

Learning Objectives

Cloud Computer Concepts

  • start the course
  • define and describe cloud components
  • define cloud system participants: consumers, providers, partners, auditors, regulators
  • outline the operational characteristics of cloud computing
  • outline the supporting architectural components and infrastructure of cloud computing

 

Cloud System Architecture

  • detail Cloud Computing Activities with reference to ISO/IEC 17789, Clause 9
  • define how cloud services are categorized based on supported services and capabilities
  • describe the industry-defined standard categories of cloud computing
  • describe the defined deployment models of the cloud services
  • describe the additional operational aspects of the cloud service environment

 

Cloud System Security

  • describe the encryption of cloud-hosted assets
  • define access and access control to cloud-hosted assets (data, files, and resources)
  • outline asset and media management with respect to deletion/removal/overwrite on a cloud platform
  • define issues and solutions relating to cloud network structures
  • define issues and solutions relating to cloud virtualization infrastructures
  • list and describe known and common threats to cloud infrastructure and data assets
  • define security considerations and responsibilities on a per Cloud Model (Category basis IaaS, PaaS, and SaaS plus their various derivatives)

 

Cloud Security Design

  • detail the security-based data life cycle of cloud-hosted assets (data, files, features)
  • describe business continuity and disaster recovery as it applies to a cloud service
  • define how a cloud deployment might be analyzed on a cost basis
  • define and describe focus areas relating to the functional security of the cloud service including vendor lock-in, interoperability, portability, migration, etc.

 

Trusting Cloud Services

  • describe methodologies for mapping cloud service requirements to service provider certification and product certifications
  • outline methodologies for mapping cloud components to appropriate or required industry certifications or industry standards

 

Practice: Cloud System Architecture

  • define Cloud Service roles, categories, and services; describe data state and data asset classification with reference to security; and outline the purpose of Common Criteria

 

Framework Connections