Cyber Security

CCSP® Certified Cloud Security Professional

The single most comprehensive CCSP certification training course for anyone concerned with cloud security.

Upcoming Course Dates

View all course dates
Location Date Time  
Virtual Instructor-led Training | AEDT 28 October - 1 November 2024 09:00 am - 05:00 pm

Overview

CCSP® Certified Cloud Security Professional

The cloud security certification is a 5-day course where you will gain a thorough understanding of the information security risks and mitigation strategies critical to data security in the cloud in this ISC2 Certified Cloud Security Professional (CCSP) Exam Preparation course. This course covers the six domains of the Official ISC2 CCSP Common Body of Knowledge (CBK®) and prepares you to take the CCSP exam to become a Certified Cloud Security Professional.

Our Trainers Make the Difference

When you attend our CCSP training course there are actually two costs – the course fee, and the value of your time. You can see the fee. But whether you get value for your time and money depends totally on the quality of the course.

Lots of things go into making a great course, but the single most important is always the trainer: their knowledge of the subject, their real world experience that they can draw upon in the class, their ability to answer questions, their communication skills. This is what makes the difference.

  • Peter Nikitser

    Peter is exceptionally well qualified for this role and brings to bear a career spanning over 30 years in Information Technology, focusing on security even before the World Wide Web became mainstream.

    Read full bio

Learning Outcomes

  • Identify and explain the Cloud Computing concepts and definitions based on the ISO/IEC 17788 and NIST standards.
  • Identify and explain the Cloud Security Alliance’s Notorious Nine, Treacherous Twelve, Egregious Eleven, and Pandemic Eleven.
  • Understand, and be able to differentiate between, the various service delivery models, frameworks and hypervisor threats that are incorporated into the cloud computing reference architecture.
  • Demonstrate the application of appropriate security strategies and be able to recommend appropriate controls for protecting data at rest, data in use and data in motion.
  • Discuss strategies for data ownership, data sovereignty, data classification and implementing appropriate measures for assurance for ensuring privacy, compliance with regulatory agencies and working with authorities during legal investigations.
  • Understand the challenges for data centre design, forensic analysis and cloud environment deployments and recommend appropriate risk mitigation strategies.
  • Understand and apply Business Continuity Planning and Disaster Recovery procedures for disaster situations.
  • Design appropriate identity and access management solutions.
  • Comprehend and apply appropriate processes and frameworks including the Software Development Life-Cycle (SDLC) process and secure operations.

Who Should Attend

Important Information for CCSP Candidates

Requirements:

  • Candidates must have at least five years of cumulative, paid full-time working experience in Information Technology. Three of these years must be in information security, and one of which must be in one of the six CCSP domains; or
  • Candidates who are already ISC2 members in good standing and who possess a Certified Information Systems Security Professional (CISSP) certificate may substitute all of the CCSP experience requirements on this basis; and
  • CCSP candidates who have passed the Cloud Security Alliance (CSA) Certificate of Cloud Security Knowledge (CCSK) may count this certification towards one year of experience in one of the six domains.

Course Preparation:

  • You will be asked to read essential background documents from the Cloud Security Alliance (CSA), National Institute for Standards & Technology (NIST) and the European Network and Information Security Agency (ENISA) before the course that will assist with your learning and exam preparation.

Course Contents

Introductions 

  • Course Overview
  • Review and Revision Techniques
  • The Exam, On the Day of the Exam, Exam Technique, After the Exam

Domain 1: Cloud Concepts, Architecture and Design

  • Understand cloud computing concepts
  • Describe cloud reference architecture
  • Understand security concepts relevant to cloud computing
  • Understand design principles of secure cloud computing
  • Evaluate cloud service providers

Domain 2: Cloud Data Security

  • Describe cloud data concepts
  • Design and implement cloud data storage architectures
  • Design and apply data security technologies and strategies
  • Implement data discovery
  • Implement data classification
  • Design and implement Information Rights Management (IRM)
  • Plan and implement data retention, deletion and archiving policies
  • Design and implement auditability, traceability and accountability of data events

Domain 3: Cloud Platform and Infrastructure Security

  • Comprehend cloud infrastructure and platform components
  • Design a secure data centre
  • Analyse risks associated with cloud infrastructure
  • Design and plan security controls
  • Plan Disaster Recovery (DR) and Business Continuity (BC)

Domain 4: Cloud Application Security

  • Advocate training and awareness for application security
  • Describe the Secure Software Development Life Cycle (SDLC) process
  • Apply the Secure Software Development Life Cycle (SDLC)
  • Apply cloud software assurance and validation
  • Use verified secure software
  • Comprehend the specifics of cloud application architecture
  • Design appropriate Identity and Access Management (IAM) solutions

Domain 5: Cloud Security Operations

  • Build and implement physical and logical infrastructure for cloud environment
  • Operate and maintain physical and logical infrastructure for cloud environment
  • Implement operational controls and standards (e.g., Information Technology Infrastructure Library (ITIL), International Organization for Standardization/International Electrotechnical Commission (ISO/IEC) 20000-1)
  • Support digital forensics
  • Manage communication with relevant parties
  • Manage security operations

Domain 6: Legal and Compliance

  • Articulate legal requirements and unique risks within the cloud environment
  • Understand privacy issues
  • Understand audit process, methodologies, and required adaptations for a cloud environment
  • Understand implications of cloud to enterprise risk management
  • Understand outsourcing and cloud contract design

Exam Preparation

  • CCSP Official Practice Questions
  • CCSP Workbook Review

Important note about the CCSP Exam

  • The maximum time allowed for the exam is 3 hours, which includes all rest breaks.
  • The exam has 125 questions, all of which must be answered.
  • The pass mark is 700 / 1000.
  • Trainer was fantastic and had a relatable story for pretty much every slide. He engaged with the whole course and made it very personalised. Would recommend to a friend (:

    Live Virtual Training | 2022

Testimonial

NIST Cybersecurity Framework Practitioner

read more

Fees

Certified Cloud Security Professional (CCSP) Training Course (5 days)

  • $3450 + gst

Fees include:

  • Course presentation
  • Comprehensive printed course workbook
  • Course textbook

NOTE: The CCSP exam is NOT included in the course fees.  The CCSP exam is administered by Pearson Vue on behalf of ISC2. If you wish to sit the exam you must register direct with Pearson Vue.  See below.

Prerequisites

Candidates of the Cloud Security Certification must have at least five years of cumulative, paid full-time working experience in Information Technology. Three of these must be in information security, and one of which must be in one of the six CCSP domains.

Candidates who are already ISC2 members in good standing and who possess a Certified Information Systems Security Professional (CISSP) certificate may substitute all of the CCSP experience requirements on this basis

CCSP candidates who have passed the Cloud Security Alliance (CSA) Certificate of Cloud Security Knowledge (CCSK) may count this certification towards one year of experience in one of the six domains.

Exam format

  • The maximum time allowed for the exam is 4 hours, which includes all rest breaks.
  • The exam has 125 questions, all of which must be answered.
  • The pass mark is 700 / 1000.

CCSP Exam – procedure | dates | locations

The CCSP exams are administered by Pearson Vue on behalf of ISC2. You must register for the exam  direct with PearsonVue.

A list of PearsonVue Test Centres is shown below.  For the most up-to-date listing please go to the PearsonVue ISC2 web page then click on Find a Test Centre in the upper right of the page.