Cloud Security Course: Cloud Compliance, Audits,Legal issues

Why Cloud Security?

Breaches can or do happen in cloud, in fact breaches are happening in cloud. In Marriott Starwood Hotels data breach some 327 million guest records were compromised that contained information such as name, mailing address, phone number, email address, passport number, Starwood Preferred Guest accounting information, date of birth, gender, arrival and departure information, reservation date, and communication preferences.

In cloud Security, we will learn certain best practices in regards to securing data; organizations stand a much better chance of ensuring their data is safe.

What is Cloud Security?

Cloud security, also known as cloud computing security, consists of a set of policies, controls, procedures and technologies that work together to protect cloud-based systems, data and infrastructure.

You will learn Core Cloud Computing Concepts which essential to understand before digging to Cloud Security.

• What is Cloud Computing

• Details about all 5 Cloud Characteristics in Detail

• On Demand Self Service

• Broad Network Access

• Resource Pooling

• Rapid Elasticity

• Measured Service

This course has divided in 5 Major Sections.

1. Understand Cloud Agreements/Contracts

2. Cloud Assets and Secure Configuration Management

3. Protecting data from UN-Authorized Access

4. Handling Security Incidents with Cloud Service Provider

5. Legal and Compliance

This is not a complete list; one can check for recommendations by NIST, CSA STAR and implement security in organization as per their own unique requirement.

What you will learn

1. Understand Cloud Agreements/Contracts

In this section, you will learn importance of Contracts. How you can negotiate with Cloud Service providers for items to cover in contract to avoid future penalties. You will learn major artifacts for CSA (Cloud Service Agreement). You will learn important concepts like SLA in CLOUD, Acceptable use policy in Cloud.

2. Cloud Assets and Secure Configuration Management

In this section, you will learn assets discovery issues in cloud, how to have complete asset discovery in cloud for effective security and compliance. You will learn Challenges in Cloud Asset Discovery, SecDevops and secure configuration. You will vulnerability and patch management in cloud.

3. Protecting data from UN-Authorized Access

In this Section, you will learn various issues you can consider to protect un-authorized access of data in cloud. You will learn various concerns like Cloud Deployment Model and Security Concerns, Location of data, what kind of Data Sensitivity and Legal Obligations would be there in cloud. How to do Media Sanitization in Cloud and many more.You will learn about IAAS, PAAS and SAAS Security issues.

4. Handling Security Incidents with Cloud Service Provider

In this Section, you will learn what to check in CSP incident response and Security Notification process, Incident response process in a cloud. You will also learn what kind log data / Support can be obtain from CSP during forensics investigations.

5. Legal and Compliance

In this Section, you will learn Information Management Legal Responsibilities, what are different types of legal issues in cloud. E-discovery issues in Cloud, What Regulations to follow in Cloud and Jurisdictional and Location issues in cloud environment.

See Students feedback about My Cloud Security Course here on Udemy:

"Well structured and clarified the concepts".  ---Girish K V

"Good information. Covering all the basics. Very satisfied with the content." -----By Kevin Scott

"The course is very informative" ---By Srinivasa Rao Veeramaneni

"Varinder is a very good instructor. Clear communication, use of practical examples and the delivery method were all spot on for me. I'd love to see some questions at the end of each section / topic as a way of fostering listener interaction and gauging depth of understanding otherwise, great lecture set all around. I'll definitely recommend." ------Oshioke P Akhamie