Certificate of Cloud Security Knowledge (CCSK) v.5

List cloud deployment models. Listing cloud deployment models allows proper selection of models that meet business objectives.

List cloud service models. Listing cloud service models supports architecture planning before designing in the cloud.

Recall the architecture models. Recalling the architecture models provides planning capabilities for cloud consumption.

Summarize cloud security responsibilities. Summarizing cloud scope responsibilities helps organizations assign proper roles for providers and consumers.

Review cloud governance. Reviewing cloud governance is the foundation for applying administrative controls in the cloud.

Define cloud hierarchy. Defining a cloud hierarchy provides a standard way to control resources in a cloud environment.

Select a cloud risk management approach. Selecting an approach for cloud risk management enables an organization to prepare for handling threats.

Assess cloud services. Assessing cloud services provides a path to selecting appropriate providers.

Review compliance. Reviewing compliance increases awareness of legal and regulatory considerations for operating in the cloud.

Evaluate audit inheritance to determine which controls can be skipped from further auditing.

List organization hierarchy models. Listing organization hierarchy models standardizes high-level controls from the open market providers.

Manage organizational-level security. Managing organizational-level security allows policies ot be applied to appropriate levels in your organization.

Consider Hybrid & Multi-Cloud Deployments. Considering Hybrid & Multi-Cloud Deployments provides the opportunity to select multiple providers for necessary services.

Define Identity and Access Management terminology. Defining Identity and Access Management terminology creates a common taxonomy in your organization for collaborative controls management.

Identify federation. Recognizing federation enables the correct selection of federation protocols for specific business needs.

List Authorization and Authentication architecture. List Authorization and Authentication architecture prepares your organization to select a path for accessing resources.

Define security monitoring. Defining security monitoring provides the foundation for alerting and preventing incidents.

Assessing cloud telemetry sources and architecture. Assessing cloud telemetry sources and architecture prepares your organization for selecting a logging architecture.

Identify infrastructure and networking. Identifying infrastructure and networking services enables customers to distinguish between automatic and configurable services.

Identify cloud network and architecture services. Identifying cloud network and architecture services as well as their component, informs the selection of business-required controls.

Define cloud workload security. Defining cloud workload security prepares you to use basic controls across various workloads.

Review securing containers. Reviewing security for containers enables the application of both technical and administrative controls.

Review securing serverless and FaaS. Reviewing security for serverless and FaaS enables the application of both technical and administrative controls.

List threats to AI Workloads. Listing threats to AI Workloads informs you on what needs to be mitigated.

Review securing AI workloads. Reviewing security for AI workloads enables the application of both technical and administrative controls.

Identify cloud storage. Identifying cloud storage enables you to identification that all storage is either object or volume.

List data security tools and techniques. Listing data security tools and techniques provides a path for securing data.

Apply cloud data key management strategies. Applying cloud data key management strategies enables the selection of a proper key management approach that aligns with an organization's risks.