WannaBeA CCSP

Name: WannaBeA CCSP
Rating: 4.7 (1843 reviews)

The Unauthorized Guide to the CCSP Exam Outline, AUG 2019

Highest Rated

Created byBen Malisow

Last updated 1/2022

English

What you'll learn

Be prepared to take --and pass-- the CCSP exam.
Understand which topics of the official CCSP Exam Outline they will need to study further.
Understand which topics of the official CCSP Exam Outline they currently have sufficient mastery in.
Have a list of additional resources from which to acquire supplemental information, as necessary.
Be equipped with study advice and test-taking recommendations to optimize their chances to pass the actual exam.
Be familiar with the specific elements of information that might appear on the actual exam.

Course content

7 sections • 44 lectures • 7h 47m total length

Introduction5:13

Topic 2.1: Describe Cloud Data Concepts6:45
Describe cloud data concepts, including the data lifecycle with create, store, use, share, archive, and destroy phases, and how data dispersion via chunks and erasure coding enhances security and resilience.
Topic 2.2: Design and Implement Cloud Data Storage Architectures8:30
Topic 2.3: Design and Apply Data Security Technologies and Strategies16:08
Design and apply data security technologies and strategies, including encryption and key management, hashing, masking, and tokenization, with data loss prevention and anonymization to protect sensitive information.
Topic 2.4: Implement Data Discovery2:52
Differentiate structured data designed for querying from unstructured data lacking fixed locations, then implement discovery with metadata, labels, and automation using content and context analytics to assess regulated data.
Topic 2.5: Implement Data Classification6:49
Learn to implement data classification by mapping data across stores, labeling sensitive data such as pii and ephi, and enforcing audit-ready controls to protect regulatory information under hipaa and gdpr.
Topic 2.6: Design and Implement Information Rights Management (IRM)4:01
Topic 2.7: Plan and Implement Data Retention, Deletion and Archiving Policies11:15
Topic 2.8: Data Events7:41
Domain 2 Review3:57
Explore domain 2 review topics on hashing for integrity, digital signatures, and encryption. Identify IT environment events, data retention baselines, anonymization, and log data security.

Topic 3.1: Comprehend Cloud Infrastructure Components8:07
Topic 3.2: Design a Secure Data Center6:28
Design a secure data center with tenant partitioning, memory isolation, application isolation, and access controls; select a location considering disasters, climate, and buy-or-build options, plus robust hvac and multi-vendor connectivity.
Topic 3.3: Analyze Risks Associated with Cloud Infrastructure14:54
Topic 3.4: Design and Plan Security Controls5:56
Topic 3.5: Plan Disaster Recovery (DR) and Business Continuity (BC)19:28
Domain 3 Review2:34

Topic 4.1: Advocate Training and Awareness for Application Security4:05
Topic 4.2: Describe the Secure Software Development Life Cycle (SDLC) Process11:36
Topic 4.3: Apply the Secure Software Development Life Cycle (SDLC)3:55
Topic 4.4: Apply Cloud Software Assurance and Validation4:39
Topic 4.5: Use Verified Secure Software8:52
Topic 4.6: Comprehend the Specifics of Cloud Application Architecture5:12
Explore cloud application architecture and security components, including web application firewalls, database activity monitoring, API gateways, XML firewalls, sandboxing, and application virtualization for modular microservices in the cloud.
Topic 4.7: Design Appropriate Identity and Access Management (IAM) Solutions5:31
Domain 4 Review3:51

Topic 5.1: Implement and Build Physical and Logical Infrastructure for Cloud5:10
Topic 5.2: Operate Physical and Logical Infrastructure for Cloud Environment24:27
Operate physical and logical cloud infrastructure by enforcing strict local and remote access, securing KVM and RDP, and applying secure network configurations (DNS, DHCP, VLAN, VPN) with hardened OS baselines.
Topic 5.3: Manage Physical and Logical Infrastructure for Cloud Environment16:52
Topic 5.4: Implement Operational Controls and Standards6:19
Topic 5.5: Support Digital Forensics10:09
Topic 5.6: Manage Communication with Relevant Parties4:52
Coordinate communication with vendors, customers, partners, regulators, and stakeholders by maintaining centralized contact data, testing it regularly, and delivering tailored, single voice messages during incidents.
Topic 5.7: Manage Security Operations11:57
Domain 5 Review2:54
Explore domain five review by examining incident reporting recipients, evidence types, change management roles, senior management decisions on incident response, and honeypot concepts.

Topic 6.1: Articulate Legal Requirements and Unique Risks within the Cloud11:54
Articulate the legal requirements and unique risks in cloud environments, including multi-tenancy, cross-jurisdictional laws, and potential data seizures. Manage liability, regulatory frameworks, and eDiscovery challenges with providers.
Topic 6.2: Understand Privacy Issues13:04
Understand privacy issues, including contractual versus regulated private data, PII and HIPA-protected information, and GDPR concepts like data minimization, storage, cross-border limits, and the right to be forgotten.
Topic 6.3: Understand Audit Process, Methodologies, and Required Adaptations20:36
Topic 6.4: Understand Implications of Cloud to Enterprise Risk Management22:30
Assess cloud implications for enterprise risk management by evaluating providers' risk programs and the data owner controller versus custodian processor roles, plus rmf controls (800-37, 800-53) and kpis and kris.
Topic 6.5: Understand Outsourcing and Cloud Contract Design14:51
Domain 6 Review3:30

Requirements

Candidates for the CCSP certification should have at least five years of IT and security experience.

Description

An explanation of the material found in the ISC2 CCSP 2019 Exam Outline, with particular focus on what you might expect to see on the exam. If you've been considering taking the CCSP test, this is the course for you. The course offers more than seven hours of video content at a highly-competitive price. Drawn from the instructor's own experience as an official ISC2 CCSP instructor, the course is delivered in a simple, straightforward manner, designed to help you pass the exam.

Students are encouraged to review the ISC2 CCSP Exam Outline, available for free from the ISC2 website. The course includes other recommendations and suggestions for study purposes, as well as guidance on how to approach the test, and which topics are most likely to appear. This course is not a substitute for the requisite experience-- the course content does not teach many of the basics necessary for attaining certification; students are expected to have a background in IT prior to this course. At least five years of specific experience is necessary to qualify for the certification; students should have that much knowledge, as a minimum, prior to taking this course.

WannaBeA. Success and certification are only a class away.

Who this course is for:

A legitimate candidate for the CCSP exam.

WannaBeA CCSP

What you'll learn

Explore related topics

Course content

Section 1: Introduction1 lecture • 5min

Domain 1: Cloud Concepts, Architecture and Design6 lectures • 2hr

Domain 2: Cloud Data Security9 lectures • 1hr 8min

Domain 3: Cloud Platform and Infrastructure Security6 lectures • 57min

Domain 4: Cloud Application Security8 lectures • 48min

Domain 5: Cloud Security Operations8 lectures • 1hr 23min

Domain 6: Legal, Risk, and Compliance6 lectures • 1hr 26min

Requirements

Description

Who this course is for: