See discussions, stats, and author profiles for this publication at: https://www.researchgate.

net/publication/325538541

Cloud Security Training Crash Course

Presentation · June 2018

DOI: 10.13140/RG.2.2.16320.02561

CITATIONS READS

0 310

1 author:

Mostafizur Rahman Masum

University of Rajshahi
157 PUBLICATIONS   2 CITATIONS   

SEE PROFILE

Some of the authors of this publication are also working on these related projects:

Systems Engineering Training View project

Aerospace & Defense Engineering Training View project

All content following this page was uploaded by Mostafizur Rahman Masum on 03 June 2018.

The user has requested enhancement of the downloaded file.

 Call Tonex Experts Today
+1-972-665-9786

Cloud Security
Price: $2,999.00 Course Number: 6001 Length: 3 Days

Training Crash Course

https://www.tonex.com/training-courses/cloud-security-training/
Why Tonex ?

Since 1993, Tonex has specialized in providing industry-leading training, courses, seminars, workshops, and
consulting services across a wide range of topics to Fortune 500 companies, government organizations,
universities and privately owned businesses from around the world.
Visit our Clients Page for a complete list of Tonex customers.

Who is TONEX for?

Tonex is for any organization in need of leading edge technology training. That includes:
Companies, from Fortune 500 to small businesses in all industries
Government agencies
Contractors and System Integrator
Defense and Military
Educational Institutes, Colleges and Universities

What types of courses are offered?

You name it, we provide it. Our courses are constantly updated to keep up with the latest technology, and we
continuously monitor business trends and world events to provide the most relevant subject matter anywhere.
Topic in this presentation:

• Objectives
• Outline
• Cloud computing Security Framework
• Cloud Security Reference Model
• Overview of Cloud Security Risks
• General Cloud Security Challenges
• Cloud Security Control Model
• Governing in the Cloud
• TONEX Cloud Security Recommendations and Roadmaps

Cloud Security Training Crash Course TAKE THIS COURSE

https://www.tonex.com/training-courses/cloud-security-training/
Who Should Attend

• IT professional
• information security
• privacy practitioners
• business managers
• service providers

Cloud Security Training Crash Course TAKE THIS COURSE

https://www.tonex.com/training-courses/cloud-security-training/
Cloud Security Training Boot Camp by TONEX gives specialized subtle elements on data,
information , and capacity security in the cloud. All parts of verification, classification,
uprightness, accessibility and security dangers and alleviations are secured.

IaaS/PaaS/SaaS (SPI) for foundation, stage, and programming as an administration demonstrate,

security as an administration angles are examined. The course addresses put away information
secrecy, cloud supplier tasks, personality and access administration in the cloud, accessibility
administration and in addition security.

TONEX Cloud Security Training Crash Course or Boot Camp . TONEX Cloud Security Training
Crash Course as a Bootcamp style, is concentrated, 3-days in length learning encounters that
cover the fundamental components of Cloud Security. Bootcamp are perfect for occupied
experts who need to remain current in their fields however have restricted time to be far from
the workplace.

Cloud Security Training Crash Course TAKE THIS COURSE

https://www.tonex.com/training-courses/cloud-security-training/
“ IaaS/PaaS/SaaS (SPI)
for infrastructure,
platform, and software
as a service model,
security as a service
aspects are discussed ”.

Cloud Security Training Crash Course TAKE THIS COURSE

https://www.tonex.com/training-courses/cloud-security-training/
All boot camp includes:

• Experienced instructors including senior technology leaders, project managers, technical

authors, engineers, educators, consultants, course developers, and CTOs.
• Real life examples and practices.
• Small class size.
• Personalized instructor mentoring.
• Pre-training discussions
• Ongoing post-training support via e-mail, phone and WebEx.

Cloud Security Training Crash Course TAKE THIS COURSE

https://www.tonex.com/training-courses/cloud-security-training/
Objectives

• Audit the present condition of information security and capacity in the cloud, including
secrecy, honesty, and accessibility
• Find out about the character and access administration (IAM) hone for validation, approval,
and reviewing of the clients getting to cloud administrations
• Find which security administration structures and guidelines are applicable for the cloud
• Comprehend the protection angles you have to consider in the cloud, incorporating how
they contrast and conventional figuring models
• Take in the significance of review and consistence works inside the cloud, and the different
guidelines and systems to consider
• Analyze security conveyed as an administration an alternate aspect of cloud security.

Cloud Security Training Crash Course TAKE THIS COURSE

https://www.tonex.com/training-courses/cloud-security-training/
Outline

• What Is Cloud Computing?

• Cloud Deployment Models
• Cloud Computing Reference Architecture
• Technical Description of Cloud
• Layers
• Clients
• Applications
• Platforms
• Infrastructure
• Servers
• Building Cloud Networks
• Virtualization Overview
• Federation, Presence, Security, and Privacy in the Cloud
• Cloud Computing Standards and Best Practices
• Deployment models
• Public Cloud
• Security and Access Control
• Managing End-User Access to Cloud Computing'
• Assets supported by the cloud

Cloud Security Training Crash Course TAKE THIS COURSE

https://www.tonex.com/training-courses/cloud-security-training/
“ Federation, Presence,
Security, and Privacy in
the Cloud ”.

