Cloud Security Course
Course Overview
The growing popularity of the Cloud has made its security a matter of concern. The Cloud Security Practitioner Training course from us is tailored to cloud security experts’ real-world employment duties and functions, making it excellent for beginners and experts. This course will assist you in getting started with cloud computing and making decisions like which CSP (Cloud Service Provider) is best for you in terms of GRC (Governance, Risk and Compliance). It will also help you understand what cloud security services and solutions should be available and how to apply them. This course will cover the fundamentals of cloud computing and governance, risk, compliance, business continuity planning, and disaster recovery.
We have equipped this course with practical hands-on lab sessions to help you understand the cloud better. This course helps security professionals gain deep insights into cloud security, the challenges faced and how to address various cloud security concerns. It is an all-embracing training covering core essentials of cloud computing architectural framework, governance, and operations in the cloud, such as legal issues, information and data security management, and data center operations.
Who Should Attend
- Any IT professional who wants to start exploring the cloud framework and learn how to securely configure it?
- Security professionals wanting to explore the security features of cloud
- IT professionals intending to excel in their career with cloud security skills.
Pre-requisites
- Knowledge of IT infrastructure (Network, Endpoint, Appliances, etc.)
- Understanding of Basic Security
- Basic knowledge of why Risk, Compliance, and Governance are needed
- Basic Understanding BCP/DR
Cloud Security Practitioner Course Objectives
- Evaluating cloud storage methods
- Developing and implementing a GRC framework
- Implementing and maintaining cloud security on different cloud platforms
- Exploring various cloud security concepts and components in-depth
- Understanding cloud security threats, Incident Response, risk management in the cloud, application security and secure deployment
- Learning cloud security audit management and its various components
- Comprehending cloud computing architectural framework
- Apprehending information management and data security
- Understanding governance and enterprise risk management
Cloud Security Practitioner Course Content
Module1: Cloud Basics and Models
Topics:
- Evolution of infrastructure technology
- Virtualization and Hypervisor.
- Introduction and Benefit of the cloud
- Shared model of cloud
- Service provided by cloud
- Challenges in cloud
Exercise:
- Create Azure Free Account
- Create AWS Account
Module2: Deploy and Understand Compute and Configuration
Topics:
- Secure Instance / Virtual Machine Deployment
- Host Configuration Management
- Manage Host Configuration
- Type of Cloud Storage: Disk for Compute
- Application Security
- Threat Modelling overview
- Platform as a Service (PaaS)
- Container and Kubernetes
Exercise:
- Deploy a Virtual Machine.
- Discuss disk option, image option.
- Snapshot of Disk
- Deploy Web App.
- Deploy the Container.
Module3: Control Your Identity and Access Management
Topics:
- Lifecycle for Identity and Access Management
- Concept of Cloud Account and Least privileges: Policies and Permissions, Groups and Roles, Temporary Credentials
- Secrets Management
- Customer Account Management and External Access
- Security Loopholes in Cloud IAM Services
- More IAM Best Practices
Exercise:
- Create a cloud-based identity
- Apply roles to the account
- Create group
- Assign role
- Enable MFA
- Different Security option and Service
- Identity Audit with Identity governance feature in Azure
Module4: Deploy and Monitor Network Resources
Topics:
- Cloud Virtual Networking
- Network Segmentation
- Log Collection and Analysis
- Traffic Analysis of Cloud network
- Network Protection Services: Service Endpoints and Private Endpoints
- Restricting Access to Network via JIT
- Cloud Logging Services
- Infrastructure as Code
Exercise:
- Deploy Virtual Network
- Allow Administrative Access
- Jump Server and Bastion Host
- VPN
- Troubleshoot the virtual Network.
- Enable logging option
- Deploy Network and VM using json.
Module5: Encrypt and Protect Data
Topics:
- Lifecycle Management
- Storage Account
- Data Identification and Classification
- Cloud Service Encryption: Data at Rest Encryption, Data in Transit Encryption, Disk Level Encryption
- Data Asset Management
- Cloud Access Security Brokers (CASB)
Exercise:
- Deploy storage account with availability option
- Encryption option
- Encryption option for disk storage
- Deploy SQL Server
- Data classification and Identification
- Data Masking
- Data Encryption option
Module6: Detecting and Handling Cloud Incidents with Security Operation
Topics:
- Understand Cloud Incident Response Lifecycle: Discuss Each Phase
- Understand How SOAR Accelerates Incident Response
- Security As a Service
- Cloud Based SIEM Models
Exercise:
- Creating alert using azure monitor service.
- Microsoft Defender for Cloud
- AWS Cloud Trail
- AWS Cloud Watch and SNS
- Microsoft Sentinel
Module7: Basics of Penetration Testing and Forensic in Cloud
Topics:
- Pen Testing in Cloud
- Scope of Cloud Pen Test
- Common Steps of Pen Testing
- Cloud Forensics
- Cloud Forensics Challenges
Exercise:
- Examine Logs on Cloud
- Identify Misconfigured S3 Bucket and Publicly accessible data
Module8: Manage Business Continuity and Disaster Recovery
Topics:
- Discuss Cloud Disaster Recovery and Business Continuity
- Main Element of BC/DR in cloud
- Learn to Design Disaster Recovery and Business Continuity in Cloud
Exercise:
- Implementing Backup for VM
- Implementing DR for storage account
Module9: Handling Legal Issue and Policy in Cloud
Topics:
- Understand the laws impacting cloud computing
- Learn the cloud computing standards
- Describe the legal frameworks for data protection and privacy
- Learn audit planning and reporting in the cloud
- Describe outsourcing and vendor management
Exercise:
- Auditing Compliance of Azure Resources by creating Policy Assignments with Azure Policy
- Conducting Security Audit in AWS with AWS Trusted Advisor
Module10: Manage GRC for the cloud
Topics:
- Understand GRC in the cloud
- Discuss cloud governance
- Learn to implement and maintain governance for cloud computing
- Discuss risk management in the cloud
- Understand risk management framework and process in the cloud
- Understand cloud compliance
- Learn to implement GRC in the cloud
Exercise:
- Deploying Policy for the restriction of deployment
- Enforce Compliance by Assigning In-built Policy and Creating Custom Policy in Azure
You may be also interested in
Register for FREE Demo
Fields marked with (*) are mandatory
Client Feedback
Thanks, you guys provided the best online training in SAP BODS. The hands on training is very informative and helpful.
- David Sergi, Camaga Ltd; U.K