ISC2, Cyber Security

Certified Cloud Security Professional

CY-CCSP

Type

Virtual

Classroom ILT

Skill Level

ISC2: Advanced

Available dates

January 20, 2025

March 31, 2025

Learning Path

Cybersecurity

Virtual

Duration

5 Days

1 Day

TYPE

Virtual

Classroom ILT

LEARNING PATH

Cybersecurity

SKILL LEVEL

ISC2: Advanced

DURATION

5 Days

AVAILABLE DATES

January 20, 2025

March 31, 2025

Choose date

R32 900,00

Price excluding VAT

Introduction

In the ever-changing world of the cloud, you face unique security challenges every day — from new threats to sensitive data, to uneducated internal teams. Take command with the CCSP: the premier cloud security certification. The CCSP is a global credential that represents the highest standard for cloud security expertise. It was co-created by ISC2 and Cloud Security Alliance — leading stewards for information security and cloud computing security. ISC2 and the Cloud Security Alliance (CSA) developed the Certified Cloud Security Professional (CCSP) credential to ensure that cloud security professionals have the required knowledge, skills, and abilities in cloud security design, implementation, architecture, operations, controls, and compliance with regulatory frameworks. A CCSP applies information security expertise to a cloud computing environment and demonstrates competence in cloud security architecture, design, operations, and service orchestration.

This professional competence is measured against a globally recognized body of knowledge. The CCSP is a stand-alone credential that complements and builds upon existing credentials and educational programs, including ISC2’s Certified Information Systems Security Professional (CISSP) and CSA’s Certificate of Cloud Security Knowledge (CCSK).

Audience profile

This training is intended for professionals who have at least five years of full-time IT experience, including three years in information security and at least one year in cloud security, and are pursuing CCSP certification to enhance credibility and career mobility. The seminar is ideal for those working in positions such as, but not limited to:

Enterprise Architect
Security Administrator
Systems Engineer
Security Architect
Security Consultant
Security Engineer
Security Manager
Systems Architect
Cloud Architect
Chief Information Security Officer (CISO)
Chief Information Officer (CIO)
Chief Technology Officer (CTO)
Engineer/Developer/Manager
DevOps
Enterprise Architect
IT Contract Negotiator
Security Analyst
SecOps
IT Risk and Compliance Manager
Security Administrator

Pre-requisites

Candidates must have at least five years of cumulative, paid work experience in information technology, of which three years must be in information security, and one year in one or more of the six domains of the ISC2 CCSP Common Body of Knowledge (CBK)
Earning the Cloud Security Alliance’s CCSK certificate can be substituted for one year of experience in one or more of the six domains of the CCSP CBK
Earning ISC2’s CISSP credential can be substituted for the entire CCSP experience requirement
Earning a four-year college degree or regional equivalent in Computer Science, Information Technology (IT) or related fields or an additional credential from the (ISC2 approved list will satisfy one year of the required experience
Education credit will only satisfy one year of experience
Part-time work and internships may also count towards your experience
Full-Time Experience: Your work experience is accrued monthly

Thus, you must have worked a minimum of 35 hours/week for four weeks to accrue one month of work experience.

Part-Time Experience: Your part-time experience cannot be less than 20 hours a week and no more than 34 hours a week
1040 hours of part-time = 6 months of full-time experience
2080 hours of part-time = 12 months of full-time experience
Internship: Paid or unpaid internship is acceptable. You will need documentation on company/organisation letterhead confirming your position as an intern. If you are interning at a school, the document can be on the registrar’s stationery

Course objectives

On completion of this program, the participants will gain the following:

Understand legal frameworks and guidelines that affect cloud services
Recognize the fundamentals of data privacy regulatory/legislative mandates
Assess risks, vulnerability, threats and attacks in the cloud environment
Evaluate the design and plan for cloud infrastructure security controls
Evaluate what is necessary to manage security operations
Understand what operational controls and standards to implement
Describe the types of cloud deployment models in the types of “as a service” cloud models currently available today
Identify key terminology and associated definitions related to cloud technology. Be able to establish a common terminology for use within a team or workgroup
Build a business case for cloud adoption and be able to determine with business units the benefits of the cloud and cloud migration strategies

Course content

Chapter 1: Cloud Concepts, Architecture and Design
State the essential characteristics of cloud computing	Describe the fundamental cloud computing services
Describe the cloud computing reference architectures	Explain cloud computing activities
Compare cloud service capabilities and models	Describe cloud deployment models
Summarize economic characteristics of cloud computing	Evaluate cloud computing ROI (Return on Investment) and KPI (Key Performance Indicators) metrics
Summarize cloud computing security concepts	Describe key security considerations for each service model
Analyse key cloud service provider contractual relationship documents
Chapter 2: Cloud Governance: Legal, Risk and Compliance
Explain the issues with international conflict of law	Interpret guidelines for digital forensics
Identify the fundamentals of data privacy regulatory/legislative mandates	Summarize audit process, methodologies and cloud-ready adaptations
Describe risk management related to cloud services	Identify due care/diligence activities related to service contracts
Chapter 3: Cloud Data Security
Discuss cloud data security concepts	Describe cryptography
Explain data discovery and classification technologies	Interpret cloud data storage architectures
Analyse information rights management	Assess cloud data security strategies
Compare solutions for cloud data retention, deletion and archival policies	Explain basic security concepts in the cloud
Chapter 4: Cloud Platform and Infrastructure Security
Compare cloud infrastructure components	Select standard practices for implementing a secure data centre design
Assess risks, vulnerability, threats and attacks in the cloud environment	Discover components for planning and implementing security controls
Evaluate the design and plan for cloud infrastructure security controls	Appraise appropriate identity and access management (IAM) solutions
Recommend business continuity and disaster recovery (BCDR) standards
Chapter 5: Cloud Application Security
Explain training and awareness solutions for application security	Assess challenges in the secure software development life cycle (SDLC) process
Select a threat model for securing software development	Demonstrate cloud software assurance and validation
Choose verified secure software	Explain the specifics of a cloud application architecture
Chapter 6: Cloud Security Operations
Analyse what is used to manage and operate physical and logical infrastructure of a cloud environment	Discuss operational controls and standards
Identify methodologies for supporting digital forensics	Identify critical communication needs with relevant parties
Define auditability, traceability and accountability of security-relevant data even	Select requirements to implement secure operations

