Cloud Security Specialist (5 days)

Icon Audits, © NESEC GmbH

Cloud Know-how for Specialists

The “Cloud Security Specialist” course is our seminar with comprehensive knowledge about the cloud. In this packed week, we will cover all the issues relating to the secure use of a cloud infrastructure and identify possible solutions. Technical and organizational issues are addressed, risks and opportunities are identified and important issues such as data protection compliant use are discussed.

Your Benefit

Learn about the opportunities and risks of using the cloud and understand the underlying technical architecture.

Target

This course is aimed at

  • information security officers
  • risk managers
  • cloud architects

in companies who want to better understand the opportunities, but also the risks and threats of cloud use. The seminar is suitable for both beginners and advanced users.

Course Dates

Our next course dates:

01.07. - 05.07.2024 Hybrid: classroom in Munich and virtual classroom (VCL)4.034,10 € inkl. MwSt.
04.11. - 08.11.2024Hybrid: classroom in Munich and virtual classroom (VCL)4.034,10 € inkl. MwSt.

 

Please contact us.

Agenda

Day 1

  • Why cloud services?
    • Opportunities in the cloud
  • Cloud definition by NIST
    • NIST SP 800-145
    • Broad network access
    • On-demand self-service
    • Rapid elasticity of resourcen
    • Measured service
    • Resource pooling
  • Cloud reference architectures
    • ISO 17789
    • ENISA
  • Responsibilities
    • Cloud provider
    • Cloud user/consumer
    • Cloud broker
    • Cloud auditor
  • Cloud service models
    • Infrastruktur as a Service (IaaS)
    • Platform as a Service (PaaS)
    • Software as a Service (SaaS)
    • Other, eg  Security as a Service (SECaaS)
  • Public, private and hybrid cloud models

      Day 2

      • Basic building blocks
        • Compute
          • Virtual CPUs/cores
        • Network
          • Overlay networks
          • Storage networks
        • Storage
          • Objectstorage
          • Volume storage
          • Database storage
      • Virtualization
        • Hypervisors
      • Container
        • Docker
        • Kubernetes
      • Software development in the cloud
        • Continuous integration/continuous delivery (CI/CD)
        • Infrastructure as Code (IaC)
      • Serverless computing

      Day 3

      • information security in the cloud
        • CSA Security Guidance v4
      • Risks of cloud services
        • ENISA cloud computing security risk assessment
        • Governance, risk, compliance (GRC)
        • Availability
        • Vendor lock-in
        • Personal data protection
      • Encryption in the cloud
          • Storage encryption
          • Transport encryption
          • Key management
        • Identity management
          • Multifactor authentication
          • Risk-based authentication
        • Penetration testing of cloud services
        • Forensic analysis of cloud services
          • Logfiles
          • Procedures

        Day 4

        • IT service management in cloud environments
          • Hybrid management
          • Licensing
          • IT operations
          • Cloud migration
          • Automation
          • Self service portals
          • Service level agreements
          • KPI in cloud environments
            • Relevant performance indicators
            • Measurement equipment and measured values
        • Microsoft Azure
          • Introduction to Microsoft Azure
            • Azure virtual machines
            • Azure container instances
            • Azure Kubernetes service
            • Windows virtual desktop
          • Azure storage
            • Azure blob storage
            • Azure disk storage
            • Azure file storage
          • Azure security
            • Azure Entra ID identity protection (cloud only)
            • Azure Entra ID (authentication)
            • Azure information protection und Windows information protection
          • Microsoft 365
            • Office, Active Directory, cloud integration

        Day 5

        • Amazon AWS
          • Introduction to Amazon Web Services
            • Usage based pricing
            • AWS well architected framework
            • Advantages of cloud computing
          • Amazon Elastic Compute Cloud (Amazon EC2)
          • Basic concepts of availability zones
          • Public and private network resources
          • Amazon storage
            • Amazon Elastic Block Store (Amazon EBS)
            • Amazon Simple Storage Service (Amazon S3)
            • Amazon Elastic File System (Amazon EFS)
            • Amazon Relational Database Service (Amazon RDS)
          • Security functions
            • Basic security guidance
            • AWS Identity and Access Management (IAM)
            • AWS Trusted Advisor
            • Amazon CloudWatch / AWS CloudTrail
        • Google Cloud
        • Other cloud providers
          • Alibaba Cloud
          • Oracle Cloud
        • OwnCloud/NextCloud

        Course Material

        Each participant receives the course material (~ 500 pages) completely with training presentation and supplementary explanations completely in German language. In addition, you will receive all documents used and referenced for the creation of the seminar, provided they are freely available, as a cloud library for reference and in-depth study of individual topics.

        Your Trainer

        All our cloud seminars are conducted by experienced cloud specialists who contribute their years of experience to this course.