Cloud Security Alliance CCSK LIVE Online Training - Foundation Class 2 Days & Plus Class with 1 Addi

Starts:  Dec 9, 2021 09:00:00 AM (ET)
Ends:  Dec 13, 2021 05:00:00 PM (ET)
CCSK Foundation - 2 Day Class
The CCSK Foundation (Cloud Computing Security Knowledge) class is an instructor-led LIVE Online Training - 2 Days Class Thursday, December 9th & Friday, December 10th from 9am to 5pm

Training is conducted by CSA Delaware Valley Chapter
Training is provided by a certified CSA Instructor
Training includes 2 FREE attempts to take the CSA CCSK exam (usually $399)
As organizations migrate to the cloud, they need information security professionals who are cloud savvy. The CCSK certificate is widely recognized as the standard of expertise for cloud security, and gives you a cohesive and vendor-neutral understanding of how to secure data in the cloud. The CCSK credential is the foundation to prepare you to earn additional cloud credentials.

Course Outline:

This course is broken out into 6 modules that cover the 14 domains of the CSA Guidance and the ENISA Cloud Computing: Benefits, Risks and Recommendations for Information Security.

Module 1: Introduction to Cloud Computing. This module covers the fundamentals of cloud computing, including definitions, architectures, and the role of virtualization. Key topics include cloud computing service models, delivery models, and fundamental characteristics. It also introduces the Shared Responsibilities Model and a framework for approaching cloud security.

Module 2: Infrastructure Security for Cloud Computing. This modules digs into the details of securing the core infrastructure for cloud computing- including cloud components, networks, management interfaces, and administrator credentials. It delves into virtual networking and workload security, including the basics of containers and serverless.

Module 3: Managing Cloud Security and Risk. This module covers important considerations for managing security for cloud computing. It begins with risk assessment and governance, then covers legal and compliance issues, such as discovery requirements in the cloud. It also covers important CSA risk tools including the CAIQ, CCM, and STAR registry.

Module 4: Data Security for Cloud Computing. One of the biggest issues in cloud security is protecting data. This module covers information lifecycle management for the cloud and how to apply security controls, with an emphasis on public cloud. Topics include the Data Security Lifecycle, cloud storage models, data security issues with different delivery models, and managing encryption in and for the cloud, including customer managed keys (BYOK).

Module 5: Application Security and Identity Management for Cloud Computing. This module covers identity management and application security for cloud deployments. Topics include federated identity and different IAM applications, secure development, and managing application security in and for the cloud.

Module 6: Cloud Security Operations. This module covers key considerations when evaluating, selecting, and managing cloud computing providers. We also discuss the role of Security as a Service providers and the impact of cloud on Incident Response.

For Group Rate Discounts for 5 or more contact the Chapter President Rob Wilner at : [email protected]

*Cancellation charges may apply

*If minimum enrollment is not met, the course may be combined with another session

CCSK Plus 1 Extra Day with Additional Training and hands on labs and exercises:
The CCSK Plus class builds upon the CCSK Basic class with expanded material and extensive hands-on activities integrated into the training. Students will learn to apply their knowledge as they perform a series of exercises as they complete a scenario bringing a fictional organization securely into the cloud. Extra Day Monday, December 13th from 9am to 5pm

This expanded material includes additional lecture, although student’s will spend most of their time assessing, building, and securing a cloud infrastructure during the exercises.

Exercise 1: Core Account Security. Students learn what to configure in the first 5 minutes of opening a new cloud account and enable security controls such as MFA, basic monitoring, and IAM.

Exercise 2: IAM and Monitoring In-Depth. Attendees expand their work on the first lab and implement more-complex identity management and monitoring. This includes expanding IAM with Attribute Based Access Controls, implementing security alerting, and understanding how to structure enterprise-scale IAM and monitoring.

Exercise 3: Network and Instance Security. Students create a virtual network (VPC) and implement a baseline security configuration. They also learn how to securely select and launch a virtual machine (instance), run a vulnerability assessment in the cloud, and connect to the instance.

Exercise 4: Encryption and Storage Security: Students expand their deployment by adding a storage volume encrypted with a customer managed key. They also learn how to secure snapshots and other data.

Exercise 5: Application Security and Federation. Students finish the technical labs by completely building out a 2-tier application and implementing federated identity using OpenID.

Exercise 6: Risk and Provider Assessment. Students use the CSA CCM and STAR registry to evaluate risk and select a cloud provider. Modules and hands-on lab exercise are evenly spread over 3 days with some additional time allocated for questions, certification exams and materials etc. towards the end of the 3 rd day.

For Group Rate Discounts for 5 or more contact the Chapter President Rob Wilner at : [email protected]

*Cancellation charges may apply

*If minimum enrollment is not met, the course may be combined with another session


Cloud Security Alliance Delaware Valley Chapter (CSA-DV) is a not-for-profit organization for people interested in education, training and possible certification in cloud security. We seek to improve the understanding of cloud security and to promote the interaction of both professionals and students in order to discuss current trends and topics within the industry. Sign up for future information with the CSA-DV Newsletter at:

ABOUT INSTRUCTOR: Vana Khurana, Certified CCSK Trainer

Vana Khurana is a Cloud Security Architect in a leading financial firm. She volunteers as a Board Member and Director of Training at Cloud Security Alliance Delaware Valley Chapter. In addition, she is a speaker, a mentor, influencer and Professor Adjunct at Temple University in Philadelphia, PA. Vana has authored a book “Does Business of IT Need a Process?” She holds CCSK, CCSP, CISSP, GSEC, GCFE, AWS Architect Associate, and TOGAF certifications. She loves the economy and growth of the public cloud and its contribution to the world!
Download to Your Calendar Outlook Google


Robert Wilner
[email protected]