Official websites use .gov
A .gov website belongs to an official government organization in the United States.
Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.
Certificate of Cloud Security Knowledge (CCSK) - Amazon Web Services (AWS)
The Certificate of Cloud Security Knowledge (CCSK) is the industry-recognized standard for cloud security expertise and establishes a comprehensive, vendor-neutral foundation that allows security professionals to build their cloud skills and credentials. The CCSK Foundation course starts with the fundamentals and increases in complexity as it works through all 16 domains of the CSA Security Guidance, recommendations from the European Union Agency for Network & Information Security (ENISA), and an overview of the Cloud Controls Matrix. It covers key areas including best practices for IAM, cloud incident response, application security, data encryption, security-as-a-service (SECaaS), securing emerging technologies, and more.
Course Overview
- Basic understanding of security fundamentals, such as firewalls, secure development, encryption, and identity management
8890 McGaw Road
Suite 200
Columbia, MD 21045
625 W Adams Street
Chicago, IL 60661
5908 Headquarters Drive
Suite 400
Plano, TX 75024
201 N Franklin St
Floor 37
Tampa, FL 33602
40 E. Rio Salado Parkway
Suite 200
Tempe, AZ 85281
- Providers
- Courses
- Course and Provider Quantity
Learning Objectives
- Describe cloud models and architectures, and how to apply the Shared Responsibility model to building a cloud security program.
- Determine the impacts of cloud computing on governance, legal, risk, and regulatory compliance.
- Adapt existing security principles and practices for cloud deployments, including the impact of cloud on all traditional security domains.
- Apply Cloud Security Alliance Security Guidance, Cloud Controls Matrix, and other research to a cloud security program.
- Evaluate how to secure the cloud management plane and ensure business continuity for cloud computing.
- Compare the effectiveness of different access controls and cloud encryption models.
- Assess how application security and secure software development change in the cloud. Respond to security incidents in the cloud.
- Develop Security as a Service (SECaaS) recommendations based on organizational requirements and legal obligations.
Framework Connections
The materials within this course focus on the NICE Framework Task, Knowledge, and Skill statements identified within the indicated NICE Framework component(s):
Competency Areas
Feedback
If you would like to provide feedback on this course, please e-mail the NICCS team at NICCS@mail.cisa.dhs.gov. Please keep in mind that NICCS does not own this course or accept payment for course entry. If you have questions related to the details of this course, such as cost, prerequisites, how to register, etc., please contact the course training provider directly. You can find course training provider contact information by following the link that says “Visit course page for more information...” on this page.