Conclusion

Video Activity
Join over 3 million cybersecurity professionals advancing their career
Sign up with
Required fields are marked with an *
or

Already have an account? Sign In »

Time
12 hours 57 minutes
Difficulty
Intermediate
CEU/CPE
13
Video Transcription
00:00
>> Certified Cloud Security Professional Conclusion.
00:00
Here it is, our final lesson in
00:00
the Certified Cloud security professional course.
00:00
In this lesson, we're going to review
00:00
the domains covered in the course,
00:00
talking about the importance and the concepts.
00:00
In domains one to six and then think a little bit about
00:00
how the domains that we've covered in
00:00
this course apply to your organization.
00:00
This course followed the six domains
00:00
of the certified Cloud Security Professional exam,
00:00
we started with Domain 1,
00:00
cloud concepts, architecture and design.
00:00
In that domain, we focused on
00:00
the distinct characteristics of
00:00
Cloud computing technology,
00:00
we talked about the different service models,
00:00
we talked about the deployment models.
00:00
We talked about the risks that were
00:00
associated with all the service and deployment models.
00:00
This really set the stage for many of the,
00:00
business case for how the cloud is
00:00
used to serve a business security risks
00:00
that you wouldn't and begin thinking about.
00:00
In Domain 2 Cloud data security,
00:00
we really talked about the importance of
00:00
knowing where your data is in the Cloud,
00:00
using the business impact analysis
00:00
that we had discussed in
00:00
Domain 1 to identify how to properly protect your data.
00:00
We've talked about a number of
00:00
protection technologies and approaches
00:00
such as data encryption,
00:00
the states of data,
00:00
that data life-cycle,
00:00
I hope domain to really
00:00
[inaudible] with a sense of how to
00:00
protect data in Cloud environments.
00:00
Domain 3, Cloud platform and infrastructure security.
00:00
We wanted to argue with a knowledge of
00:00
the underlying infrastructure layer of the cloud,
00:00
how to evaluate the security environmental controls
00:00
of physical data-centers that hosts cloud environments.
00:00
Then in Domain 4 Cloud application security.
00:00
We really went deep into
00:00
the software development life-cycle
00:00
and many of the major risks,
00:00
including in the [inaudible] the top threats
00:00
that affect Cloud applications.
00:00
I hope this opened your eyes
00:00
into how important it is to have
00:00
effective development environment controls as well as
00:00
effective software security testing
00:00
when developing and deploying applications in the Cloud.
00:00
In Domain 5, Cloud security operations.
00:00
We talked about how you need to
00:00
implement effective monitoring and operations in
00:00
the Cloud as well as have
00:00
effective incident response when
00:00
you suspect unusual activity.
00:00
Then in Domain 6,
00:00
legal risk and compliance.
00:00
Although we had talked about managing risk
00:00
throughout all of the previous five Domains.
00:00
In Domain six, we talked explicitly about the laws,
00:00
regulations, standards,
00:00
and frameworks that often apply to Cloud environments.
00:00
How the cloud may change,
00:00
how these regulations apply.
00:00
We talked about risk management
00:00
and how you can really think
00:00
about the broader context of
00:00
enterprise risk management and
00:00
how that applies to the Cloud.
00:00
Then we also talked about how to
00:00
evaluate vendors controls in the Cloud.
00:00
I hope you see how
00:00
all these six domains complement one another and really
00:00
overlap to arm you with a sense of how to identify risks.
00:00
Set up an effective security program that can
00:00
help protect your Cloud environments
00:00
based on your industry and business case.
00:00
All right, let's reflect one last time.
00:00
What topics did you find most interesting in this course?
00:00
From my perspective, I
00:00
think this course should arm you with
00:00
a greater awareness of the risks and how to think about
00:00
how these risks may be
00:00
mitigated through effective
00:00
controls within your environment.
00:00
Also the most important things to focus on
00:00
when implementing security controls in the Cloud.
00:00
I hope you will also see how implementing
00:00
security controls have improved
00:00
your business operations and decrease
00:00
the costs and damage
00:00
that are associated with
00:00
the risks in the Cloud environment.
00:00
Number 2, what are your top ideas for
00:00
improving your organization's Cloud security posture?
00:00
This is really where I want you to
00:00
take this course and put it into action regardless,
00:00
if you take the exam or not,
00:00
there were so many topics that we
00:00
discussed that I think can be used to
00:00
immediately be applied at
00:00
your organization if you have any impact over
00:00
policy procedures,
00:00
development, environment, infrastructure.
00:00
We covered so many different topics.
00:00
Maybe it's just awareness of
00:00
data and data security techniques.
00:00
There are so many things
00:00
that can be taken from this course and
00:00
implemented immediately to
00:00
help improve your organization.
00:00
Lastly, when is test day?
00:00
I know many people maybe taking
00:00
this class just to gain knowledge but I
00:00
really hope I've given you the
00:00
80-20 of the core concepts that you will
00:00
need to successfully pass
00:00
the Certified Cloud Security Professional exam.
00:00
I really encourage you to take this exam and to
00:00
really prove that you've gained
00:00
as much knowledge as possible from taking this course.
00:00
I think you could immediately apply these ideas
00:00
in your job, but at the same time,
00:00
I might as well get that certification to
00:00
demonstrate you have that industry knowledge.
00:00
In summary, we talked about the six domains of
00:00
the certified Cloud Security Professional exam.
00:00
Talked about the importance of those domains
00:00
and how they interrelate.
00:00
Then finally, we finished up with the next steps.
00:00
I really enjoyed creating
00:00
this course and I hope you've got a lot out of it.
00:00
Good luck on test day.