SC200: ISC2™ CCSP Preparation

Agenda:

• Domain 1: Cloud Concepts, Architecture and Design ~ 17 %
  • Understanding of cloud computing concepts, roles and responsibilities
  • Description of the cloud reference architecture
  • Understanding of relevant security concepts in cloud computing
  • Understanding of design principles for secure cloud computing
  • Evaluation of cloud service providers (CSPs)
  • Understanding AI and machine learning in the cloud security context
    
    
• Domain 2: Cloud data security ~ 20 %
  • Description of cloud data concepts and data lifecycles
  • Design and implementation of cloud data storage architectures
  • Design and application of data security technologies and strategies
  • Implementation of data discovery
  • Planning and implementation of data classification
  • Design and implementation of Information Rights Management (IRM)
  • Planning and implementation of data retention, deletion and archiving
  • Design and implementation of auditability, traceability and accountability for data events
  • Understanding data protection for AI and ML data
    
    
• Domain 3: Cloud platform infrastructure security ~ 17 %
  • Understanding of components of cloud infrastructures and cloud platforms
  • Design of a secure data center
  • Analysis of risks related to cloud infrastructures and platforms
  • Planning and implementation of security controls
  • Planning of Business Continuity (BC) and Disaster Recovery (DR)
    
    
• Domain 4: Cloud application security ~ 16 %
  • Promotion of training and awareness for application security
  • Description of the Secure Software Development Lifecycle (SDLC)
  • Application of the Secure Software Development Lifecycle (SDLC)
  • Application of cloud software assurance and validation
  • Use of verified and secure software
  • Understanding and application of specific aspects of cloud application architectures
  • Development of suitable solutions for Identity & Access Management (IAM)
    
    
• Domain 5: Operations of cloud instances ~ 17 %
  • Building and implementation of the physical and logical infrastructure for cloud environments
  • Operation and maintenance of the physical and logical infrastructure for cloud environments
  • Implementation of operational controls and standards
  • Support for digital forensics
  • Management of communication with relevant parties
  • Management of security measures, monitoring, incident response and vulnerability management
    
    
• Domain 6: Legal issues and compliance ~ 13 %
  • Presentation of legal requirements and specific risks in cloud environments
  • Understanding of data protection requirements and international legal jurisdictions
  • Understanding of audit processes, audit methods and necessary adaptations for cloud environments
  • Understanding of the impact of cloud on Enterprise Risk Management
  • Understanding of outsourcing and cloud contract design
  • Consideration of supplier, contract and supply chain management in the cloud context
    
    
• Systematic Exam preparation
  • Scope and common thread for exam preparation
  • Presentation of materials for exam preparation
  • Discussion of sample questions at exam level
  • Mindset for preparation and the exam
  • Role/responsibility - from which questions in the exam are typically to be answered
  • Strategy/tactics for answering questions
  • Time management for the exam
    
    
• Additionally, there are review and Q&A sessions, and tips and learning methods are presented.

Objectives:

In our course SC200 ISC2™ CCSP Preparation, you will learn to protect your sensitive cloud data and master the six domains of the CCSP (Certified Cloud Security Professional) specified by ISC2™:

1) Cloud Architecture and Design
2) Cloud Data Security
3) Cloud Platform & Infrastructure Security
4) Cloud Application Security
5) Cloud Usage Compliance Requirements
6) Cloud Infrastructure Operations Security

In doing so, you will deepen central topics such as cloud reference architectures, shared responsibility, data security, IAM, cryptography, virtualization, container security, DevSecOps, incident response, forensics, auditability, data protection, risk management as well as AI and machine learning in the cloud security context.

Target audience:

Do you already have experience working with clouds from the major hyperscalers and want to validate your security knowledge? Or are you already security-certified and want to demonstrate your knowledge in the field of cloud? Then the CCSP certification is your new qualification!

The course SC200 ISC2™ CCSP Preparation is also conditionally suitable for career changers and beginners with very solid cloud IT knowledge and experts in IT security - architects, experienced system integrators as well as cloud administrators with strong security know-how are candidates for this security training.

Prerequisites:

Practical prior knowledge in the areas of security and cloud is a mandatory prerequisite for this ISC2™ CCSP Preparation training. Solid knowledge of the security of cloud applications, virtualized operating systems, cloud infrastructure components and/or cloud platforms is required. Basic knowledge of information security and its protection objectives as well as IT security is beneficial. Technical prior knowledge of relevant standards facilitates successful completion of the CCSP certification.

In order to approach the certification exam for the internationally recognized CCSP as a professional, prior knowledge of the core security topics is required!

Description:

The preparation course SC200 ISC2™ CCSP Preparation for the ISC2™ Certified Cloud Security Professional (CCSP) provides the skills you need to manage, secure and evaluate cloud environments and commercial cloud services. As part of the professionally prepared training, you will learn the central cloud and security building blocks in order to prepare systematically for the official ISC2™ CCSP exam.

The use of cloud services at the levels of Infrastructure as a Service (IaaS), Platform as a Service (PaaS) and Software as a Service (SaaS) requires sound know-how in cloud architectures, shared responsibility, data security, IAM, cryptography, virtualization, container security, network security, operations, incident response, forensics as well as governance, risk & compliance. The course shows how these topics interact in modern cloud environments and how cloud security competence can be demonstrated through a globally recognized certification.

The updated exam orientation also takes into account current developments such as multi-cloud, DevSecOps, serverless technologies, secure cloud application architectures, cloud software assurance, supply chain management, API security as well as AI and machine learning in the cloud security context. These include, among other things, the detection and analysis of cloud threats, the validation of data sources, SOAR, ethical issues, regulatory requirements as well as data protection and security of AI/ML data.

The CCSP certification was developed in cooperation between the Cloud Security Alliance (CSA) and the renowned security organization ISC2™ in order to demonstrate your cloud security competence at a global level.

Accompanying the course, the books “ISC2™ CCSP Official Study Guide“ and "ISC2™ CCSP Official Practice Tests" are provided free of charge.

Further Information:
Course language, exam, certificate, validity, timings & proofs, etc. can be found under FAQs

Other Info:

Course Language:
The course SC200 ISC2™ CCSP Preparation is conducted in German with English slides and can be offered in English if needed.

Examination:
With the introduction of the new CBK, the exam was changed to online exams at recognized Pearson VUE centers, which can be found in Hamburg, Berlin, Frankfurt, Düsseldorf, Munich and Leinfelden-Echterdingen. The exam must always be taken and paid for separately at a Pearson VUE Test Center and can be registered flexibly via the Pearson VUE homepage. The exam consists of 100-150 multiple-choice questions and advanced question types, which must be completed in a maximum of 3 hours. The exam is considered passed from 700 out of 1000 points. The exam is offered in English, Chinese, German and Japanese. The entire procedure is explained again in detail by the instructor during the training.

If a participant who has attended the course with us does not successfully pass the exam, we offer a one-time free re-participation in the preparation course, provided this takes place within one year of the original course attendance.
Please note that the costs for retake examinations as well as travel, accommodation, and any licensed training materials are not included.