Cloud Security+ Program

Cloud Security+ course is offered by CyberForge Academy. Our instructors are experienced, qualified and have experience in developing/deploying/securing SaaS. At CyberForge Academy, we envision a world where everyone has the opportunity to learn and grow with the rapid advancements in technology.

Our vision is to be a catalyst for change, fostering a global community of learners, innovators, and leaders who are prepared to tackle the challenges of tomorrow.

The syllabus is structured to progressively build knowledge, starting from foundational cloud concepts to more complex and AWS/Azure-specific security topics, and culminating in a practical capstone project. It integrates essential cloud security aspects, ensuring a comprehensive learning experience.

Syllabus:

• Module 1: Introduction to Cloud Computing and Architecture
• Overview of Cloud Computing
• Cloud Service Models: IaaS, PaaS, SaaS
• Understanding Cloud Deployments: Public, Private, and Hybrid Clouds
• Cloud Architecture and Design Principles
• Module 2: Cloud Security Fundamentals
• Security Challenges in Cloud Computing
• Identity and Access Management in the Cloud
• Data Protection and Encryption Techniques
• Common Misconfiguration and Mistakes
• Module 3: AWS Cloud Security
• AWS Architecture and how to interact/use AWS Services
• Infrastructure Security: Securing AWS infrastructure, including VPCs, EC2, S3, and IAM.
• Identity and Access Management: IAM configuration and best practices.
• Data Protection: Techniques for data encryption, understanding AWS data protection mechanisms.
• AWS Security Services: Utilizing AWS security services for a secure production environment.
• Incident Response: Strategies and best practices for AWS incident response.
• Logging and Monitoring: Utilizing AWS CloudWatch, CloudTrail for effective logging and monitoring.
• Cost, Security, and Deployment Trade-offs: Making informed decisions regarding application requirements​
• Module 4: Azure Cloud Security
• Azure Architecture and how to interact/use Azure Services
• Identity and Access Management: Managing identities in Microsoft Entra ID, implementing MFA and single sign-on (SSO), building custom roles and managing authorization.
• Secure Networking: Implementing security for virtual networks, configuring NSGs, ASGs, and VPN gateways, ensuring TLS to applications.
• Secure Compute, Storage, and Databases: Advanced security for compute including Azure Kubernetes Service (AKS) and Azure Container Instances (ACIs), securing Azure SQL Database and Azure SQL Managed Instance, storage account access control, and data protection techniques.
• Security Operations Management: Utilizing Azure Policy and Azure Blueprint for governance, managing security posture with Microsoft Defender for Cloud, configuring threat protection and security monitoring solutions, including Microsoft Sentinel.
• Threat Protection and Response: Managing threat protection in Microsoft Defender for Cloud, configuring security alerts, workflow automation, and vulnerability scans​
• Module 5: Cloud Compliance and Risk Management
• Cloud Security Best Practices
• Compliance Standards in the Cloud (e.g., GDPR, HIPAA)
• Risk Assessment and Management in Cloud Environments
• Cloud Security Posture Management (CSPM)
• Module 6: DevSecOps in the Cloud
• Integrating Security in CI/CD Pipeline
• Automated Security Testing in DevOps
• Tools and Practices for DevSecOps in Cloud Environments