Certificate in Cloud Security Knowledge(CCSK+) Training in Norway

  • Learn via: Classroom
  • Duration: 3 Days
  • Level: Intermediate
  • Price: From €3,016+VAT
We can host this training at your preferred location. Contact us!

Covering all 12 domains of critical cloud security knowledge, this CCSK+ v5 course covers the core concepts, best practices, and recommendations for securing an organization on the cloud regardless of the provider or platform, with hands-on labs.

Learn and practice applying the knowledge from all 12 domains of the Cloud Security Alliance (CSA) Security Guidance v5.

What's included

  • Official CCSK+ course materials
  • Official CCSK+ course labs
  • Official CCSK+ exam voucher & practice questions
  • Certified CCSK+ instructor

There are no prerequisites for this course.

Domain 1: Cloud Computing Concepts & Architectures

Describes and defines cloud computing, sets baseline terminology, and details the overall controls, deployment, and architectural models.

Learning Objectives

  • Defining Cloud Computing
    • Abstraction & Orchestration
  • Cloud Computing Models
    • Essential Characteristics
    • Cloud Service Models
      • Infrastructure as a Service (IaaS)
      • Platform as a Service (PaaS)
      • Software as a Service (SaaS)
    • Cloud Deployment Models
    • CSA Enterprise Architecture Model
  • Cloud Security Scope, Responsibilities, & Models
    • Shared Security Responsibility Model

Domain 2: Cloud Governance

Focuses on cloud governance with an emphasis on the role of security and how enterprise governance helps align the strategic, tactical, and operational capabilities of information and technology with the business objectives.

Learning Objectives

  • Cloud Governance
  • The Governance Hierarchy
    • Cloud Security Frameworks
    • Policies

Domain 3: Risk, Audit, & Compliance

Focuses on cloud security, risk, audit, and compliance, including evaluating cloud service providers and establishing cloud risk registries.

Learning Objectives

  • Cloud Risk Management
    • Cloud Risks
    • Understanding Cloud Risk Management
    • Assessing Cloud Services
    • The Cloud Register
  • Compliance & Audit
    • Jurisdictions
    • Cloud-Relevant Laws & Regulations Examples
    • Compliance Inheritance
    • Artifacts of Compliance
  • Governance, Risk, Compliance Tools & Technologies

Domain 4: Organization Management

Focuses on managing your entire cloud footprint, including securing and validating service provider deployments.

Learning Objectives

  • Organization Hierarchy Models
    • Definitions
    • Organization Capabilities Within a Cloud Service Provider
    • Building a Hierarchy Within a Provider
  • Managing Organization-Level Security Within a Provider
    • Identity Provider & User/Group/Role Mappings
    • Common Organization Shared Services
  • Considerations for Hybrid & Multi-Cloud Deployments
    • Organization Management for Hybrid Cloud Security
    • Organization Management for Multi-Cloud Security
    • Organization Management for SaaS Hybrid & Multi-Cloud

Domain 5: Identity & Access Management

Focuses primarily on IAM between an organization and cloud providers or between cloud providers and services.

Learning Objectives

  • Fundamental Terms
  • Federation
    • Common Federation Standards
    • How Federated Identity Management Works
    • Managing Users & Identities for Cloud Computing
  • Strong Authentication & Authorization
    • Authentication & Credentials
    • Entitlement & Access Management
    • Privileged User Management

Domain 6: Security Monitoring

Presents unique security monitoring challenges and solutions for cloud environments, emphasizing the distinct aspects of cloud telemetry, management plane logs, service and resource logs, and the integration of advanced monitoring tools.

Learning Objectives

  • Cloud Monitoring
    • Logs & Events
  • Beyond Logs - Posture Management
  • Cloud Telemetry Sources
    • Management Plane Logs
    • Service & Application Logs
    • Resource Logs
    • Cloud Native Tools
  • Collection Architectures
    • Log Storage & Retention
    • Cascading Log Architecture
  • AI for Security Monitoring

Domain 7: Infrastructure & Networking

Focuses on managing the overall infrastructure footprint and network security, including the CSP's infrastructure security responsibilities.

Learning Objectives

  • Cloud Infrastructure Security
    • Foundational Infrastructure Security Techniques
    • CSP Infrastructure Security Responsibilities
    • Infrastructure Resilience
  • Cloud Network Fundamentals
    • Cloud Networks are Software-Defined Networks
    • Cloud Connectivity
    • Cloud Network Security & Secure Architectures
      • Preventative Security Measures
      • Detective Security Measures
    • Infrastructure as Code (IaC)
    • Zero Trust for Cloud Infrastructure & Networks
      • Software-Defined Perimeter & ZT Network Access
    • Secure Access Service Edge (SASE)

Domain 8: Cloud Workload Security

Focuses on the related set of software and data units that are deployable on some type of infrastructure or platform.

Learning Objectives

  • Introduction to Cloud Workload Security
    • Types of Cloud Workloads
    • Impact on Workload Security Controls
  • Securing Virtual Machines
    • Virtual Machine Challenges & Mitigations
    • Creating Secure VM Images with Factories
    • Snapshots & Public Exposures/Exfiltration
  • Securing Containers
    • Container Image Creation
    • Container Networking
    • Container Orchestration & Management Systems
    • Container Orchestration Security
    • Runtime Protection for Containers
  • Securing Serverless and Function as a Service
    • FaaS Security Issues
    • IAM for Serverless
    • Environment Variables & Secrets
  • Securing AI Workloads
    • AI-System Threats
    • AI Risk Mitigation and Shared Responsibilities

Domain 9: Data Security

Addresses the complexities of data security in the cloud, covering essential strategies, tools, and practices for protecting data in transit and at rest.

Learning Objectives

  • Primer on Cloud Storage
    • Volume/Block Storage
    • Object Storage
    • Database Storage
    • Other Types of Storage
  • Data Security Tools and Techniques
    • Data Classification
    • Identity and Access Management
    • Access Policies
    • Encryption and Key Management
    • Data Loss Prevention
  • Cloud Data Encryption at Rest
    • Cloud Data Key Management Strategies
    • Data Encryption Recommendations
  • Data Security Posture Management
  • Object Storage Security
  • Data Security for Artificial Intelligence
  • AI as a Service

Domain 10: Application Security

Focuses on the unique challenges and opportunities presented by application security in the cloud environment from the initial design phase to ongoing maintenance.

Learning Objectives

  • Secure Development Lifecycle
    • SDLC Stages
    • Threat Modeling
    • Testing: Pre-Deployment
    • Testing: Post Deployment
  • Architecture’s Role in Secure Cloud Applications
    • Cloud Impacts on Architecture-Level Security
    • Architectural Resilience
  • Identity & Access Management and Application Security
    • Secrets Management
  • Dev Ops & DevSecOps

Domain 11: Incident Response & Resilience

Focuses on identifying and explaining best practices for cloud incident response and resilience that security professionals may reference when developing their own incident plans and processes.

Learning Objectives

  • Incident Response
    • Incident Response Lifecycle
  • Preparation
    • Incident Response Preparation & Cloud Service Providers
    • Training for Cloud Incident Responders
  • Detection & Analysis
    • Cloud Impact on Incident Response Analysis
    • Cloud System Forensics
  • Containment, Eradication, & Recovery
    • Containment
    • Eradication
    • Recovery
  • Post Incident Analysis

Domain 12: Related Technologies & Strategies

Introduces the foundational concepts and focuses on developing a strategic cybersecurity approach to Zero Trust and Artificial Intelligence.

Learning Objectives

  • Zero Trust
    • Technical Objectives of Zero Trust
    • Zero Trust Pillars & Maturity Model
    • Zero Trust & Cloud Security
  • Artificial Intelligence
    • Characteristics of AI Workloads
    • Next Steps

Lab Material Outline

  • Core Account Security

Learn what to configure in the first 5 minutes of opening a new cloud account and enable security controls such as MFA, basic monitoring, and IAM.

  • IAM & Monitoring In-Depth

Expand on your work in the first lab and implement more-complex identity management and monitoring. This includes expanding IAM with Attribute Based Access Controls, implementing security alerting, and understanding how to structure enterprise-scale IAM and monitoring.

  • Network & Instance Security

Create a virtual network (VPC) and implement a baseline security configuration. You will also learn how to securely select and launch a virtual machine (instance), run a vulnerability assessment in the cloud, and connect to the instance.

  • Encryption & Storage Security

Expand your deployment by adding a storage volume encrypted with a customer managed key. You will also learn how to secure snapshots and other data.

  • Application Security & Federation

Finish the technical labs by completely building out a 2-tier application and implementing federated identity using OpenID.

  • Risk & Provider Assessment

Practice using the CSA Cloud Controls Matrix and STAR registry to evaluate risk and select a cloud provider.



Contact us for more detail about our trainings and for all other enquiries!

Upcoming Trainings

Join our public courses in our Norway facilities. Private class trainings will be organized at the location of your preference, according to your schedule.

17 januar 2025 (3 Days)
Oslo, Bergen, Trondheim
Classroom / Virtual Classroom
01 februar 2025 (3 Days)
Oslo, Bergen, Trondheim
Classroom / Virtual Classroom
17 januar 2025 (3 Days)
Oslo, Bergen, Trondheim
Classroom / Virtual Classroom
14 februar 2025 (3 Days)
Oslo, Bergen, Trondheim
Classroom / Virtual Classroom
01 februar 2025 (3 Days)
Oslo, Bergen, Trondheim
Classroom / Virtual Classroom
14 februar 2025 (3 Days)
Oslo, Bergen, Trondheim
Classroom / Virtual Classroom
10 mars 2025 (3 Days)
Oslo, Bergen, Trondheim
Classroom / Virtual Classroom
€3,016 +VAT
Book Now
26 mars 2025 (3 Days)
Oslo, Bergen, Trondheim
Classroom / Virtual Classroom
Certificate in Cloud Security Knowledge(CCSK+) Training Course in Norway

The Nordic country Norway, is in Northern Europe. Known for its stunning natural beauty, including fjords, mountains, and forests, Norway is also famous for its high standard of living and strong social welfare system. Norway's capital and largest city is Oslo. Tromsø, Bergen, Trondheim and Stavanger are the other tourist attracting cities of Norway.

Norway is a constitutional monarchy with King Harald V as the head of state. The country has a population of 5,425,270 as of January 2022. Norway is a relatively small country and has a relatively low population density, with much of its land area covered by forests, mountains, and fjords. Despite its small size, Norway is known for its rich cultural heritage, strong economy, and stunning natural beauty, which attracts millions of visitors every year. This Nordic country is also known for its winter sports, such as skiing and snowboarding, and is a popular destination for outdoor enthusiasts.

Norway has a long history of invention and is home to numerous more top-tier tech firms and research facilities, such as; Kongsberg Gruppen, Telenor, Atea, Evry and Gjensidige Forsikring.

Due to the country's high latitude, there are large seasonal variations in daylight. From late May to late July, the sun never completely descends beneath the horizon. Which attracts many tourists around the world to see the "Land of the Midnight Sun". Tourists mainly visit Sognefjord, Norway's Largest Fjord, Pulpit Rock, one of the most photographed sites in Norway and of course the capital; Oslo.

Oslo is considered the business center of Norway. It is the country's largest city and the capital of Norway. The city is home to many of Norway's largest and most important companies, as well as several international organizations and research institutions. Additionally, the city is a popular tourist destination, known for its scenic location on the Oslo Fjord, its many museums and cultural attractions, and its vibrant nightlife and dining scene. Some of the most popular museums in Oslo are The Norwegian Museum of Cultural History, The Nobel Peace Center, The National Museum of Art, Architecture, and Design, The Munch Museum and The Vigeland Museum.
By using this website you agree to let us use cookies. For further information about our use of cookies, check out our Cookie Policy.