🎯 Section -1: Introduction
- Introduction of Cloud and Cloud Concepts.
- Cloud Architecture, Service Models and Design
- Cloud Security Concepts
- Legal, Compliance & Industry Standards
- Security Challenges
🎯 Session-2: Identity and Access Management
- Introduction to Identity and Access Management
- Introduction to Federated Identity Management
- SAML
- OAuth
- Identify security holes in their cloud account's IAM service
- Principle of least privilege access
- Discover and protect various secrets related to cloud service authentication
- Case Study
- AWS IAM pitfalls
- Cloud vendor provided IAM analysis tools
- Cloud IAM Audit (Intro, Audit, Best Practice)
🎯 Session-3 Cloud Infrastructure Security
- On-prem to Cloud Migration security considerations(Hybrid cloud)
- During Migration
- During integration
- Cloud Configuration & Patch Management
- Cloud Change management
- Securing Compute and Storage
- Cloud Infrastructure Audit (Intro, Audit, Best Practice)
🎯 Session-4 Cloud Data Security
- Data Protection (rest, at transit, in use)
- Data Information lifecycle
- Cloud Data Security Foundational Strategies
- Encryption
- Egress monitoring
- Masking, Obfuscation, Anonymization & tokenization
- Key management
- Near-time data, Real time data, Batch processing
- Cloud Data Audit (Intro, Audit, Best Practice)
- Cloud Key management Audit (Intro, Audit, Best Practice)
🎯 Session-5 Cloud Application Security
- Cloud Application Challenges &Development Basics
- Cloud applications access to resource
- Common Pitfalls & Vulnerabilities
- Cloud Software Assurance and Validation
- Secure Software Development Lifecycle (SDLC)
- OWSAP Top 10
- DevSecOps
Then we will start advanced DevSecOps with Solutions.
Community and Social Footprints :
Happy Learning