ISC2 Certified Cloud Security Professional Certification badge achieved after attending CCSP ISC2 Cloud Certification Course
9.30

Fill-star Fill-star Fill-star Fill-star Fill-star Fill-star Fill-star Fill-star Fill-star half-star

(422 Reviews)

ISC2 CCSP Training - Certified Cloud Security Professional

Become a Cloud Security expert with the CCSP certification. Master cloud security architecture, design, and operations for secure cloud adoption and management.

course: ISC2 CCSP - Certified Cloud Security Professional

Duration: 5 days

Format: Virtual or Classroom

prepare-exam Prepares for Exam : ISC2 Certified Cloud Security Professional Exam (CCSP)

certification-icon Prepares for Certification : ISC2 Certified Cloud Security Professional (CCSP)

ktk-icon Attend this and 60+ other Security courses for FREE with Unlimited Security Training

Overview

Advance your career with the ISC2 CCSP - Certified Cloud Security Professional. Our expert-led training prepares you for success in the CCSP certification exam, propelling your career to new heights. Gain in-depth knowledge of cloud security, become certified and enhance your skills to meet industry demands.

This course includes
  • intructor-iconInstructor-led training
  • intructor-iconPractice test
  • intructor-iconPre-reading
  • intructor-iconPersonal Learning Path
  • intructor-iconCertification Guarantee
  • intructor-iconEmail, chat and phone support

Top companies trust Readynez

Who is this course for?

Who is ISC2 CCSP - Certified Cloud Security Professional training course for?

The ISC2 CCSP - Certified Cloud Security Professional course is intended for IT professionals and security managers responsible for securing cloud environments and services. It covers various areas including cloud concepts, architecture, data security, platform and infrastructure security, application security, security operations, and legal and compliance aspects of cloud security. By completing the course and obtaining the certification, individuals demonstrate their expertise in securing cloud environments, understanding cloud architecture and design principles, implementing data security measures, managing cloud platforms, and addressing legal and compliance requirements. The CCSP certification validates their knowledge and skills in cloud security and enables them to effectively protect cloud-based systems and data.

Curriculum

What you will learn during our ISC2 CCSP training.

  • Definitions of cloud computing
  • Roles in cloud computing (e.g. cloud service customer, cloud service provider, cloud service partner, cloud service broker)
  • Key features of cloud computing (e.g. selfservice on demand, wide network access, multitenancy, rapid elasticity and scaling, resource pooling, metered service)
  • Building block technologies (e.g. virtualization, storage, networking, databases, orchestration)
  • 1.2 Describe Cloud Reference Architecture Activities with cloud computing
  • Cloud service functionalities (e.g. application feature types, platform feature types, infrastructure feature types)
  • Cloud service categories (e.g. software as a service (SaaS), infrastructure as a service (IaaS), platform as a service (PaaS))
  • Cloud deployment models (e.g. public, private, hybrid, community)
  • Common cloud considerations (eg interoperability, portability, reversibility, availability, security, privacy, robustness, performance, governance, maintenance and versioning, service levels and service level agreements (SLA), auditing, regulation)
  • Impact of related technologies (e.g. machine learning, artificial intelligence, blockchain, internet of things (IoT), containers, quantum computing)
  • 1.3 Understand security concepts relevant to cloud computing
  • Cryptography and key management
  • Access control
  • Sanitization of data and media (e.g. overwriting, cryptographic erasure)
  • Network security (eg network security groups)
  • Virtualization security (e.g. hypervisor security, container security)
  • Common threats
  • 1.4 Understand design principles for secure cloud computing
  • Cloud Secure Data Lifecycle
  • Cloud based Disaster Recovery (DR) and Business Continuity (BC) planning
  • Cost/benefit assessment
  • Functional security requirements (e.g. portability, interoperability, vendor lockin)
  • Security considerations for different cloud categories (e.g. Software as a Service (SaaS), Infrastructure as a Service (IaaS), Platform as a Service (PaaS))
  • 1.5 Evaluate cloud service providers
  • Verification against criteria (e.g. International Organization for Standardization/International Electrotechnical Commission (ISO/IEC) 27017, Payment Card Industry Data Security Standard (PCI DSS))
  • System/subsystem products
  • Phases of cloud data life cycle phases
  • Data dissemination
  • 2.1 Design and implement architectures for cloud data storage
  • Storage types (e.g. longterm, ephemeral, raw disk)
  • Threats to storage types
  • 2.2 Design and apply data security technology and strategies
  • Encryption and key management
  • Hashing
  • Maybe
  • Tokenization
  • Data Loss Prevention (DLP)
  • Data Obfuscation
  • Data deidentification (e.g. anonymisation)
  • 2.3 Implement data discovery > Structured data
  • Structured data
  • Unstructured data
  • 2.4 Implement data classification
  • Mapping
  • Marking
  • Sensitive Data (e.g. Protected Health Information (PHI), Personally Identifiable Information (PII), Cardholder Data)
  • 2.5 Design and information rights management (IRM)
  • Objectives (e.g. data rights, provisioning, access models)
  • Appropriate tools (e.g. issuance and revocation of certificates)
  • 2.6 Plan and implement policies for data retention, deletion and archiving
  • Data retention policies
  • Data deletion procedures and mechanisms
  • Data archiving procedures and mechanisms
  • Legal team
  • 2.7 Define and implement auditability, traceability and accountability for data events
  • Definition of event sources and requirements for identity attribution
  • Logging, storage and analysis of data events
  • Chain control and nonjudgment
  • Physical environment
  • Network and communications
  • Calculations
  • Virtualization
  • Storage
  • Management plan
  • 3.1 Design a secure data center
  • Logical design (e.g. tenant partitioning, access control)
  • Physical design (e.g. location, purchase or build)
  • Environmental design (e.g. heating, ventilation and air conditioning (HVAC), connection with multivendors)
  • 3.2 Analyze risks associated with cloud infrastructure
  • Risk assessment and analysis
  • Cloud vulnerabilities, threats and attacks
  • Virtualization risks
  • Counter strategies
  • 3.3 Design and plan security controls
  • Physical and environmental protection (e.g. onsite)
  • System and communication protection
  • Protection of virtualization systems
  • Identification, authentication and authorization in cloud infrastructure
  • Audit mechanisms (e.g. log collection, packet collection)
  • 3.4 Plan emergency plans (DR) and business continuity (BC)
  • Risks related to the cloud environment
  • Business requirements (e.g. restore time objective (RTO), restore point objective (RPO), restore service level (RSL))
  • Business continuity/disaster plan strategy
  • Creation, implementation and testing of plan
  • Basics in cloud development
  • Common pitfalls
  • Common cloud vulnerabilities
  • 4.1 Describe the secure software development life cycle (SDLC) process
  • Business requirements
  • Phases and methods
  • 4.2 Apply the Secure Software Development Life Cycle (SDLC)
  • Avoid common vulnerabilities during development
  • Risks specific to the cloud
  • Quality assurance
  • Threat modeling
  • Software configuration management and versioning
  • 4.3 Use software security and validation
  • Function test
  • Security testing methods
  • 4.4 Use verified secure software
  • Approved Application Programming Interfaces (API)
  • Supply chain management
  • Third party software management
  • Validated open source software
  • 4.5 Understand specific to cloud application architecture
  • Additional security components (e.g. Web Application Firewall (WAF), Database Activity Monitoring (DAM), Extensible Markup Language (XML) firewall, Application Programming Interface (API) gateway)
  • Encryption
  • Sand box
  • Application virtualization and orchestration
  • 4.6 Design appropriate identity and access management (IAM) solutions
  • Federal identity
  • Identity providers
  • Single signon (SSO)
  • Multifactor authentication
  • Cloud Access Security Broker (CASB)
  • Hardware specific security configuration requirements (e.g. Basic Input Output System (BIOS), virtualization and Trusted Platform Module (TPM) settings, storage management, network management)
  • Installation and configuration of virtualization management tools
  • Specific security configuration requirements for virtual hardware (eg network, storage, memory, central processing unit (CPU))
  • Installation of guest operating system (OS) virtualization toolkit
  • 5.1 Operation physical and logical infrastructure for cloud environment
  • Configure access control for local and remote access (eg Secure Keyboard Video Mouse (KVM), consolebased access mechanism, Remote Desktop Protocol (RDP))
  • Secure network configuration (e.g. Virtual Local Area Networks (VLAN), Transport Layer Security (TLS), Dynamic Host Configuration Protocol (DHCP), Domain Name System (DNS), Virtual Private Network (VPN))
  • Guest operating system (OS) provisioning through the use of bases (eg Windows, Linux, VMware)
  • Availability of standalone hosts
  • Availability of cluster hosts (eg Distributed Resource Scheduling (DRS), Dynamic Optimization (DO), Storage Cluster, Maintenance Mode, High Availability)
  • Availability of guest operating system (OS)
  • 5.2 Manage physical and logical infrastructure for cloud environment
  • Access control for remote access (e.g. Remote Desktop Protocol (RDP), secure terminal access, Secure Shell (SSH))
  • Basic operating system (OS) compliance checks and patches
  • Patch Management
  • Performance and capacity monitoring (e.g. network, compute, storage, response time)
  • Hardware monitoring (eg disk, central processing unit (CPU), fan speed, temperature)
  • Configuration of host and guest operating system (OS) backup and restore functions
  • Network security controls (eg firewalls, Intrusion Detection Systems (IDS), Intrusion Prevention Systems (IPS), honeypots, vulnerability assessments, network security groups)
  • Management plan (e.g. planning, orchestration, maintenance)
  • 5.3 Implement operator controls and standards (e.g. information technology infrastructure library (ITIL), International organization for standardization/International electrotechnical commission (ISO/IEC) 20001)
  • Change management
  • Continuity management
  • Information security management
  • Continuous service improvement management
  • Incident management
  • Problem management
  • Broadcast management
  • Configuration management
  • Service level management
  • Availability management
  • Capacity management
  • 5.4 Support digital rhetoric
  • Forensic data collection methods
  • Evidence management
  • Collection, acquisition and preservation of digital evidence
  • 5.5 Manage communication with relevant parties
  • Supplier
  • Customers
  • Partners
  • Regulators
  • Other stakeholders
  • 5.6 Manage security operations
  • Security Operations Center (SOC)
  • Monitoring security controls (e.g. firewalls, intrusion detection systems (IDS), intrusion prevention systems (IPS), honeypots, vulnerability assessments, network security groups)
  • Logging and analysis (e.g. Security Information and Event Management (SIEM), logging management)
  • Handling of incidents
  • Contradictions in international law
  • Evaluation of legal risks specific to cloud computing
  • Legal and guidance frameworks
  • eDiscovery (e.g. International Organization for Standardization / International Electrotechnical Commission (ISO / IEC) 27050, Cloud Security Alliance (CSA) guidance)
  • Forensic requirements
  • 6.1 Understand personal data issues
  • Difference between contractual and regulatory private data (e.g. protected health information (PHI), personally identifiable information (PII)) Countryspecific legislation on private data (e.g. protected health information (PHI), personally identifiable information (PII))
  • Legal differences in data protection
  • Standard privacy requirements (e.g. International Organization for Standardization / International Electrotechnical Commission (ISO / IEC) 27018, Generally Accepted Privacy Principles (GAPP), General Data Protection Regulation (GDPR))
  • 6.2 Understand the audit process, methods and required adaptation to a cloud environment
  • Internal and external audit controls
  • Effects of audit requirements
  • Identifying support issues regarding virtualization and cloud
  • Types of audit reports (e.g. Statement on Standards for Attestation Engagements (SSAE), Security Operations Center (SOC), International Standard on Assurance Engagements (ISAE))
  • Limitations of audit scope opinions (e.g. Statement on Standards for Attestation Engagements (SSAE), International Standard on Assurance Engagements (ISAE))
  • Salary analysis
  • Audit planning
  • Internal information security management (ISMS)
  • Internal information security control system
  • Policies (e.g. organization, function, cloud computing)
  • Identification and involvement of relevant stakeholders
  • Special compliance requirements for highly regulated industries (e.g. North American Electric Reliability Corporation / Critical Infrastructure Protection (NERC / CIP), Health Insurance Portability and Accountability Act (HIPAA), Payment Card Industry (PCI))
  • Impact of information and technology (IT) distribution model (e.g. different geographical locations and crossing legal jurisdictions)
  • 6.3 Understand the implications of the cloud for the company's risk management
  • Assess suppliers' risk management programs (e.g. controls, methods, policies)
  • Difference between data owner / controller vs. data keeper / processor (e.g. risk profile, risk threshold, responsibility)
  • Regulatory transparency requirements (e.g. breach notification, SarbanesOxley (SOX), General Data Protection Regulation (GDPR))
  • Risk management (ie avoid, modify, share, retain)
  • Different risk frameworks
  • Metrics for risk management
  • Assessment of risk environment (e.g. service, supplier, infrastructure)
  • 6.4 Understand outsourcing and cloud contract design
  • Business requirements (e.g. service agreement (SLA), master service agreement (MSA), description of work (SOW))
  • Supplier management
  • Contract management (e.g. right to audit, metrics, definitions, termination, litigation, security, compliance, access to cloud / data, cyber risk insurance)
  • Supply chain management (e.g. International Organization for Standardization / International Electrotechnical Commission (ISO / IEC) 27036)

Preparation

How to best be prepared for our ISC2 CCSP training.

  • [Dictionary item: Orange-check] It is strongly recommended that you have a minimum of five years of full-time experience in information technology, including three years of work experience in IT security and one year in cloud computing.
  • [Dictionary item: Orange-check] You must also be able to demonstrate knowledge within one or more of the six CBK domains:
  • [Dictionary item: Orange-check] Domain 1: Cloud Concepts, Architecture and Design
  • [Dictionary item: Orange-check] Domain 2: Cloud Data Security
  • [Dictionary item: Orange-check] Domain 3: Cloud Platform and Infrastructure Security
  • [Dictionary item: Orange-check] Domain 4: Cloud Application Security
  • [Dictionary item: Orange-check] Domain 5: Cloud Security Operations
  • [Dictionary item: Orange-check] Domain 6: Legal, Risk and Compliance

Meet our instructors

Meet some of the Readynez Instructors you can meet on your course. They are experts, passionate about what they do, and dedicated to give back to their industry, their field, and those who want to learn, explore, and advance in their careers.

Kevin Henry

Kevin has served for years as an authorised instructor for (ISC)2 and is renowned for his 20-year contribution to learners training for IT security skills

Kevin Henry is a well-known and highly respected expert instructor with Readynez.

Kevin has served for many years as an authorised instructor for (ISC)2 and he is renowned for his 20-year contribution to learners training for IT security skills- and certifications such as the CISSP, CSSLP, CISM, CISA and CCSP everywhere in the world.

Kevin is a force to be reckoned with, being an authorised instructor and training no less than 9.000 online learners monthly in the fields of information security and audit, in addition to the many students that attend his instructor-led courses with Readynez

He is also one of the most highly-rated instructors and most often he is given scores of 10/10 by his delegates. 

 

READ MORE
Read Less

Friedhelm Düsterhöft

Friedhelm Düsterhöft has 30+ years of work experience in IT, Information Security and Data Privacy.

Friedhelm Düsterhöft is a Senior Information Security Consultant, Auditor, Trainer and Managing Director, and has 30+ years of work experience in IT, Information Security and Data Privacy.

He has contributed to various PECB whitepapers and articles, such as ’Information Security in Banks and Financial Institutions’, ‘What Does SIEM Stand For?’, ‘Why Organizations Fail to Pass an Audit’ and “How to Integrate ISO/IEC 27032 Cybersecurity with ISMS?’.

READ MORE
Read Less

James Rowney

James is recognised for his more than 20 years of contribution to learning and certification within IT Security.

James has worked on many large mission critical environments in some of the largest companies in their industries.

Understanding business requirements and drivers are essential to any strategy and design. Understanding environments are key to any application or infrastructure changes, both the immediate services they interface with and those beyond. A failure to satisfy Non Functional Requirements can not be fixed by a process.

Specialties: CISSP, CCSP, AWS Solution Architect Associate, TOGAF 9 certified 86080 member of The Association of Enterprise Architects (AEA) - 27519830. BCS Solution & Enterprise Architect Certified - AMBCS - 990529878, Linux RHCE V5 expired, RHCVA Unix, Storage, SAN, Netbackup, Clusters, Design and Delivery of Infrastructure.

 

READ MORE
Read Less

FAQ

FAQs for the ISC2 CCSP - Certified Cloud Security Professional course.

The ISC2 CCSP (Certified Cloud Security Professional) certification is a globally recognized credential designed for professionals involved in cloud security and governance. It validates expertise in securing cloud environments, addressing key aspects like data security, compliance, architecture, and operations.

Join Readynez's comprehensive CCSP training to ace the ISC2 CCSP exam and achieve certification. Our expert-led courses provide hands-on experience, covering critical topics such as cloud architecture, data security, and compliance. Gain the skills needed to secure cloud environments and advance your career in cloud security. Readynez is your trusted partner for effective and efficient certification preparation.

To earn the ISC2 CCSP (Certified Cloud Security Professional) certification, candidates are required to have a minimum of five years of cumulative, paid work experience in information technology, with at least three years of experience in information security and one year in one or more of the six CCSP domains. A relevant professional certification can substitute for one year of required experience.

The cost of the ISC2 CCSP (Certified Cloud Security Professional) exam is $599 for members and $699 for non-members.

The ISC2 CCSP (Certified Cloud Security Professional) exam syllabus assesses proficiency in cloud security domains. These domains include cloud concepts, architecture, and design; data security; cloud platform and infrastructure security; application security; operations; and legal and compliance. Candidates must demonstrate comprehensive knowledge in securing cloud environments to successfully pass the exam and earn certification.

Obtaining the ISC2 CCSP (Certified Cloud Security Professional) certification can significantly enhance your career in cloud security. It validates your expertise in securing cloud environments, making you a valuable asset in a rapidly evolving digital landscape. Employers often seek CCSP-certified professionals for roles involving cloud security architecture, design, and management, making it a worthwhile investment for career advancement in the cybersecurity and cloud computing fields.

The time required to become ISC2 CCSP (Certified Cloud Security Professional) certified varies based on individual preparation and experience. Typically, candidates spend several months studying and preparing for the exam. This includes gaining practical experience in cloud security and understanding the relevant domains.

ISC2 CCSP exam can be taken online or from an examination center.

The difficulty of passing the ISC2 CCSP (Certified Cloud Security Professional) exam can vary based on individual experience, knowledge, and preparation. The CCSP exam is known for covering a wide range of topics related to cloud security, including architecture, design, operations, and legal and compliance issues. Candidates with a solid understanding of cloud security principles and hands-on experience in the field may find the exam more manageable.

Candidates must obtain a minimum of 700 points out of a possible 1000 in order to pass the CCSP Exam.

Your CCSP certification is good for three years. However, the member must meet certain requirements to keep his certification active and valid. These requirements include attaining 30 CPE credits each year and 90 CPE credits for the three-year certification cycle.

The salary range for CCSP-certified professionals can be anywhere from $100,000 to $150,000 or more annually, depending on the specific role, industry, and geographic location.

 

Reviews

Feedback from our CCSP delegates.

Hans Sjöberg

Very rewarding and educational training with a professional and educational instructor. I will be well prepared when I take the exam

Kevin Reid

I would highly recommend Readynez for professionals who need time to focus on training + certification

Why Pay More??

Go beyond one certification Achieve Complete Masterymedal-icon

Why settle for just one certification course when you can attend ALL certification courses for the price of less than one single course?

Unlimited Training delegate
  • [Dictionary item: Orange-check] 60+ Courses for the price of less than one
  • [Dictionary item: Orange-check] LIVE Instructor-led courses
  • [Dictionary item: Orange-check] Expert Instructors at your fingertips
  • [Dictionary item: Orange-check] Money-back Guarantee
  • [Dictionary item: Orange-check] Flexible payment options
EXPLORE UNLIMITED TRAINING

A perfect tool to help us develop the skills and competencies we need for success

Kasper Meyer Christensen


A training solution so good that it pays for itself

50%
MINIMUM SAVINGS

Businesses leveraging Readynez Unlimited save at least 50% on their training and certifications - and many up to 80%

2.4 x
COURSES PER LICENSE

Unlimited license holders attend on average 2.4 courses per year


Get more for less with Unlimited Training

60+ INSTRUCTOR-LED COURSES

For the price of less than one course.

SAME HIGH READYNEZ QUALITY

Just cheaper and more flexible.

FLEXIBLE PAYMENT OPTIONS

The easiest, most flexible and cheapest way to get Certified.

UNLIMITED ACCESS

Attend as many courses you want - no limitations!

MONEY-BACK GUARANTEE

Refund provided if license costs surpass the value of your training.

LIVE TRAININGS ONLY

Interact 1-on-1 with 50+ seasoned instructors.

Basket

{{item.CourseTitle}}

Price: {{item.ItemPriceExVatFormatted}} {{item.Currency}}