Enterprise Cloud Security with CCSP - Part 1 : Foundations

Name: Enterprise Cloud Security with CCSP - Part 1 : Foundations
Rating: 4.6 (14 reviews)

Master Cloud Architecture & Data Security | CCSP Domains 1 & 2 | Learn cloud models, data lifecycle, encryption, design

Created byEdiz Öztürk

Last updated 8/2025

English

What you'll learn

Understand the Core Domains of CCSP Gain comprehensive knowledge across (ISC)² CCSP domains
Apply Cloud Security Concepts in Real-World Scenarios Learn to design, manage, and secure cloud infrastructure
Prepare for the (ISC)² CCSP Certification Exam with Confidence test-taking strategies, and key concepts
Evaluate and Improve Enterprise Cloud Security Posture Develop the ability to Assess organizational cloud security maturity

Course content

3 sections • 66 lectures • 6h 20m total length

Introduction1:28
About edZconsult2:44
The Exam7:08

Domain 1 - Introduction2:36
Domain 1 - Module 1 : Understanding Cloud Computing Concepts5:03
Domain 1 - Module 1 : Cloud Computing Essentials19:14
Domain 1 - Module 1 : Deployment Models - Building Block Technologies22:12
Domain 1 - Module 2 : Cloud Reference Architecture2:36
Explore cloud reference architecture, outlining roles like provider, customer, broker, partner, and auditor, and how services are provisioned, delivered, and managed across the stack with security, privacy, resiliency, and virtualization.
Domain 1 - Module 2 : Cloud Computing Activities9:50
Domain 1 - Module 2 : Cloud Service Capabilities8:38
Domain 1 - Module 2 : Cloud Deployment Models15:31
Domain 1 - Module 2 : Cloud Shared Considerations16:38
Domain 1 - Module 2 : Impact of Related Technologies9:06
Domain 1 - Module 3 : Security Concepts Relevant to Cloud Computing1:21
Explore security concepts relevant to cloud computing, including the CIA triad and shared security responsibilities, and learn best practices for protecting data, systems, and users across cloud models.
Domain 1 - Module 3 : Crypto Key Management6:59
Domain 1 - Module 3 : Identity and Access Control3:05
Domain 1 - Module 3 : Data Sanitization4:23
Domain 1 - Module 3 : Network and Virtualization Security8:34
Domain 1 - Module 3 : Common Threats1:35
Examine cloud threats linked to virtualization, media sanitization, and network security while addressing traditional risks such as unauthorized access and data leakage, and emphasize adapting legacy controls for cloud.
Domain 1 - Module 3 : Security Hygiene6:03
Domain 1 - Module 4 : Design Principles of Secure Cloud Computing1:45
Domain 1 - Module 4 : Cloud Secure Data Lifecycle3:26
Domain 1 - Module 4 : Business Impact Analysis2:56
Domain 1 - Module 4 : Functional Security Requirements2:14
Explore functional security requirements in the cloud, focusing on portability, vendor lock, and interoperability, and learn to use vendor management plans, service level agreements, and rfps to align security needs.
Domain 1 - Module 4 : Security Considerations and Responsibilities4:29
Explore the shared responsibility model across IaaS, PaaS, and SaaS, detailing risks like multi-tenancy and hypervisor attacks, and define who secures data, identity management, and applications.
Domain 1 - Module 4 : Cloud Design Patterns5:58
Domain 1 - Module 4 : Devops Security1:41
Domain 1 - Module 5 : Evaluation of CSPs4:02
Domain 1 - Module 5 : Verification Against Criteria4:15
Domain 1 - Module 5 : Product Certification5:10
Assess product security with Common Criteria—Protection Profiles and EAL levels—alongside FIPS cryptographic module standards, and evaluate cloud security via the STAR program and CAQ based on the Cloud Control Matrix.