Benefits of Certified Cloud Security Professional

For the Individual:

Instant credibility and differentiation: Positioned as an authority figure on cloud security, proving proficiency to keep up with new technologies, developments and threats. Quickly conveys knowledge and inspires trust
Unique recognition: The highest standard for cloud security expertise. Powered by two leading non-profits, it’s vendor-neutral, accredited and requires both practical knowledge and professional experience to earn
Enhanced knowledge and skill set: Advanced knowledge and skills to stay ahead of cloud security best practices, evolving technologies and mitigation strategies
Versatility: Vendor-neutral and multivendor knowledge can be applied across a variety of cloud platforms, increasing marketability and ensuring ability to protect sensitive data in a global environment
Career advancement: Helps practitioners expand into cloud services and win new business. Helps SMEs move into more strategic roles
Increased compensation: According to Certification Salary Survey 75 list, CCSPs reported an average annual salary of USD $138,610 in the U.S., USD $127,010 worldwide

For the Organisation:

Ensure proper cloud security controls: Reinforce risk and legal requirements through cloud contract and SLAs with cloud service providers
Governance, Risk and Compliance: Organisations seeking ISO 27000 certification benefit immensely from practitioners knowledgeable about ISO 27017/ 27018 cloud security standards
Instant respect and credibility: Increase organisational integrity in the eyes of clients and other stakeholders
Stay current: Ensure work teams are up to date on evolving cloud technologies, threats and mitigation strategies by meeting ISC2s Continuing Professional Education (CPE) requirements

Associated certifications and exam

ISC2 has an obligation to its membership to maintain the relevancy of the CCSP. Conducted at regular intervals, the Job Task Analysis (JTA) is a methodical and critical process of determining the tasks that are performed by security professionals who are engaged in the profession defined by the CCSP. The results of the JTA are used to update the examination. This process ensures that candidates are tested on the topic areas relevant to the roles and responsibilities of today’s practicing information security professionals focusing on cloud technologies.

Associate of ISC2: A candidate who doesn’t have the required experience may become an Associate of ISC2 by successfully passing the CCSP examination. The Associate of ISC2 will then have six years to earn the five years of cumulative, paid work experience in information technology, of which three years must be in information security, and one year in one or more of the six domains of the ISC2 CCSP Common Body of Knowledge (CBK).

Exam Details	Certified Cloud Security Professional
Exam Title	CCSP
Number of Questions/Practical Challenges	150 Questions
Test Duration	4 Hours
Test Format	Multiple choice questions
Test Delivery	Pearson VUE Testing Centre
Availability	Chinese, English, German, Japanese, Korean, Spanish
Passing Score	700/1000

ISC2 Overview

In an increasingly complex cyber world, there is a growing need for information security leaders who possess the breadth and depth of expertise necessary to establish holistic security programs that assure the protection of an organisations information assets.

ISC2 is an international non-profit membership association focused on inspiring a safe and secure cyber world. Today, based in the United States, ISC2 serves its global membership from its headquarters in Alexandria, Virginia, along with a portfolio of credentials and world-class education programs in the form of vendor-neutral education products and career services.

Best known for the acclaimed Certified Information Systems Security Professional (CISSP®) certification, ISC2 offers a portfolio of credentials that are part of a holistic, programmatic approach to security.

ISC2 members, candidates and associates, nearly 675,000 strong, are made up of certified cyber, information, software and infrastructure security professionals who are making a difference and helping to advance the industry. ISC2 members represent an elite, global network of dedicated cybersecurity professionals – preeminent experts in their field – who have committed themselves to the highest ethical standards and best practices. All members are certified professionals who have passed ISC2 examinations attesting to skill and knowledge in their field. Through their ISC2 certification, they have demonstrated superior competency and devoted themselves to making the cyber world a safer place for all.

Torque IT is the longest standing Official Training Partner (OTP) in South Africa and has maintained the status of one of the leading ISC2 accredited training organizations in South Africa. Torque IT remains the Only Preferred OTP in the South Africa. As a leading and established training provider of cybersecurity education and certification, Torque IT is committed to expanding our offerings and promoting cybersecurity awareness and expertise across all ISC2 Certifications and throughout South Africa and various African countries.

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

Certified Cloud Security Professional

Type

Skill Level

Available dates

Learning Path

Duration

TYPE

Virtual

Classroom ILT

LEARNING PATH

SKILL LEVEL

DURATION

AVAILABLE DATES

Price excluding VAT

ISC2 Overview

contact

Vendor
Authorised

Details

Menu

newsletter

Certified Cloud Security Professional

Type

Skill Level

Available dates

Learning Path

Duration

TYPE

Virtual

Classroom ILT

LEARNING PATH

SKILL LEVEL

DURATION

AVAILABLE DATES

Price excluding VAT

ISC2 Overview

contact

Vendor Authorised

Details

Menu

newsletter

Vendor
Authorised