Domain 3 Summary
Video Activity
Join over 3 million cybersecurity professionals advancing their career
Sign up with
Required fields are marked with an *
or
Already have an account? Sign In »
Time
12 hours 57 minutes
Difficulty
Intermediate
CEU/CPE
13
Video Transcription
00:00
>> Here we are at the end of domain 3.
00:00
In this lesson we're going to review
00:00
the topics we covered in a domain 3,
00:00
talk about the importance of these topics related
00:00
to Cloud infrastructure security
00:00
that we covered in domain 3.
00:00
Then we will also relate some of the topics that we
00:00
covered in domain 1 and 2 to domain 3.
00:00
In domain 3 we covered a lot of different topics.
00:00
Primarily, we talked about
00:00
the components of cloud infrastructure,
00:00
how to maintain and secure them.
00:00
We talked about Cloud data centers.
00:00
We went through the importance
00:00
of the data center location.
00:00
The responsibility that the Cloud provider
00:00
has for maintaining
00:00
the physical security of the data center.
00:00
We talked about many of the important aspects of
00:00
the design of the data center
00:00
when it comes to redundancy,
00:00
temperature control, humidity, how
00:00
servers are aligned to optimize the cooling.
00:00
Then we also went into some of
00:00
the risks that face Cloud infrastructure.
00:00
We also then went into many of
00:00
the countermeasures that can be implemented
00:00
to protect Cloud environments.
00:00
We went from the inside out talking about
00:00
the logical protections that
00:00
were needed to protect the middleware.
00:00
Then we move down to the configurations of
00:00
the virtual machines and
00:00
the hypervisor and then we
00:00
also talked about the hardware,
00:00
and then finally at the physical layer.
00:00
Then from there we moved in and talked about
00:00
business continuity and disaster recovery.
00:00
Business continuity is the restoration of
00:00
continued business operations
00:00
>> and then disaster recovery
00:00
>> focuses on how do we recover
00:00
the technical aspects that
00:00
are most crucial to our business.
00:00
We went through all the considerations related
00:00
to how a disaster is declared,
00:00
how you prioritize and create
00:00
an effective disaster recovery plan and then what are
00:00
the ways to test and make sure that
00:00
your organization is ready in
00:00
the event that a disaster is declared.
00:00
Let's reflect. We covered a lot of material
00:00
>> in domain 3.
00:00
>> I want you to really think
00:00
about what Cloud infrastructure
00:00
are you responsible for protecting?
00:00
Do you need to monitor and
00:00
coordinate the access between
00:00
yourself as a Cloud customer,
00:00
the provider, and potential third parties?
00:00
How are you ensuring that there's proper testing in
00:00
your environment with regards
00:00
to security, incident responses?
00:00
Do you have proper configuration setup
00:00
on your virtual machines
00:00
or your operating systems if
00:00
you're using platform as a service?
00:00
Then I want you to think about how familiar are
00:00
you with your organization's business
00:00
>> continuity process?
00:00
>> As we said, I think a lot of people were surprised by
00:00
the business continuity you need to plan
00:00
for a global pandemic about a year ago.
00:00
I think many organizations have
00:00
refreshed and thought about what
00:00
could be possible out there and what could
00:00
impact your business operations and how you
00:00
can employ strategies to protect the people who
00:00
work for your organization and get
00:00
back and up and running as soon as possible.
00:00
Then what is your disaster recovery process?
00:00
We talked about how the concepts we talked about
00:00
in domain 1 related to business impact analysis
00:00
helped you prioritize the systems that are most
00:00
critical to the business use case for
00:00
>> going to the Cloud.
00:00
>> Now you have to figure out how you're going to restore
00:00
those elements of your Cloud infrastructure
00:00
in a timely manner to preserve the business.
00:00
You're going to have to figure out
00:00
the disaster recovery metrics
00:00
for establishing effective disaster recovery,
00:00
and then you're going to need to test and
00:00
practice and hone your disaster recovery
00:00
processes to ensure that your staff are properly
00:00
trained to respond when an emergency strikes.
00:00
In summary, we talked about
00:00
the topics covered in domain 3.
00:00
Talked about the importance of domain 3.
00:00
That this is really helping
00:00
you either evaluate the controls
00:00
that a Cloud provider has or if you are a
00:00
>> Cloud provider,
00:00
>> ensuring that you have appropriate controls in
00:00
place and when it comes to the physical protection,
00:00
the hardware protection and maintenance and the
00:00
administration of virtualized systems and middleware.
00:00
Then we talked about how the concepts of
00:00
domain 3 affect organizations.
00:00
You really have to understand
00:00
what are the most important
00:00
priorities for your organization.
00:00
Which systems are most critical to
00:00
restore business operations after a disruption and
00:00
then also understand the process of how to design
00:00
effective disaster recovery and
00:00
ensure it's effective when you need it.
00:00
I will see you in the next lesson.
Up Next
Instructed By
Similar Content