Cloud Security Training Crash Course TAKE THIS COURSE

https://www.tonex.com/training-courses/cloud-security-training/
Cloud computing Security Framework

• Security issues associated with the cloud

• Dimensions of cloud security
• Infrastructure Security
• Security and privacy
• Data Security and Storage
• Identity and Access Management
• Security Management in the Cloud
• Physical and personnel security
• Availability
• Application security
• Privacy
• Audit and Compliance
• Business continuity and data recovery
• Logs and audit trails
• Unique compliance requirements
• Legal and contractual issues

Cloud Security Training Crash Course TAKE THIS COURSE

https://www.tonex.com/training-courses/cloud-security-training/
Cloud Security Reference Model

• Types of assets, resources, and information being managed

• Who manages them and how
• Which controls are selected and how they are integrated
• Compliance issues
• Software as a Service (SaaS)
• Platform as a Service (PaaS)
• Infrastructure as a Service (IaaS)
• Introduction to Cloud Computing
• Defining cloud computing
• Building a Business Case
• Calculating the financial implications
• Preserving business continuity
• Migrating to the Cloud
• Technical considerations
• Planning the migration
• Exploiting Software as a Service (SaaS)
• Exploiting Platform as a Service (PaaS)
• Exploiting Infrastructure as a Service (IaaS)
• Accessing IaaS

Cloud Security Training Crash Course TAKE THIS COURSE

https://www.tonex.com/training-courses/cloud-security-training/
Overview of Cloud Security Risks

• Loss of Governance
• Lock-In
• Isolation Failure
• Compliance Risks
• Management Interface Compromise
• Data Protection
• Insecure or Incomplete Data Deletion
• Malicious Insider
• Redundancy / Disaster Recovery
• Network management
• Modifying network traffic
• Privilege escalation
• Social engineering attacks (ie, impersonation)
• Loss or compromise of operational logs
• Loss or compromise of security logs (manipulation of forensic investigation)
• Unauthorized access to premises (including physical access to machines and other facilities)
• Theft of computer equipment
• Natural disasters
• Vulnerabilities

Cloud Security Training Crash Course TAKE THIS COURSE

https://www.tonex.com/training-courses/cloud-security-training/
“Learn the importance
of audit & compliance
functions within the
cloud, and the various
standards & frameworks
to consider”.

Cloud Security Training Crash Course TAKE THIS COURSE

https://www.tonex.com/training-courses/cloud-security-training/
General Cloud Security Challenges

• Email and Web Security

• Granular Email and Web Controls
• Data Loss Prevention (DLP)
• Real-time Transaction Level Reporting
• Trusting vendor’s security model
• Customer inability to respond to audit findings
• Obtaining support for investigations
• Indirect administrator accountability
• Proprietary implementations can’t be examined
• Loss of physical control
• Securing Cloud Provisioning Services
• Securing Cloud Data Storage Services
• Securing Cloud Processing Infrastructure
• Securing Cloud Support Services
• Cloud Network and Perimeter Security
• Distributed DoS protection
• VLAN capabilities
• Perimeter security (IDS, firewall, authentication)
• Virtual zoning with application mobility

Cloud Security Training Crash Course TAKE THIS COURSE

https://www.tonex.com/training-courses/cloud-security-training/
Cloud Security Control Model

• Applications
• Data and Information
• Management
• Network
• Trusted Computing
• Compute and storage
• Physical
• Compliance Model
• Security as a Service
• Managing Identity in the Cloud
• Securing Public Clouds
• Securing Private Clouds
• Securing Community Clouds
• Securing Hybrid Clouds
• Data Center Operations
• Incident Response
• Encryption and Key Management
• Identity, Entitlement, and Access Management
• Virtualization

Cloud Security Training Crash Course TAKE THIS COURSE

https://www.tonex.com/training-courses/cloud-security-training/
Governing in the Cloud

• Governance and Enterprise Risk Management

• Legal Issues: Contracts and Electronic Discovery
• Compliance and Audit Management
• Information Management and Data Security
• Interoperability and Portability
• Infrastructure Security
• The Network Level
• The Host Level
• The Application Level
• Data Security and Storage
• Aspects of Data Security
• Data Security Mitigation
• Provider Data and its Security
• Risk assessment
• Risk assessment process
• Policy and organizational risks
• Loss of governance

Cloud Security Training Crash Course TAKE THIS COURSE

https://www.tonex.com/training-courses/cloud-security-training/
“ Migrating to the Cloud
Technical considerations
Planning the migration “.

Cloud Security Training Crash Course TAKE THIS COURSE

https://www.tonex.com/training-courses/cloud-security-training/
TONEX Cloud Security Recommendations and Roadmaps

• Identity and Access Management

• Trust Boundaries and IAM
• Cloud Authorization Management
• Cloud Service Provider IAM Practice
• Security Management in the Cloud
• Availability Management
• Access Control
• Security Vulnerability, Patch, and Configuration Management
• Privacy
• S. Laws and Regulations
• International Laws and Regulations
• Audit and Compliance
• Internal Policy Compliance
• Governance, Risk, and Compliance (GRC)
• Auditing the Cloud for Compliance
• Security-As-a-[Cloud] Service
• Key Control Areas
• Contraindications
• Control Details

Cloud Security Training Crash Course TAKE THIS COURSE

https://www.tonex.com/training-courses/cloud-security-training/
Cloud Security Training Crash Course TAKE THIS COURSE
https://www.tonex.com/training-courses/cloud-security-training/
 Cloud Security
Training Crash Course
Price: $2,999.00 Course Number: 6001 Length: 3 Days
https://www.tonex.com/training-courses/cloud-security-training/

TAKE THIS COURSE

 https://www.tonex.com/
View publication stats