Domain 2 - Introduction2:49
Explore cloud concepts and architecture, data flows, and data types. Design scalable storage across public, private, and hybrid clouds with encryption, tokenization, masking, discovery, classification, and governance.
Domain 2 - Module 1 : Cloud Data Concepts3:33
Explore the cloud data lifecycle from creation to destruction, and how data dispersion across regions and data flows require encryption in transit and access controls.
Domain 2 - Module 1 : Cloud Data Life Cycle Phases15:47
Domain 2 - Module 1 : Data Dispersion4:30
Domain 2 - Module 1 : Data Flows4:00
Understand how data moves in cloud environments across in transit, at rest, and in use, and apply data lifecycle management, compliance, cloud architectures, and data loss prevention to secure data.
Domain 2 - Module 2 : Design and Implement Cloud Data Storage Architectures2:16
Explore cloud data storage architectures, compare object, block, and file storage, and learn to mitigate breaches, misconfigurations, and insecure APIs through encryption and proper access controls.
Domain 2 - Module 2 : Cloud Storage Types11:24
Explore cloud storage types—ephemeral, volume, object, database/blob, and SaaS storage—and their threats. Apply encryption, access controls, and auditing to prevent data loss, misconfigurations, and data exposure.
Domain 2 - Module 3 : Data Security Technologies and Strategies2:44
Domain 2 - Module 3 : Encryption and Key Management8:01
Explore encryption in the cloud and robust key management, including application, database, file, and volume level techniques, plus cloud KMS and customer managed keys to protect data at rest.
Domain 2 - Module 3 : Integrated Encryption and Key Management1:51
Wraps up the key management lifecycle with archiving inactive keys to preserve data availability and compliance, then highlights secret manager and certificate manager for centralized, automated renewal, issuance, and revocation.
Domain 2 - Module 3 : Hashing4:49
Domain 2 - Module 3 : Data Obfuscation3:05
Domain 2 - Module 3 : Tokenization4:55
Domain 2 - Module 3 : Data Loss Prevention3:49
Domain 2 - Module 4 : Implementing Data Discovery4:51
Domain 2 - Module 4 : Structured Data4:16
Structured data follows a predefined format, enabling storage, validation, and SQL-based querying. As cloud security professionals, we leverage discovery and classification tools to protect this high-value data in cloud platforms.
Domain 2 - Module 4 : Unstructured Data5:11
Domain 2 - Module 4 : Semi-Structured Data7:24
Domain 2 - Module 4 : Data Location7:41
Domain 2 - Module 5 : Implementing Data Classification3:39
Domain 2 - Module 5 : Data Classificaion Policies6:39
Domain 2 - Module 5 : Data Mapping6:22
Domain 2 - Module 5 : Data Labeling4:23
Domain 2 - Module 6 : Information Rights Management2:24
Master information rights management by embedding usage policies, encryption, watermarking, policy enforcement, and expiration controls into data to control access across cloud and hybrid environments, aligning with zero trust.
Domain 2 - Module 6 : IRM Objectives4:52
Embed information rights management into data to enforce rights, enable layered access control and ACL-based permissions, and uphold least privilege across on-premises, cloud, and hybrid environments.
Domain 2 - Module 6 : IRM Tools5:25
Verify revoked certificates in PKI using CRLs from the CA by serial numbers and revocation dates; use OCSP for checks, with CRL distribution, updates, expiry, and caching for cloud trust.
Domain 2 - Module 7 : Data Retention, Deletion and Archiving1:42
Domain 2 - Module 7 : Data Retention Policies3:41
Define data retention policies to govern how long data is kept, aligning with regulatory compliance, cost management, and cloud security across the data lifecycle.
Domain 2 - Module 7 : Data Retention Policies - 26:11
Domain 2 - Module 7 : Data Retention Policies - 35:53
Domain 2 - Module 7 : Data Deletion9:04
Domain 2 - Module 7 : Legal Hold5:18
Domain 2 - Module 8 : Data Events Auditability2:34
Domain 2 - Module 8 : Event Sources and Attributes6:10
Identify event sources and attributes to enable traceability and accountability in cloud security. Capture timestamps, event types, source and destination, user IDs, and outcomes to support auditing and compliance.
Domain 2 - Module 8 : Logging and Analysis of Data Events8:07
Domain 2 - Module 8 : Chain of Custody4:42

Requirements

Basic understanding of cybersecurity principles Familiarity with fundamental security concepts such as confidentiality, integrity, availability (CIA), access controls, and network security is recommended.
Experience in IT or Information Security (1–2 years preferred) Although not mandatory, having hands-on experience in cloud services, IT infrastructure, or security operations will help learners grasp advanced CCSP topics more effectively.
Familiarity with Cloud Computing Models (IaaS, PaaS, SaaS) A general awareness of how cloud platforms function (e.g., AWS, Azure, Google Cloud) will enhance your learning, but all essential concepts will be explained in the course.
No Specific Tools or Software Required You do not need to install any tools or platforms. This course is theory-rich and aligned with the CCSP exam, with additional real-world context and examples.

Description

Embark on your journey to becoming a Certified Cloud Security Professional (CCSP) with this focused and comprehensive course covering Domains 1 and 2 of the (ISC)² CCSP certification exam.

In this first installment of the CCSP series, we deep dive into Cloud Concepts, Architecture and Design and Cloud Data Security—two of the most foundational and critical domains in cloud security. Whether you're an IT professional, a security architect, or a cloud engineer, this course will provide you with the knowledge and confidence to understand cloud infrastructure, its security challenges, and the data protection strategies essential for today’s dynamic cloud environments.

You will explore cloud service models (IaaS, PaaS, SaaS), deployment architectures (public, private, hybrid, community), and cloud reference architectures such as NIST and ISO frameworks. We’ll also cover key aspects of secure cloud design principles, data classification, data lifecycle phases, encryption methods, tokenization, and cloud-based key management solutions.

Each topic is explained clearly with real-world examples, exam-aligned concepts, and visual aids to strengthen your understanding. This course is ideal for those pursuing the CCSP certification or looking to deepen their cloud security expertise.

As part of a three-course series, this course sets the stage for deeper mastery of cloud infrastructure, applications, and compliance topics in upcoming modules. By completing this first part, you'll not only cover essential exam content but also gain practical insight that you can apply immediately in your organization’s cloud initiatives.

Join now and build a strong foundation in cloud security—one domain at a time.

Who this course is for:

IT and Security Professionals who want to advance their careers by earning the globally recognized (ISC)² CCSP certification.
Cloud Architects, Engineers, and Consultants looking to validate their knowledge of cloud security design, governance, and operations.
CISSP or Security+ Certified Professionals preparing to specialize in cloud security with a focus on compliance, risk, and technical controls.
Enterprise Security Leaders and Managers who need to understand how to manage cloud risks, vendor contracts, and legal/regulatory issues in a cloud-first organization.
Anyone preparing for the (ISC)² CCSP exam and seeking a structured, complete, and practical learning path with real-world context.

Enterprise Cloud Security with CCSP - Part 1 : Foundations

What you'll learn

Explore related topics

Course content

Introduction3 lectures • 11min

Domain 1 : Cloud Concepts, Architecture and Design27 lectures • 2hr 59min

Domain 2 : Cloud Concepts, Architecture and Design36 lectures • 3hr 10min

Requirements

Description

Who this course is for: