Cloud Security Practitioner Training Course
Read Reviews

Module1: Cloud Basics and Models

Topics:

• Evolution of infrastructure technology
• Virtualization and Hypervisor.
• Introduction and Benefit of the cloud
• Shared model of cloud
• Service provided by cloud
• Challenges in cloud

Exercise:

• Create Azure Free Account
• Create AWS Account

Module2: Deploy and Understand Compute and Configuration

Topics:

• Secure Instance / Virtual Machine Deployment
• Host Configuration Management
• Manage Host Configuration
• Type of Cloud Storage: Disk for Compute
• Application Security
• Threat Modelling overview
• Platform as a Service (PaaS)
• Container and Kubernetes

Exercise:

• Deploy a Virtual Machine.
• Discuss disk option, image option.
• Snapshot of Disk
• Deploy Web App.
• Deploy the Container.

Module3: Control Your Identity and Access Management

Topics:

• Lifecycle for Identity and Access Management
• Concept of Cloud Account and Least privileges: Policies and Permissions, Groups and Roles, Temporary Credentials
• Secrets Management
• Customer Account Management and External Access
• Security Loopholes in Cloud IAM Services
• More IAM Best Practices

Exercise:

• Create a cloud-based identity
• Apply roles to the account
• Create group
• Assign role
• Enable MFA
• Different Security option and Service
• Identity Audit with Identity governance feature in Azure

Module4: Deploy and Monitor Network Resources

Topics:

• Cloud Virtual Networking
• Network Segmentation
• Log Collection and Analysis
• Traffic Analysis of Cloud network
• Network Protection Services: Service Endpoints and Private Endpoints
• Restricting Access to Network via JIT
• Cloud Logging Services
• Infrastructure as Code

Exercise:

• Deploy Virtual Network
• Allow Administrative Access
• Jump Server and Bastion Host
• VPN
• Troubleshoot the virtual Network.
• Enable logging option
• Deploy Network and VM using json.

Module5: Encrypt and Protect Data

Topics:

• Lifecycle Management
• Storage Account
• Data Identification and Classification
• Cloud Service Encryption: Data at Rest Encryption, Data in Transit Encryption, Disk Level Encryption
• Data Asset Management
• Cloud Access Security Brokers (CASB)

Exercise:

• Deploy storage account with availability option
• Encryption option
• Encryption option for disk storage
• Deploy SQL Server
• Data classification and Identification
• Data Masking
• Data Encryption option

Module6: Detecting and Handling Cloud Incidents with Security Operation

Topics:

• Understand Cloud Incident Response Lifecycle: Discuss Each Phase
• Understand How SOAR Accelerates Incident Response
• Security As a Service
• Cloud Based SIEM Models

Exercise:

• Creating alert using azure monitor service.
• Microsoft Defender for Cloud
• AWS Cloud Trail
• AWS Cloud Watch and SNS
• Microsoft Sentinel

Module7: Basics of Penetration Testing and Forensic in Cloud

Topics:

• Pen Testing in Cloud
• Scope of Cloud Pen Test
• Common Steps of Pen Testing
• Cloud Forensics
• Cloud Forensics Challenges

Exercise:

• Examine Logs on Cloud
• Identify Misconfigured S3 Bucket and Publicly accessible data

Module8: Manage Business Continuity and Disaster Recovery

Topics:

• Discuss Cloud Disaster Recovery and Business Continuity
• Main Element of BC/DR in cloud
• Learn to Design Disaster Recovery and Business Continuity in Cloud

Exercise:

• Implementing Backup for VM
• Implementing DR for storage account

 Module9: Handling Legal Issue and Policy in Cloud

Topics:

• Understand the laws impacting cloud computing
• Learn the cloud computing standards
• Describe the legal frameworks for data protection and privacy
• Learn audit planning and reporting in the cloud
• Describe outsourcing and vendor management

Exercise:

• Auditing Compliance of Azure Resources by creating Policy Assignments with Azure Policy
• Conducting Security Audit in AWS with AWS Trusted Advisor

Module10: Manage GRC for the cloud

Topics:

• Understand GRC in the cloud
• Discuss cloud governance
• Learn to implement and maintain governance for cloud computing
• Discuss risk management in the cloud
• Understand risk management framework and process in the cloud
• Understand cloud compliance
• Learn to implement GRC in the cloud

Exercise:

• Deploying Policy for the restriction of deployment
• Enforce Compliance by Assigning In-built Policy and Creating Custom Policy in Azure