ISC2 Certified Cloud Security Professional
Satisfaction rate
4.9
Success rate
4.9
Description
- Assimilate the 6 areas of PSAB's Common Body of Knowledge (CBK).
- Understanding the principles of security in the cloud (public, private, hybrid).
- Analyse service models (IaaS, PaaS, SaaS) and shared responsibilities.
- Securing data, applications, identities, infrastructures and cloud operations.
- Integrate legal, contractual and regulatory compliance aspects.
- Put yourself in an exam situation thanks to rigorous, structured practice.
Target group
- Cybersecurity professionals, cloud administrators, architects, security engineers.
- Consultants, project managers, CISOs involved in cloud environments.
- Anyone wishing to develop their high-level expertise in cloud security.
Program
- Duration : 5 days
Day 1: Module 1: Cloud architecture concepts and design requirements
- Cloud models: private, public, hybrid, community.
- Service models: IaaS, PaaS, SaaS.
- Principle of shared responsibility.
- The security impact of cloud models.
- Concepts of resilience, availability and performance.
- Thematic quiz and case study on designing a secure architecture.
Day 2: Module 2: Data security in the cloud
- Classification, lifecycle and location of data.
- Encryption, key management, HSM.
- Access control and identity management.
- Masking, tokenisation, anonymisation.
- Integrity, confidentiality, availability.
- Workshop: multi-cloud encryption strategy + quiz.
Day 3: Module 3: Security of cloud platforms and infrastructures
- Virtualised infrastructure components (VMs, containers, etc.).
- Network security in the cloud (SDN, VPC, micro-segmentation).
- Vulnerability and patch management.
- Zero Trust architecture in a cloud context.
- Case study: a hypervisor flaw in an IaaS architecture.
Day 4: Module 4: Cloud application security
- Secure development: DevSecOps, CI/CD, SDLC.
- API management, code integrity, dynamic/statistical tests.
- Authenticity of packages, security of third-party libraries.
- Implementation of safety rules right from the design stage (Shift left).
- Workshop: securing a CI/CD chain with SAST/DAST.
Day 5: Module 5: Operations + Module 6: Legal aspects and compliance
Module 5 - Cloud operations security :
- Business continuity and disaster recovery (BCP/DRP).
- Monitoring, logging, SIEM.
- Incident management, orchestration and response.
- Automated controls.
- Case study: responding to a multi-tenant cloud incident.
Module 6 - Legal, compliance and audit :
- Regulatory frameworks: RGPD, ISO 27001, NIST, CSA CCM.
- Contractual cloud clauses, due diligence.
- Jurisdiction, data sovereignty, eDiscovery.
- Supplier and customer responsibilities.
- Final quiz + marked mock exam.
End of course
- Group debrief.
- Personalised revision plan.
- Practical information for taking the exam (ISC² - PearsonVue).
Goal
- Prepare effectively for the (ISC)² Certified Cloud Security Professional CCSP exam.
- Mastering best practice in cloud security on an international scale.
- Acquire cross-disciplinary expertise in the architectures, data, platforms and legal aspects of the cloud.
- Validate what you have learnt through practical exercises and quizzes based on the official exam.
Recommended
- Language : English
- Level : Advanced
- Certification body : ISC2
- Certification: Yes
- Accessibility : Yes
- Duration: 5 days
Important information:
Our courses are not registered with the Répertoire National des Certifications Professionnelles (RNCP), but they do comply with the requirements of the Répertoire Spécifique (RS).