On This Page

Cloud Security Hands-On (CCSK Plus v.4)

Securosis | August 4-5 & August 6-7



Overview

There is a lot of hype and uncertainty around cloud security, but this class will slice through the hyperbole and provide students with the practical knowledge they need to understand the real cloud security issues and solutions. The Cloud Security Hands-On class provides students comprehensive coverage of cloud security fundamentals and prepares them to take the Cloud Security Alliance CCSK version 4 exam (it helps that we wrote the book). Starting with a detailed description of cloud computing, the course covers all major domains in the latest Guidance document from the Cloud Security Alliance, background on the CSA CCM and CAIQ tools, and the recommendations from the European Network and Information Security Agency (ENISA). This class is geared towards security professionals, but is also useful for anyone looking to expand their knowledge of cloud security. (We recommend attendees have at least a basic understanding of security fundamentals, such as firewalls, secure development, encryption, and identity management).

We also include extensive hands-on activities integrated into the training. Students will learn to apply their knowledge as they perform a series of exercises as they complete a scenario bringing a fictional organization securely into the cloud.

This expanded material includes additional lecture, although student's will spend most of their time assessing, building, and securing a cloud infrastructure during the exercises.

The content includes:

  • Introduction and Cloud Architectures
  • Infrastructure Security for Cloud Computing
  • Core Account Security (Lab)
  • Managing Cloud Computing Security and Risk
  • IAM and Monitoring In-Depth (Lab)
  • TIMING DEPENDENT: Network and Instance Security Lab
  • Risk Assessment (lab)
  • Data Security
  • Network and Instance Security (lab, if not covered on day 1)
  • Securing Cloud Applications and Users
  • Encryption and Storage Security (lab)
  • Application Security and Federation (lab)
  • Cloud Security Operations and Incident Response Lab

Who Should Take this Course

Security professionals who need to understand cloud computing security.

Student Requirements

A basic understanding of security fundamentals. You should know what most or all of the following terms mean: IAM, federated identity, hypervisor, SSH, key management, SDLC, IDS, and DLP. We cover more, but if you know most of those, you are ready. We also highly recommend you know how to use SSH and aren't afraid of entering a few pre-scripted commands into a terminal since we will be connecting to Linux instances.

What Students Should Bring

A laptop capable of connecting to Amazon Web Services and making SSH connections.

What Students Will Be Provided With

Electronic materials

Trainers

James Arlen is a Contributing Analyst at Securosis and works full time on the security team at a major cloud provider. He has preciously offered security consulting services to the utility and financial verticals. He has been involved with implementing a practical level of information security in Fortune 500, TSE 100, and major public-sector corporations for more than 15 years. James has a recurring column on Liquidmatrix Security Digest. Best described as: "Infosec geek, hacker, social activist, author, speaker, and parent." His areas of interest include organizational change, social engineering, blinky lights and shiny things.