This five day Certified Cloud Security Practitioner course is focused on Cloud Security, encompassing Cloud Security Architecture, DevSecOps, Data and Assurance aspects, Governance, Cloud Security Operations and Web Application Security.
The course spans cloud security principles, patterns and architectural frameworks, data protection and compliance for cloud based applications, data and infrastructure, and the design, development and implementation of cloud security architectures.
We will review the wide range of technical security controls available using Cloud Service Provider and partner technologies, automation and DevSecOps, assurance, audit and security testing of cloud based services. Containers and serverless architectures will be introduced and their security implications reviewed. Agile DevOps methodologies will be covered and the use of a Continuous Integration Pipeline for security improvements, validation and testing.
The course is delivered through presentations, discussions, practical demonstrations and 'hands-on' labs. You will gain practical hands-on experience of implementing and using cloud technologies and technical security controls in labs based on services from leading cloud service providers AWS and Microsoft, and consolidate learning in group workshops to develop cloud security architectures, based on realistic scenarios.
This course is aimed at technical and security specialists looking to develop and operate secure applications and systems using an agile DevOps methodology with fully automated deployments to cloud environments.
IISP Skills Alignment
This course is aligned to the following Institute of Information Security Professionals (IISP) Skills. More details on the IISP skills framework can be found here.
Continuous Professional Development (CPD)
CPD points can be claimed for GCT accredited courses at the rate of 1 point per hour of training for GCHQ accredited courses (up to a maximum of 15 points).
There are no pre-requisites. However, we recommend that all delegates have an understanding of the general technologies, for example Operating Systems and Networking and Security principles. Experience of using cloud services and security technologies is helpful but not essential.
For those delegates looking for some pre-course general cloud security background, guidance and organisational compliance, the NCSC cloud security collection is probably the single best resource.
Delegates will learn about the following topics:
DAY ONE
Introduction
Cloud Concepts
Virtualisation
Cloud Security Frameworks, Principles, Patterns and Certifications
AWS Security Technologies
Quiz
DAY TWO
Microsoft Azure and Office 365
Google Apps for Work
Assurance
Data Protection and Compliance
Quiz
DAY THREE
Containers
Web Application Security
Cloud Identity Services
Quiz
DAY FOUR
Serverless
Cloud Security as a Service
Quiz
Cloud Security Workshop
DAY FIVE
Automation
Continuous Integration Pipeline
DevSecOps Lab
Quiz
Exam Information - For Classroom based events:
Candidates will receive individual emails to access their AMPG GCT candidate portal, typically available two weeks post exam. If you experience any issues, please contact the APMG GCT technical help desk on 01494 4520450.
Duration | 70 minutes |
Questions | 70, multiple choice (4 multiple choice answers only 1 of which is correct) |
Pass Mark | 50% |
Exam Information - For Attend from Anywhere events:
The (Attend from Anywhere) exam is a Proctor-U APMG exam for the Practitioner Certificate in Cloud Security, which will be taken by delegates in their own time after the course. Delegates will receive individual emails to access their AMPG GCT candidate portal, typically available two weeks post exam.
If you experience any issues, please contact the APMG GCT technical help desk on 01494 4520450.
Sınıf eğitimlerimizi İstanbul, Ankara ve Londra ofislerimizde düzenlemekteyiz. Kurumunuza özel eğitimleri ise, dilediğiniz tarih ve lokasyonda organize edebiliriz.