Scribd
Upload
78 views8 pages

Course Agenda: Lesson 1 - Cloud Concepts, Architecture, and Design

The document outlines an agenda for a course on cloud security that is divided into 6 lessons. Lesson 1 covers cloud concepts, architecture, design principles and deployment models. Lesson 2 focuses on cloud data security, including data lifecycles, storage architectures, encryption, and privacy regulations. Lesson 3 discusses cloud platform and infrastructure security, including physical design, disaster recovery, and risks. Lesson 4 examines application security practices like development processes, access control and testing. Lesson 5 is about cloud security operations such as configurations, monitoring and incident response. Finally, Lesson 6 addresses legal and compliance issues in areas like intellectual property, privacy laws and vendor management.

Uploaded by

rajul
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
78 views8 pages

Course Agenda: Lesson 1 - Cloud Concepts, Architecture, and Design

The document outlines an agenda for a course on cloud security that is divided into 6 lessons. Lesson 1 covers cloud concepts, architecture, design principles and deployment models. Lesson 2 focuses on cloud data security, including data lifecycles, storage architectures, encryption, and privacy regulations. Lesson 3 discusses cloud platform and infrastructure security, including physical design, disaster recovery, and risks. Lesson 4 examines application security practices like development processes, access control and testing. Lesson 5 is about cloud security operations such as configurations, monitoring and incident response. Finally, Lesson 6 addresses legal and compliance issues in areas like intellectual property, privacy laws and vendor management.

Uploaded by

rajul
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 8

Course Agenda

Lesson 1 - Cloud Concepts, Architecture, and Design

● Domain and Learning Objectives


● Security Concepts
● Key Security Concepts, Defense in Depth, Due Care and Due Diligence
● Security Controls and Functionalities
● Cloud Computing Concepts
● Business Drivers
● Scalability, Elasticity, Vendor Lock-in, and Vendor Lock-out
● Cloud Computing Concepts: Advantages
● Cloud Reference Architecture
● Cloud Computing Roles and Actors
● Cloud Service Categories: Infrastructure as a Service (IaaS)
● Cloud Service Categories: Platform as a Service (PaaS)
● Cloud Service Categories: Software as a Service (SaaS)
● Cloud Service Categories: Management
● Cloud Deployment Models: Public Cloud
● Cloud Deployment Models: Private Cloud
● Cloud Deployment Models: Hybrid Cloud
● Cloud Deployment Models: Community Cloud
● Models and Characteristics
● Comparison of Cloud Deployment Models
● Case Study: Hybrid Cloud
● Cloud Technology Roadmap
● Impact of Related Technologies
● Cryptography, Key Management, and Other Security Concepts
● Key Management
● IAM and Access Control
● Data Remanence
● Virtualization
● Cloud Computing Threats
● Design Principles of Secure Cloud Computing
● Cost-Benefit Analysis
● Evaluate Cloud Service Providers
● SOC
● IT Security Evaluation
● FIPS
● Scenario
● Key Takeaways

Lesson 2 - Cloud Data Security

● Domain and Learning Objectives


● Cloud Data Life Cycle
● Cloud Data Life Cycle: Create, Store, Use, and Share
● Real-World Scenario
● Cloud Data Life Cycle: Archive
● Cloud Data Life Cycle: Destroy, Key Data Functions
● Cloud Data Storage Architectures
● Cloud Data Storage Architectures: Storage Types for IaaS
● Cloud Data Storage Architectures: Storage Types for PaaS
● Cloud Data Storage Architectures: Storage Types for SaaS
● Cloud Data Storage Architectures: Threats to Storage Types
● Real-World Scenario
● Data Security Strategies
● Data Security Strategies: Encryption (Use Cases)
● Data Security Strategies: Encryption Challenges
● Data Security Strategies: Encryption in IaaS
● Data Security Strategies: Database Encryption
● Data Security Strategies: Key Management
● Data Security Strategies: Key Storage in the Cloud
● Data Security Strategies: Masking
● Data Security Strategies: Data Anonymization
● Data Security Strategies: Tokenization
● Data Security Strategies: Homomorphic Encryption and Bit Splitting
● Real-World Scenario
● Data Security Strategies: Data Loss Prevention
● Scenario
● Data Discovery and Classification Technology
● Data Discovery and Classification Technology: Data Classification
● Data Discovery and Classification Technology: Challenges with Cloud Data
● Jurisdictional Data Protections for Personally Identifiable Information (PII)
● Privacy Acts: GDPR
● Privacy Acts: Data Protection policies
● Privacy Acts: United States
● Privacy Acts: HIPAA, FISMA, and SOX
● Jurisdictional Data Protections for PII: Responsibilities of Cloud Services
● Data Rights Management
● Data Retention, Deletion, and Archiving Policies
● Data Retention
● Data Deletion
● Real-World Scenario
● Data Archiving
● Real-World Scenario
● Legal Hold
● Auditability, Traceability, and Accountability of Data Events
● SIEM
● Chain of Custody
● Nonrepudiation
● Real-World Scenario
● Key Takeaways

Lesson 3 - Cloud Platform and Infrastructure Security

● Domain and Learning objectives


● Cloud Infrastructure Components
● Network and Communications
● Management Plane and Virtualization
● Factors That Impact Datacenter Design
● Physical Design: Buy or Build
● Physical Design: Data Center Design Standards
● Physical Design: Uptime Institute
● Physical Design: Tiers
● Physical Design: Features of Tiers
● Real-World Scenario
● Environmental Design Considerations
● Connectivity
● Hypervisor and Resource Allocation
● Risks Associated with Cloud Infrastructure
● Policy, General, and Virtualization Risks
● Cloud-Specific, Legal, and Non-Cloud Specific Risks
● Cloud Attack Vectors and Compensating Controls
● Business Scenario
● Design and Plan Security Controls
● Real-World Scenario
● Plan Disaster Recovery and Business Continuity
● Real-World Scenario
● BCDR Planning Factors and Disruptive Events
● Characteristics of Cloud Infrastructure
● BCDR strategies and Returning to Normal
● Real-World Scenario
● BCDR Creation
● BCDR Creation: Test
● Business Requirements
● BCDR Creation: Report and Revise
● Testing Types,Uptime,Availability, Activity, and Case Study
● Security Training and Awareness
● Real-World Scenario
● Key Takeaways

Lesson 4 - Cloud Application Security

● Domain and Learning objectives


● Advocate Training and Awareness for Application Security
● Real-world Scenario
● Common Pitfalls
● Encryption Dependency Awareness
● Business Scenario
● Understanding Software Development Lifecycle Process
● Real-world Scenario
● Vulnerabilities and Risks
● Threat Modeling
● Real-world Scenario
● Encryption
● Sandboxing and Application Virtualization
● Federated Identity Management
● SAML Authentication
● Identity and Access Management
● Multi-Factor Authentication
● Real-world Scenario
● Cloud Access Security Broker
● Application Security Testing
● Software Supply Chain Management
● Real-world Scenario
● Key Takeaways

Lesson 05 - Cloud Security Operations

● Domain and Learning objectives


● Secure Configuration of Hardware: Servers
● Secure Configuration of Hardware: Storage Controllers (Part 1)
● Real-World Scenario
● Secure Configuration of Hardware: Storage Controllers (Part 2)
● Secure Configuration of Hardware: Virtual Switches
● Configuration of VM Tools
● Configuration of VM Tools: Running a Physical Infrastructure (Part 1)
● Configuration of VM Tools: Running a Physical Infrastructure (Part 2)
● Configuration of VM Tools: Running a Physical Infrastructure (Part 3)
● Configuration of VM Tools: Running a Physical Infrastructure (Part 4)
● Real-World Scenario
● Securing Network Configuration (Part 1)
● Real-World Scenario
● Clustered Hosts
● Dynamic Optimization and Clustered Storage
● Maintenance Mode and Patch Management
● Performance Monitoring
● Real-World Scenario
● Network Security Controls: Layered Security and Honeypots
● Network Security Controls: SIEM
● Log Management
● Orchestration
● Availability of Guest OS
● Operations Management (Part 1)
● Real-World Scenario
● Operations Management (Part 2)
● Risk-Management Process: Framing Risk and Risk Assessment
● Quantitative Risk Analysis
● Scenario
● Risk Response and Risk Monitoring
● Collection and Preservation of Digital Evidence
● Communication with Relevant Parties
● Real-World Scenario
● Security Operations Center
● Key Takeaways

Lesson 06 - Legal Risk and Compliance

● Domain and Learning objectives


● Case Study
● Legislative Concepts
● Intellectual Property Laws
● Case Study
● Scenario
● Acts and Agreements
● Case Study
● NERC
● Privacy Shield and Generally Accepted Privacy Principles (GAPP)
● Jurisdictional Difference in Data Privacy
● Terminologies and eDiscovery
● Forensic Requirements and PII
● Gap Analysis,SOC Reports, and Chain of Custody
● Vendor Management
● Cloud Computing Policies and Risk Attitude
● SLA
● Quality of Service
● Risk Mitigation
● Risk Management Metrics and ISO 28000:2007
● Real-World Scenario
● Key Takeaways

You might also like