Students will be able to define security governance policies, and principles / risk management compliance related needs and issues. Students will describe how the human component and access management is an important part of cloud security management. Students should demonstrate understanding by implementing best practices in security operations, security engineering, use of confidentiality, integrity, and availability (CIA) triad, and assessment and testing in threat evaluation and mitigation.
Each of the following Learning Objectives links to a list of materials that can be used to teach the LO.
- CSPPE-CL1: Define security-related concepts in cloud computing.
- CSPPE-CL2: Explain security-related implications of the cloud computing paradigm.
- CSPPE-CL3: Describe security policies and strategies for achieving compliance in cloud computing.
- CSPPE-CL4: Describe security-related governing laws and regulations in cloud computing.
- CSPPE-CL5: Design a secure architecture model for a cloud-enabled computing system using security design principles.
- CSPPE-CL6: Summarize best practices of cloud computing security and describe their rationale.
- CSPPE-CL7: Understand security threats in cloud computing.
- CSPPE-CL8: Explain the nature of cloud computing threat mitigation.
- CSPPE-CL9: Analyze different strategies and develop a plan for cloud computing threat mitigation.
- CSPPE-CL10: Discuss ethical principles of obtaining and use of cloud platform resources and the need to guard against bias.
- CSPPE-CL11: Discuss ethical and accountability issues of data and services among cloud platforms.
- CSPPE-CL12: Discuss transparency in services and application of using data in cloud platforms.
- CSPPE-CL13: Demonstrate intelligence analysis skills.
- CSPPE-CL14: Knowledge of critical business processes.
- CSPPE-CL15: Describe the importance of risk assessment in implementing cloud security.
- CSPPE-CL16: Explain how cloud customers and cloud service providers share responsibility for security.
- CSPPE-CL17: List some of the prominent threats to cloud security.
- CSPPE-CL18: Explain the concept of multilayered cloud data security and why it is necessary.
- CSPPE-CL19: Explain some of the services offered by data-security platforms and the integrated security services offered by cloud service providers.
- CSPPE-CL2: Discuss why regulatory compliance is important and list some of the regulations and how that applies to cloud systems.
- CSPPE-CL21: Explain how a multi-layered security strategy provides protection against different and potentially unrelated attack vectors.
- CSPPE-CL22: Discuss the security requirements for deploying applications on the cloud.
- CSPPE-CL23: Explain the concept of multilayered data security and why it is necessary.
- CSPPE-CL24: List some of the prominent threats to cloud security.
- CSPPE-CL25: Explain some of the services offered by data-security platforms and the integrated security services offered by cloud service providers.
- CSPPE-EL1: Analyze abnormal system behaviors.
- CSPPE-EL2: Demonstrate the use of security controls in the cloud computing environment.
- CSPPE-EL3: Use commonly accepted secure software development practices in cloud computing.
- CSPPE-EL4: Apply forensics techniques for investigation and analysis in cloud computing.
- CSPPE-EL5: Practice the process of cloud computing threat mitigation.
- CSPPE-EL6: Implement security policies and plans in the cloud security environment.
- CSPPE-EL7: Test for threat vulnerabilities in a cloud computing application/system (penetration testing, ethical hacking).
- CSPPE-EL9: Configure firewall rules for a specific cloud service to implement the Network layer of a multi-layered security strategy.
- CSPPE-EL10: Enable server-level auditing of a specific cloud service to implement the Auditing and Threat Protection layer of a multi-layered security strategy.
- CSPPE-EL11: Practice how to configure access to specific cloud services.