
Meet Anthony Sequeira, your instructor for the CCSK course, who presents cloud security across public and private environments and highlights in-demand technologies like AWS, Google Cloud Platform, and Azure.
Explore real-world cloud security concepts for the CCSK certification, covering cloud, security, DevOps, infrastructure as code, identity and access management, and secure cloud operations across production workloads.
Introducing the CCSK version 5, this lecture announces the January 1, 2026 launch and retirement of version 4, with updated videos and exam tokens on the Cloud Security Alliance site.
Discover how to access the CCSK version 5 prep kit from the Cloud Security Alliance, including the Security Guidance document and official study guide, with open-book exam insights.
Explore cloud architectures through a four-layer logical model—infrastructure, meta structure, applistructure, and info structure—highlighting security responsibilities and the shared responsibility model for designing and troubleshooting cloud networks.
Explore cloud service models - software as a service, platform as a service, and infrastructure as a service - illustrated by Gmail and cloud-based development and deployment, plus XaaS options.
Explore the four cloud deployment models—public, private, hybrid, and community—and their on-prem or off-prem distinctions, with AWS, Azure, Google Cloud Platform, and IBM Cloud.
Explore cloud infrastructure security by examining software defined networking, network security, virtualization, securing compute workloads. Secure the management plane and bolster business continuity and disaster recovery in cloud environments.
Explore cloud network security across two macro layers: underlying resources and virtualized infrastructure, and how network virtualization with VLANs, VXLANs, and SDN enables traffic isolation.
Experience a live AWS EC2 security and best practices demo that covers launching an instance, configuring security groups, key pairs, encryption, and secure termination.
Explore business continuity and disaster recovery in the cloud, balancing recovery time objective and recovery point objective, assessing outages, and using multi-cloud strategies with shared responsibility and testing.
Explore the risks and governance implications of moving to the cloud with Amazon Web Services across IaaS, PaaS, and SaaS, and understand the laws, rules, regulations, and compliance requirements.
Explore governance as the umbrella of policies, processes, and internal controls that organizations must uphold in the cloud, including contracts with providers, supplier assessments, and compliance reporting.
Explore how cloud adoption changes security risk and introduces governance trade-offs. Assess provider contracts, due diligence, residual risk, and supplier audits.
Navigate cloud legalities by identifying applicable laws, jurisdictions, industry requirements, encryption restrictions, and ensure ongoing due diligence, audits, data retention, electronic discovery, and governance with providers.
Drive cloud audit management through continuous audits, provider attestations, and artifact reviews while maintaining a detailed registry of cloud providers and services to meet compliance obligations.
Understand how cloud data storage offers diverse options—from object storage with AWS S3 to databases and dispersed data—while enforcing access controls, encryption, and secure transfers.
Explore encryption strategies for cloud and on-prem data at rest, including tokenization, client-side, server-side, and proxy-based encryption, with diverse key management options like KMS, HSM, and hybrid designs.
Explore cloud data security options, including metadata security, network segmentation, secure message queuing with SQS, and data loss prevention, monitored by CloudWatch and CloudTrail.
Explore how cloud adoption changes application security, identify key challenges and differences, and learn to test early in gold image creation to secure code before rollout.
Explore testing and assessment across traditional and cloud environments, covering static and dynamic application testing, vulnerability assessments, penetration testing, and immutable infrastructure with DevOps-driven deployment pipelines.
DevOps integrates development and operations to enable continuous integration and delivery, automate testing, and support immutable architectures, with secure, code-driven infrastructure demonstrations in AWS.
Strengthen cloud operations by hardening the management plane, embracing immutable infrastructure, enforcing change management, and leveraging serverless compute with secure microservice architectures.
Explore identity and access management concepts, from entities and identities to tokens, attributes, and personas, and learn how authentication, multifactor authentication, access control, and authorization secure cloud and on-prem environments.
Explore iam standards like saml 2.0, oauth 2.0, openid, xacml, and scim, to enable federation, authentication, authorization, and provisioning in cloud environments.
Explore cloud identity and access management through federation, identity brokers, single sign-on, and code-driven provisioning, with ABAC and MFA for secure, scalable authentication and authorization.
Evaluate how enterprise security differs between on-prem and cloud environments, review cloud provider selection, explore security as a service, and focus on incident response strategies.
Explore how security as a service from cloud providers enhances enterprise security across on-prem and cloud environments, including hybrid setups, while addressing governance, data leakage, and lock-in concerns.
Explore the CSA's additional tools for cloud security—the ENISA Cloud Computing Security Guidance Text and the Cloud Controls Matrix—and how to use them to prep for certification.
Examine virtual machines, containers, and serverless compute, clarifying provider and user security responsibilities. Implement IAM, monitoring, logging, image asset management, patches, and incident response for cloud workloads.
Explore the JSON data format, including name/value pairs, strings in quotes, and data types such as string, number, boolean, null, arrays, and objects.
Learn how to study effectively for CCSK V5 by mastering the Security Guidance PDF layout, mastering open-book exam strategies, and understanding the 120-minute, 60-question format with an 80% passing score.
Schedule exams at your preferred time, ensure a distraction-free environment, and practice with the pdf using find for quick navigation in this open-book test.
Explore next steps in cloud security education by comparing vendor-agnostic and vendor-specific certifications, with hands-on AWS, Azure, and Google Cloud pathways.
It is undeniable. Cyber security is one of the most in-demand areas of IT now, and even more so in the future. And since cloud technologies represent such a large part of modern IT infrastructure and solutions, it is only logical that a large part of the study of cyber security should focus on the cloud.
This course prepares you for success in the CCSK certification exam. To ensure this, you will gain an in-depth understanding of the full capabilities of cloud computing. You will learn the knowledge to effectively develop a holistic cloud security program relative to globally accepted standards. Finally, you will learn to employ best practices for IAM, cloud incident response, application security, and much more.
This CCSK course also features hands-on activities, plenty of review questions, and step by step guidance for success when taking the CCSK exam. This certification is considered an excellent first step for students wanting to become IT security professionals.
Topics in this course include:
Cloud computing concepts and architectures (service/deployment models, shared responsibility, reference architectures)
Cloud governance (policies/standards, data classification, vendor governance, accountability)
Risk, audit, and compliance (risk management, audit methods, compliance mapping, control assessment)
Organization management (roles/responsibilities, operating models, aligning security with business goals)
Identity and access management (identity lifecycle, authentication/authorization, federation/SSO, privileged access)
Security monitoring (cloud telemetry, logging/monitoring strategy, detection/alerting, analytics)
Infrastructure and networking (virtual networking, segmentation, secure connectivity, common cloud network risks)
Cloud workload security (VMs/containers/serverless, hardening, vulnerability/patching, runtime protection)
Data security (encryption concepts, key management, sensitive data handling, data lifecycle)
Application security (secure design, API security, CI/CD security, DevSecOps, automation)
Incident response and resilience (cloud IR considerations, visibility/evidence, recovery planning)
Related technologies and strategies (Zero Trust, AI/GenAI considerations in cloud security)
Even for those not interested in achieving the CCSK certification, this course helps to build a strong foundation in cloud security and can form the basis for expertise in this critical area of modern IT security.