Course Outline
Day 1
1. Cloud Computing Concepts and Architecture
a) Definitions of Cloud Computing for government
- Service Models
- Deployment Models
- Reference and Architecture Models
- Logical Mode
b) Cloud Security Scope, Responsibilities, and Models
c) Areas of Critical Focus in Cloud Security for government
2. Governance and Enterprise Risk Management
a) Tools of Cloud Governance for government
b) Enterprise Risk Management in the Cloud for government
c) Effects of Various Service and Deployment Models on Governance
d) Cloud Risk Trade-offs and Tools for government
3. Legal Issues, Contracts, and Electronic Discovery
a) Legal Frameworks Governing Data Protection and Privacy in the Cloud
- Cross-Border Data Transfer
- Regional Considerations
b) Contracts and Provider Selection for government
- Contracts
- Due Diligence
- Third-Party Audits and Attestations
c) Electronic Discovery in the Cloud for government
- Data Custody
- Data Preservation
- Data Collection
- Response to a Subpoena or Search Warrant
4. Compliance and Audit Management
a) Compliance in the Cloud for government
- Impact of Compliance on Cloud Contracts
- Scope of Compliance
- Analysis Requirements for Compliance
b) Audit Management in the Cloud for government
- Right to Audit
- Scope of Audits
- Auditor Requirements
Day 2
5. Information Governance
a) Governance Domains for government
b) Six Phases of the Data Security Lifecycle and Their Key Elements for government
c) Data Security Functions, Actors, and Controls for government
6. Management Plane and Business Continuity
a) Business Continuity and Disaster Recovery in the Cloud for government
b) Architecting for Failure in the Cloud for government
c) Security of the Management Plane for government
7. Infrastructure Security
a) Cloud Network Virtualization for government
b) Security Changes with Cloud Networking for government
c) Challenges of Virtual Appliances in the Cloud for government
d) SDN Security Benefits for government
e) Micro-segmentation and the Software Defined Perimeter for government
f) Hybrid Cloud Considerations for government
g) Cloud Compute and Workload Security for government
8. Virtualization and Containers
a) Major Virtualization Categories for government
b) Network Virtualization for government
c) Storage Virtualization for government
d) Containerization for government
Day 3
9. Incident Response
a) Incident Response Lifecycle for government
b) Impact of the Cloud on Incident Response for government
10. Application Security
a) Opportunities and Challenges in Application Security for government
b) Secure Software Development Lifecycle for government
c) Impact of the Cloud on Application Design and Architectures for government
d) The Rise and Role of DevOps in Government Applications
11. Data Security and Encryption
a) Data Security Controls for government
b) Types of Cloud Data Storage for government
c) Managing Data Migrations to the Cloud for government
d) Securing Data in the Cloud for government
12. Identity, Entitlement, and Access Management
a) IAM Standards for Cloud Computing for government
b) Managing Users and Identities in the Cloud for government
c) Authentication and Credentials in the Cloud for government
d) Entitlement and Access Management in the Cloud for government
13. Security as a Service
a) Potential Benefits and Concerns of SecaaS for government
b) Major Categories of Security as a Service Offerings for government
14. Related Technologies
a) Big Data in the Cloud for government
b) Internet of Things (IoT) in the Cloud for government
c) Mobile Computing in the Cloud for government
d) Serverless Computing in the Cloud for government
Testimonials (1)
The way in which he explained to us during the 2 days and his way of being, which makes learning enjoyable.
