Cloud Security Essentials Training Course

WHAT IS CLOUD SECURITY?

Cloud security involves adapting traditional security practices to function effectively within public cloud environments, while leveraging the shared responsibility model. It requires the continuous application of vendor-provided controls—which are often available, incomplete, or inconsistent—to safeguard an organization's applications, data, and brand reputation. This is achieved while operating in a "cloud" environment where the organization has limited direct control.

License to Learn Cloud Security

Research indicates that most enterprises have strategically chosen to deploy multi-cloud platforms, utilizing providers such as Amazon Web Services (AWS), Azure, Google Cloud Platform (GCP), and others. Mature Cloud Service Providers (CSPs) have developed a wide array of security services to help customers use their products more securely; however, these benefits are only realized if customers are aware of these services and know how to implement them correctly. This cloud security course delivers real-world lessons using security services from the "Big 3" CSPs, alongside open-source tools. Each segment of this training includes hands-on lab exercises to reinforce key concepts. We progressively layer multiple security controls throughout the course, culminating in a functional security architecture implemented in the cloud.

BUSINESS TAKEAWAYS

• Gain a comprehensive understanding of the current cloud deployment landscape
• Protect cloud-hosted workloads, services, and virtual machines
• Select appropriate services and configure them cost-effectively to adequately defend cloud resources
• Identify and address common security misconfigurations before they are deployed in the cloud
• Ensure business operations in the cloud align with industry regulations and legal requirements
• Reduce adversary dwell time in compromised cloud deployments

SKILLS LEARNED

• Navigate your organization through the security challenges and opportunities presented by cloud services
• Identify risks associated with various services offered by cloud service providers (CSPs)
• Select appropriate security controls for a given cloud network security architecture
• Evaluate CSPs based on their documentation, security controls, and audit reports
• Confidently utilize the services of leading CSPs
• Protect secrets used in cloud environments
• Leverage cloud logging capabilities to establish accountability for events within the cloud environment
• Identify risks and risk control ownership based on the deployment models and service delivery models of products offered by CSPs
• Evaluate the trustworthiness of CSPs based on their security documentation, service features, third-party attestations, and position in the global cloud ecosystem
• Secure access to the consoles used to manage CSP environments
• Implement network security controls native to both AWS and Azure
• Follow penetration testing guidelines set by AWS and Azure to simulate attacks on a full-stack cloud application