Looking for Global training? Go to https://firebrand.training/en or stay on the current site (Danmark)

X

CSA Firebrand's training for CSA's Certified Cloud Security Knowledge (CCSK) exam

- Kun 2 dage

On this 2-day accelerated Firebrand course for CSA's Certificate of Cloud Security Knowledge (CCSK) exam, you'll validate your understanding of the best practices surrounding cloud security. This Firebrand course, designed to deliver knowledge equivalent to the CSA's CCSK Basic and the CCSK Plus, aims to ensure that you have a demonstrated awareness of the security threats facing your cloud infrastructure.

On this Firebrand course you'll cover:

  • A comprehensive review of cloud security fundamentals
  • The major domains in the latest Guidance document from Cloud Security Alliance (CSA)
  • Recommendations from the European Network and Information Security Agency (ENISA)
  • Expanded material and hands-on tasks in a series of exercises that include bringing a fictional organisation securely into the cloud.

Firebrand's unique Lecture | Lab | Review technique combines both theoretical knowledge with practical, hands-on skills. This technique will accelerate your learning and ensure you have the ability to apply your new found knowledge as soon as you return to work.

Læs mere...

As part of Firebrand' own course, you'll be prepared for and sit the CSA Certificate of Cloud Security Knowledge (CCSK) exam. This is covered by your Certification Guarantee.

This course is aimed at a broad range of professionals with responsibilities related to cloud computing and security.

Se Benefits...

Det tager kun et øjeblik at se hvor billigt dit kursus er...

Her er 4 gode grunde til at du skal tage CCSK hos Firebrand:

  1. Du bliver CCSK uddannet og certificeret hurtigere. Du lærer mere på vores 6 dages accelererede kursus og får mindst 12 timers daglig uddannelse i et distraktionsfrit miljø.
  2. Dit CCSK kursus er alt-inklusiv. Du får en gennemskuelig pris, der dækker alle kursusmaterialer, eksamen, overnatning og forplejning. Du skal ikke tænke på andet end at lære.
  3. Bestå CCSK den første gang eller kom tilbage, gratis. Din instruktør er ekspert, og træner dig ud fra accelererede metoder, så du lærer hurtigere og har de bedste muligheder for at bestå eksamen første gang. Men hvis du mod forventning ikke består, er du dækket af vores Certificeringsgaranti.
  4. Tag CCSK hos en prisvindende uddannelsesleverandør. Vi har vundet adskillige udmærkelser heriblandt Microsofts "Årets Learning Partner" hele fem gange og to Børsen Gazelle priser. Firebrand er din hurtigste vej til uddannelse, og vi har sparet 70,000 deltagere for mere end en million spildte timer siden 2001.

Er du klar til kurset? Tag en GRATIS test som hjælper dig med at bedømme din nuværende viden.

On this Firebrand Course, you'll cover the following topics:

Domain 1: Cloud Computing Concepts and Architectures

  • Defining Cloud Computing
  • Definitional Model
    • Essential Characteristics
    • Service Models
    • Deployment Models
  • Reference and Architecture Models
    • Infrastructure as a Service
    • Platform as a Service
    • Software as a Service
  • Logical Model
  • Cloud Security and Compliance Scope and Responsibilities
  • Cloud Security Models
    • A Simple Cloud Security Process Model
  • Governing in the Cloud
  • Operating in the Cloud

Domain 2: Governance and Enterprise Risk Management

  • Governance
    • Tools of Cloud Governance
  • Enterprise Risk Management
  • The Effects of Service Model and Deployment Model
    • Service Models
    • Deployment Models
    • Cloud Risk Management Trade-Offs
    • Cloud Risk Management Tools

Domain 3: Legal Issues, Contracts and Electronic Discover

  • Legal Frameworks Governing Data Protection and Privacy
    • Common Themes
    • Required Security Measures
    • Restrictions to Cross-border Data Transfers
    • Regional Examples – GDPR, NIS Directive, US Federal and State Laws
  • Contracts and Provider Selection
    • Internal Due Diligence
    • Monitoring, Testing, and Updating
    • External Due Diligence
    • Contract Negotiations
    • Reliance on Third-Party Audits and Attestations
  • Electronic Discovery
    • Possession, Custody and Control
    • Relevant Cloud Applications and Environment
    • Searchability and E-Discovery Tools
    • Preservation
    • Data Retention Laws and Record Keeping Obligations
    • Collection
    • Direct Access
    • Native Production
    • Authentication
    • Cooperation Between Provider and Client in E-Discovery
    • Response to a Subpoena or Search Warrant
    • More Information

Domain 4: Compliance and Audit Management

  • Compliance
    • How Cloud Changes Compliance
  • Audit Management
    • How Cloud Changes Audit Management

Domain 5: Information Governance

  • Cloud Information Governance Domains
  • The Data Security Lifecycle
    • Locations and Entitlements
    • Functions, Actors, and Controls

Domain 6: Management Plane and Business Continuity

  • Business Continuity and Disaster Recovery in the Cloud
    • Architect for Failure
  • Management Plane Security
    • Accessing the Management Plane
    • Securing the Management Plane
    • Management Plane Security When Building/Providing a Cloud Service
  • Business Continuity and Disaster Recovery
    • Business Continuity Within the Cloud Provider
    • Business Continuity for Loss of the Cloud Provider
    • Business Continuity For Private Cloud and Providers

Domain 7: Infrastructure Security

  • Cloud Network Virtualisation
  • How Security Changes With Cloud Networking
    • Challenges of Virtual Appliances
    • SDN Security Benefits
    • Microsegmentation and the Software Defined Perimeter
    • Additional Considerations for Cloud Providers or Private Clouds
    • Additional Considerations for Cloud Providers or Private Clouds
  • Cloud Compute and Workload Security
    • How Cloud Changes Workload Security
    • Immutable Workloads Enable Security
    • The Impact of Cloud on Standard Workload Security Controls
    • Changes to Workload Security Monitoring and Logging
    • Changes to Vulnerability Assessment
    • Cloud Storage Security

Domain 8: Virtualisation and Containers

  • Major Virtualisation Categories Relevant to Cloud Computing
    • Compute
  • Network
    • Monitoring and Filtering
    • Management Infrastructure
    • Cloud Overlay Networks
  • Storage
  • Containers

Domain 9: Incident Response

  • Incident Response Lifecycle
  • How the Cloud Impacts IR
    • Preparation
    • Detection and Analysis
    • Containment, Eradication and Recovery
    • Post-mortem

Domain 10: Application Security

  • Introduction to the Secure Software Development Lifecycle and Cloud Computing
  • Secure Design and Development
  • Secure Deployment
    • Impact on Vulnerability Assessment
    • Impact on Penetration Testing
    • Deployment Pipeline Security
    • Impact of Infrastructure as Code and Immutable
  • Secure Operations
  • How Cloud Impacts Application Design and Architectures
  • Additional Considerations for Cloud Providers
  • The Rise and Role of DevOps
    • Security Implications and Advantages

Domain 11: Data Security and Encryption

  • Data Security Controls
  • Cloud Data Storage Types
  • Managing Data Migrations to the Cloud
    • Securing Cloud Data Transfers
  • Securing Data in the Cloud
    • Cloud Data Access Controls
    • Storage (At-Rest) Encryption and Tokenization
    • Key Management (Including Customer-Managed Keys)
  • Data Security Architectures
  • Monitoring, Auditing, and Alerting
  • Additional Data Security Controls
    • Cloud Platform/Provider-Specific Controls
    • Data Loss Prevention
    • Enterprise Rights Management
    • Data Masking and Test Data Generation
  • Enforcing Lifecycle Management Security

Domain 12: Identity, Entitlement, and Access Management

  • How IAM is Different in the Cloud
  • IAM Standards for Cloud Computing
  • Managing Users and Identities for Cloud Computing
  • Authentication and Credentials
  • Entitlement and Access Management
  • Privileged User Management

Domain 13: Security as a Service

  • Potential Benefits and Concerns of SecaaS
  • Major Categories of Security as a Service Offerings
    • Identity, Entitlement, and Access Management Services
    • Cloud Access and Security Brokers (CASB, also known as Cloud Security Gateways)
    • Web Security (Web Security Gateways)
    • Email Security
    • Security Assessment
    • Web Application Firewalls
    • Intrusion Detection/Prevention (IDS/IPS)
    • Security Information & Event Management (SIEM)
    • Encryption and Key Management
    • Business Continuity and Disaster Recovery
    • Security Management
    • Distributed Denial of Service Protection

Domain 14: Related Technologies

  • Big Data
    • Security and Privacy Considerations
    • Data Collection
    • Key Management
    • Security Capabilities
    • Identity and Access Management
    • PaaS
  • Internet of Things (IoT)
  • Mobile
  • Serverless Computing

Se Exam Track...

You'll sit the following exam at the Firebrand Training Centre, covered by your Certification Guarantee:

  • CSA Certificate of Cloud Security Knowledge (CCSK) exam

Additional exam information:

  • 60 online multiple choice questions
  • Time limit: 90 minutes
  • Pass rate: 80%

Se What's Included...

Det hele er inkluderet! Du får en alt-inklusiv kursuspakke, som er målrettet til dine behov. Vi tager os af enhver detalje, så det eneste du skal fokusere på er dine lærings- og certificeringsmål.

  • Transport til/fra specifikke afhentningssteder
  • Overnatninger, samtlige måltider samt adgang til forfriskninger, snacks, kaffe og the.
  • Intensiv Hands-on uddannelse med vores unikke (Lecture | Lab | Review)TM metode
  • Omfattende kursusmaterialer og labmanualer
  • Et helt igennem instruktørstyret program
  • 24 timers adgang til både undervisningslokale og instruktøren
  • Samtlige måltider samt adgang til forfriskninger, snacks, kaffe og the.
  • Certificeringsgaranti

Se Prerequisites...

You should have a basic understanding of security fundamentals, such as firewalls, secure development, encryption and identity management.

Er du klar til dit Firebrand Kursus?

Vi interviewer alle potentielle deltagere angående deres baggrund, uddannelser, certificeringer og personlig indstilling. Hvis du kommer igennem denne screeningsprocedure, betyder det, at du har rigtig gode chancer for at bestå.

Firebrand Training tilbyder et ambitiøst uddannelsesmiljø, som forudsætter at du dedikerer dig til kurset. Ovenstående forkundskaber er vejledende; mange deltagere med mindre erfaring, men med en anden baggrund eller færdigheder, har haft succes med accelereret uddannelse hos Firebrand Training.

Hvis du funderer på hvorvidt du opfylder de anbefalede forkundskaber, er du meget velkommen til at ringe til os på 78 79 16 53 og tale med en af vores uddannelsesrådgivere, som kan hjælpe dig.

Se Hvornår...

CSA CCSK Kursusdatoer

Starter

Slutter

Tilgængelighed

Sted

Tilmelding

25/11/2019 (Mandag)

26/11/2019 (Tirsdag)

Afsluttet

-

 

30/3/2020 (Mandag)

31/3/2020 (Tirsdag)

Venteliste

Landsdækkende

 

11/5/2020 (Mandag)

12/5/2020 (Tirsdag)

Begrænsede pladser

Landsdækkende

 

22/6/2020 (Mandag)

23/6/2020 (Tirsdag)

Tilgængelige pladser

Landsdækkende

 

3/8/2020 (Mandag)

4/8/2020 (Tirsdag)

Tilgængelige pladser

Landsdækkende

 

14/9/2020 (Mandag)

15/9/2020 (Tirsdag)

Tilgængelige pladser

Landsdækkende

 

Vi har uddannet over 75.044 personer i løbet af 12 år. Vi har bedt dem alle om at bedømme vores accelererede kurser. Aktuelt har 96,79% sagt, at Firebrand oversteg deres forventninger:

"Et intensivt og meget udbytterigt kursus. Et behageligt og uhøjtideligt undervisningsmiljø med repræsentation af forskellige brancher, hvilket giver et højt udbytte."
Wickie Andersen, Albjergs Maskintec A/S. (27/6/2016 til 1/7/2016)

"Relevant, klart og godt!"
Anders von der Recke, Otaku IT. (22/6/2016 til 23/6/2016)

"En perfekt måde og modtage intensiv målrettet træning på, uden at blive båret igennem. Det er hårdt men relevant."
Jesper Munkholm. (23/5/2016 til 29/5/2016)

"Det var benhårdt, men jeg lærte utroligt meget på kort tid."
Kåre Schmidt, Also A/S. (26/5/2016 til 28/5/2016)

"Dygtig instructør med god erfaring"
Ralph Kristensen, Nissens A/S. (23/5/2016 til 27/5/2016)

Seneste anmeldelser fra vores studerende