Course

Objective:

Learning Outcomes:

• Define the roles and responsibilities of customers, providers, partners, brokers and the various technical professionals that support cloud computing environments
• Identify and explain the five characteristics required to satisfy the NIST definition of cloud computing
• Discuss strategies for safeguarding data, classifying data, ensuring privacy, assuring compliance with regulatory agencies and working with authorities during legal investigations
• Explain strategies for protecting data at rest and data in motion
• Contrast security aspects of Software Development Lifecycle (SDLC) in standard data center and cloud computing environments
• Develop Service Level Agreements (SLAs) for cloud computing environments
• Conduct risk assessments of existing and proposed cloud-based environments
• State the professional and ethical standards of (ISC)² and the Certified Cloud Security Professional
• Describe the physical and virtual components of and identify the principal technologies of cloud based systems
• Differentiate between various as-a-service delivery models and frameworks that are incorporated into the cloud computing reference architecture
• Contrast between forensic analysis in corporate data center and cloud computing environments
• Evaluate and implement the security controls necessary to ensure confidentiality, integrity and availability in cloud computing
• Identify and explain the six phases of the data lifecycle
• Describe the role of encryption in protecting data and specific strategies for key management
• Compare a variety of cloud-based business continuity / disaster recovery strategies and select an appropriate solution to specific business requirements
• Describe how federated identity and access management solutions mitigate risks in cloud computing systems
• Conduct gap analysis between baseline and industry-standard best practices

General Topics: