Part of the Cloud Security Alliance CCSK Suite
Learn to embrace cloud and build secure and resilient applications and infrastructure that blow away what you can do in traditional environments. This advanced training program covers cutting-edge techniques for building secure cloud deployments, from networking and identity management through application security and serverless architectures. This two day training is predominantly hands-on labs as we build out a secure cloud environment and cloud-native application architecture, then create a deployment pipeline with integrated security testing. We finish with security automation and a live fire incident response exercise. All labs are in Amazon Web Services but we also discuss the implementation differences for Azure and Google Compute Platform.
Real-world cloud security is most definitely not business as usual. The fundamental abstraction and automation used to build cloud platforms upends much of how we implement security. The same principles may apply, but how they apply is dramatically different, especially at enterprise scale.
This highly technical course expands the basics of our Cloud Security Hands on Training and delves deep into practical cloud security and applied DevSecOps for enterprise-scale cloud deployments. It focuses completely on Infrastructure and Platform as a Service, and will not cover Software as a Service. The training is technical and will not cover policies, risk, or governance issues except as they come up in passing.
We begin on day one with an in-depth discussion of cloud platform technologies; giving you a look into how the services are built and managed, and the security implications. We will then quickly start building out a landing zone in Amazon Web Services and a multi-account sandbox environment and deploying security controls.
Day two shifts gears to focus on designing secure architectures, integrate with DevOps, and build your own DevSecOps toolkit for managing cloud security at scale: