Browse Library
Sign In Start Free Trial
Close icon Search icon
Account
Browse Library Advanced Search Sign In Start Free Trial

Add to playlist

Create a Playlist

Modal Close icon
You need to login to use this feature.
  • Book Overview & Buying CCSP (ISC)2 Certified Cloud Security Professional Exam Guide
  • Table Of Contents Toc
  • Feedback & Rating feedback
CCSP (ISC)2 Certified Cloud Security Professional Exam Guide

CCSP (ISC)2 Certified Cloud Security Professional Exam Guide

By : Omar A. Turner, Navya Lakshmana
4.9 (22)
Buy this Book
close
close
CCSP (ISC)2 Certified Cloud Security Professional Exam Guide

CCSP (ISC)2 Certified Cloud Security Professional Exam Guide

4.9 (22)
By: Omar A. Turner, Navya Lakshmana
Buy this Book

Overview of this book

Preparing for the Certified Cloud Security Professional (CCSP) exam can be challenging, as it covers a wide array of topics essential for advancing a cybersecurity professional’s career by validating their technical skills. To prepare for the CCSP exam, you need a resource that not only covers all the exam objectives but also helps you prepare for the format and structure of the exam. Written by two seasoned cybersecurity professionals with a collective experience of hundreds of hours training CCSP bootcamps, this CCSP study guide reflects the journey you’d undertake in such training sessions. The chapters are packed with up-to-date information necessary to pass the (ISC)2 CCSP exam. Additionally, to boost your confidence, the book provides self-assessment questions, exam tips, and mock exams with detailed answer explanations. You’ll be able to deepen your understanding using illustrative explanations that briefly review key points. As you progress, you’ll delve into advanced technical aspects of cloud domain security, such as application security, design, managing and securing data, and infrastructure in the cloud using best practices and legal policies and procedures. By the end of this guide, you’ll be ready to breeze through the exam and tackle real-world cloud security challenges with ease.
Table of Contents (27 chapters)
close
close
close
Preface
Icon
Preface
Icon
Who This Book Is For
Icon
What This Book Covers
Icon
How to Get the Most Out of This Book
Icon
Online Practice Resources
Icon
Download the Color Images
Icon
Conventions Used
Icon
Get in Touch
Icon
Share Your Thoughts
Icon
Download a Free PDF Copy of This Book
Free Chapter
1
Chapter 1: Core Cloud Concepts
chevron up
Icon
Chapter 1: Core Cloud Concepts
Icon
Making the Most Out of This Book – Your Certification and Beyond
Icon
What Is Cloud Computing?
Icon
Essential Cloud Computing Characteristics
Icon
Cloud Stakeholders
Icon
Key Cloud Computing Technologies and Building Blocks
Icon
Summary
Icon
Exam Readiness Drill – Chapter Review Questions
Icon
Working On Timing
2
Chapter 2: Cloud Reference Architecture
Icon
Chapter 2: Cloud Reference Architecture
Icon
Cloud Service Models
Icon
Cloud Service Models and Categories
Icon
Cloud Deployment Models
Icon
Shared Considerations for Cloud Deployments
Icon
Emerging Technologies in Cloud Computing
Icon
Summary
Icon
Exam Readiness Drill – Chapter Review Questions
Icon
Working On Timing
3
Chapter 3: Top Threats and Essential Cloud Security Concepts and Controls
Icon
Chapter 3: Top Threats and Essential Cloud Security Concepts and Controls
Icon
The CIA Triad—Confidentiality, Integrity, and Availability
Icon
Common Threats to Cloud Deployments
Icon
Security Control Categories and Types
Icon
Summary
Icon
Exam Readiness Drill – Chapter Review Questions
Icon
Working On Timing
4
Chapter 4: Design Principles for Secure Cloud Computing
Icon
Chapter 4: Design Principles for Secure Cloud Computing
Icon
Security for IaaS, SaaS, and PaaS
Icon
Shared Responsibility Model for Cloud Service Models
Icon
Summary
Icon
Exam Readiness Drill – Chapter Review Questions
Icon
Working On Timing
5
Chapter 5: How to Evaluate Your Cloud Service Provider
Icon
Chapter 5: How to Evaluate Your Cloud Service Provider
Icon
Key Cloud Service Contractual Documents
Icon
Evaluation of the CSP Services
Icon
Summary
Icon
Exam Readiness Drill – Chapter Review Questions
Icon
Working On Timing
6
Chapter 6: Cloud Data Security Concepts and Architectures
Icon
Chapter 6: Cloud Data Security Concepts and Architectures
Icon
Structured and Unstructured Data
Icon
The Cloud Data Lifecycle
Icon
Various Storage Types and Common Threats
Icon
Data Classification and Discovery
Icon
Cloud Data Security Technologies and Common Strategies
Icon
Critical Cloud Data Security Strategies
Icon
Best Practices for Data Retention, Archival, and Deletion
Icon
Summary
Icon
Exam Readiness Drill – Chapter Review Questions
Icon
Working On Timing
7
Chapter 7: Data Governance Essentials
Icon
Chapter 7: Data Governance Essentials
Icon
Data Governance
Icon
IRM
Icon
Auditability in Cloud Data Governance
Icon
Traceability in Cloud Data Governance
Icon
Accountability in Cloud Data Governance
Icon
Cloud Data Life Cycle
Icon
Summary
Icon
Exam Readiness Drill – Chapter Review Questions
Icon
Working On Timing
8
Chapter 8: Essential Infrastructure and Platform Components for a Secure Data Center
Icon
Chapter 8: Essential Infrastructure and Platform Components for a Secure Data Center
Icon
Cloud Infrastructure and Platform Components
Icon
Physical Design
Icon
Environmental Design
Icon
Logical Design
Icon
Summary
Icon
Exam Readiness Drill – Chapter Review Questions
Icon
Working On Timing
9
Chapter 9: Analyzing Risks
Icon
Chapter 9: Analyzing Risks
Icon
Overview of Risk Management
Icon
Risk Identification and Analysis
Icon
Analyzing and Assessing Cloud Security Risks
Icon
Cloud Attack Surface Area, Vulnerabilities, Threats, and Attack Vectors
Icon
Addressing Cloud Security Risks – Safeguards and Countermeasures
Icon
Implementing Cloud Security Best Practices, Controls and Countermeasures
Icon
Summary
Icon
Exam Readiness Drill – Chapter Review Questions
Icon
Working On Timing
10
Chapter 10: Security Control Implementation
Icon
Chapter 10: Security Control Implementation
Icon
Physical and Environmental Protection Controls
Icon
System, Storage, and Communication Protection Controls
Icon
IAM Solutions for Identification, Authentication, and Authorization
Icon
Key Cloud Control Audit Mechanisms
Icon
Summary
Icon
Exam Readiness Drill – Chapter Review Questions
Icon
Working On Timing
11
Chapter 11: Planning for the Worst-Case Scenario – Business Continuity and Disaster Recovery
Icon
Chapter 11: Planning for the Worst-Case Scenario – Business Continuity and Disaster Recovery
Icon
BCDR Definitions
Icon
BCDR Strategies
Icon
Understanding an Organization’s Business Requirements
Icon
Creation, Implementation, and Testing of a BCDR Plan
Icon
Summary
Icon
Exam Readiness Drill – Chapter Review Questions
Icon
Working On Timing
12
Chapter 12: Application Security
Icon
Chapter 12: Application Security
Icon
Why is Application Security Critical?
Icon
Common Challenges in Securing Web Applications
Icon
Vulnerabilities with OWASP
Icon
Cloud Application Security Tools and Solutions
Icon
Summary
Icon
Exam Readiness Drill – Chapter Review Questions
Icon
Working On Timing
13
Chapter 13: Secure Software Development Life Cycle
Icon
Chapter 13: Secure Software Development Life Cycle
Icon
Traditional SDLC to SSDLC
Icon
Utilizing the SSDLC in Cloud Projects
Icon
Threat Modeling
Icon
Avoiding Vulnerable Code
Icon
Summary
Icon
Exam Readiness Drill – Chapter Review Questions
Icon
Working On Timing
14
Chapter 14: Assurance, Validation, and Verification in Security
Icon
Chapter 14: Assurance, Validation, and Verification in Security
Icon
The Importance of Assurance, Validation, and Verification
Icon
What Are Functional and Non-Functional Testing?
Icon
Security Testing and Quality Assurance
Icon
Two Approaches to Software Verification
Icon
Third-Party Review Processes
Icon
Measures to Secure APIs
Icon
Summary
Icon
Exam Readiness Drill – Chapter Review Questions
Icon
Working On Timing
15
Chapter 15: Application-Centric Cloud Architecture
Icon
Chapter 15: Application-Centric Cloud Architecture
Icon
Supplemental Security Components
Icon
Summary
Icon
Exam Readiness Drill – Chapter Review Questions
Icon
Working On Timing
16
Chapter 16: IAM Design
Icon
Chapter 16: IAM Design
Icon
IAM
Icon
Federated Identity
Icon
IdPs
Icon
SSO
Icon
MFA
Icon
CASB
Icon
Secrets Management
Icon
Summary
Icon
Exam Readiness Drill – Chapter Review Questions
Icon
Working On Timing
17
Chapter 17: Cloud Physical and Logical Infrastructure (Operationalization and Maintenance)
Icon
Chapter 17: Cloud Physical and Logical Infrastructure (Operationalization and Maintenance)
Icon
Hardware-Specific Security Configuration Requirements
Icon
Installation and Configuration of Management Tools
Icon
Virtual Hardware-Specific Security Configuration Requirements
Icon
Installation of Guest OS Virtualization Toolsets
Icon
Access Controls for Local and Remote Access
Icon
Secure Network Configuration
Icon
Network Security Controls
Icon
OS Baselining
Icon
Availability of Clustered Hosts
Icon
Availability of Guest OSs
Icon
Performance and Capacity Monitoring in Cloud Environments
Icon
Hardware Monitoring in Cloud Environments
Icon
Configuration of Host and Guest OS Backup and Restore Functions
Icon
Summary
Icon
Exam Readiness Drill – Chapter Review Questions
Icon
Working On Timing
18
Chapter 18: International Operational Controls and Standards
Icon
Chapter 18: International Operational Controls and Standards
Icon
Operational Controls and Standards
Icon
Change Management
Icon
Continuity Management
Icon
Information Security Management
Icon
Continual Service Improvement Management
Icon
Incident Management
Icon
Problem Management
Icon
Release Management
Icon
Deployment Management
Icon
Configuration Management
Icon
Service-Level Management
Icon
Availability Management
Icon
Capacity Management
Icon
Summary
Icon
Exam Readiness Drill – Chapter Review Questions
Icon
Working On Timing
19
Chapter 19: Digital Forensics
Icon
Chapter 19: Digital Forensics
Icon
Digital forensics
Icon
Forensic data collection methodologies
Icon
Evidence management
Icon
Collecting, acquiring, and preserving digital evidence
Icon
Summary
Icon
Exam Readiness Drill – Chapter Review Questions
Icon
Working On Timing
20
Chapter 20: Managing Communications
Icon
Chapter 20: Managing Communications
Icon
Managing communication with relevant parties
Icon
Summary
Icon
Exam Readiness Drill – Chapter Review Questions
Icon
Working On Timing
21
Chapter 21: Security Operations Center Management
Icon
Chapter 21: Security Operations Center Management
Icon
SOC
Icon
Monitoring of Security Controls
Icon
Log Capture and Analysis
Icon
Incident Management
Icon
Vulnerability Assessments
Icon
Summary
Icon
Exam Readiness Drill – Chapter Review Questions
Icon
Working On Timing
22
Chapter 22: Legal Challenges and the Cloud
Icon
Chapter 22: Legal Challenges and the Cloud
Icon
Legal Requirements and Unique Risks Within the Cloud
Icon
Understanding the Implications of Cloud to Enterprise Risk Management
Icon
Understanding Outsourcing and Cloud Contract Design
Icon
Summary
Icon
Exam Readiness Drill – Chapter Review Questions
Icon
Working On Timing
23
Chapter 23: Privacy and the Cloud
Icon
Chapter 23: Privacy and the Cloud
Icon
Privacy Issues
Icon
Difference between Contractual and Regulated Private Data
Icon
Country-Specific Legislation Related to Private Data
Icon
Jurisdictional Differences in Data Privacy
Icon
Standard Privacy Requirements
Icon
Privacy Impact Assessments (PIAs)
Icon
Summary
Icon
Exam Readiness Drill – Chapter Review Questions
Icon
Working On Timing
24
Chapter 24: Cloud Audit Processes and Methodologies
Icon
Chapter 24: Cloud Audit Processes and Methodologies
Icon
Understanding the Audit Process, Methodologies, and Required Adaptations for a Cloud Environment
Icon
Internal and External Audit Controls
Icon
Impact of Audit Requirements
Icon
Identify Assurance Challenges of Virtualization and the Cloud
Icon
Types of Audit Reports
Icon
Restrictions of Audit Scope Statements
Icon
Gap Analysis
Icon
Audit Planning
Icon
Internal ISMS
Icon
Policies
Icon
Identification and Involvement of Relevant Stakeholders
Icon
Specialized Compliance Requirements for Highly Regulated Industries
Icon
Impact of Distributed IT Model
Icon
Summary
Icon
Exam Readiness Drill – Chapter Review Questions
Icon
Working On Timing
25
Chapter 25: Accessing the Online Practice Resources
Icon
Chapter 25: Accessing the Online Practice Resources
Icon
How to Access These Materials
Icon
Troubleshooting Tips
Icon
Back to the Book
Icon
Why subscribe?
26
Other Books You May Enjoy
Icon
Other Books You May Enjoy
Icon
Share Your Thoughts
Icon
Download a Free PDF Copy of This Book

Essential Cloud Computing Characteristics

Cloud computing, as described by the NIST publication 800-145, is an innovative computing paradigm that delivers computer resources, services, and applications via the internet on demand. It enables users to remotely access, store, and administer data and applications without having to invest in or maintain physical infrastructure or hardware.

As per the NIST publication 800-145, the cloud computing model can be further defined by having five fundamental characteristics, three service models, and four deployment methods:

  • The five essential characteristics of cloud computing are as follows:
    • On-demand self-service: Cloud services can be deployed and maintained by the user without the service provider’s participation
    • Extensive network access: Cloud services are accessible over the internet, making them accessible from several devices and places
    • Resource pooling: Cloud providers share resources such as storage, computation, memory, and bandwidth to serve several consumers simultaneously
    • Rapid elasticity: Cloud resources can be readily scaled up or down to meet variable demands, allowing peak loads to be accommodated without compromising performance
    • Measured service: Cloud consumption is monitored, controlled, and reported so that users only pay for the resources they consume
  • The three service models are as follows:
    • SaaS: The SaaS approach provides internet-based applications that are ready for use. Consumers need not concern themselves with infrastructure, software upgrades, or maintenance.
    • Platform as a service: Platform as a Service (PaaS) provides an environment to create, deploy, and maintain applications. Users can concentrate on application development without thinking about the underlying infrastructure.
    • Infrastructure as a service: Infrastructure as a Service (IaaS) offers virtualized computing resources, including Virtual Machines (VMs), storage, and networking. The user controls their infrastructure, while the Cloud Service Provider (CSP) oversees the physical hardware.
  • The four deployment models are as follows:
    • Private cloud: The cloud infrastructure is devoted to a single enterprise, providing more security and data privacy controls
    • Community cloud: This deployment approach supports several enterprises that have common concerns, such as security needs or regulatory compliance
    • Public cloud: The cloud infrastructure is owned and managed by a service provider, who sells services to the general public or a major industrial group
    • Hybrid cloud: This model combines two or more of the preceding deployment methods, enabling enterprises to make use of the benefits of each while keeping separate environments

Note

You can find more resources about cloud computing and its characteristics here: https://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-145.pdf.

As a cloud security expert, it is crucial that you understand these definitions and components in order to create, implement, and maintain security solutions that safeguard sensitive data and guarantee compliance with industry requirements. Cloud security comprises a vast array of techniques and technologies, including identity and access management, encryption, intrusion detection, and secure data transfer that protect cloud-based resources and services. By understanding the specific characteristics of cloud computing, security professionals can better minimize possible risks and vulnerabilities in an environment that is rapidly evolving.

In this section, you learned about the essential cloud computing characteristics. The next section will focus on cloud stakeholders.

End of Section 4
Next Section

Create a Note

Modal Close icon
You need to login to use this feature.
notes
bookmark search playlist download
font-size

Change the font size

margin-width

Change margin width

day-mode

Change background colour

Close icon Search
Country selected
Close icon Your notes and bookmarks

Delete Bookmark

Modal Close icon
Are you sure you want to delete it?
Cancel
Yes, Delete

Delete Note

Modal Close icon
Are you sure you want to delete it?
Cancel
Yes, Delete

Edit Note

Modal Close icon
Write a note (max 255 characters)
Cancel
Update Note

Confirmation

Modal Close icon
claim successful
Order Page Read Now

Buy this book with your credits?

Modal Close icon
Are you sure you want to buy this book with one of your credits?
Close
YES, BUY