Let’s Get into the Cloud!!!
Topic: Cloud Computing Security and Audit
Presented by John Tannahill
Time: Doors open at 7:30 AM. Class is 8:00 AM - 5:00 PM
7 CPE's
Breakfast, lunch and snacks will be provided
Ticket Prices:
Members - $50.00
Non-Members - $140.00
Students - $25.00
EXECUTIVE SUMMARY:
This session will focus on the audit and security issues related to Cloud Computing environments including AWS, Azure, DevOps! Resources to effectively audit and assess the Cloud Environment will be covered. The course outline includes:
- Understand Cloud architectures and security & control components
- Understand key risk and control issues
- How to perform cloud security & control assessments / audits
- Understand cloud shared responsibility models
COURSE OUTLINE:
Cloud Security & Control Requirements
- Network Security
- Authentication and Authorization (SAML; OAUTH; OpenID Connect)
- Federated Identity Management / Directory Services
- Access Control
- Data Security & Encryption
- CASB (Cloud Access Security Broker) Overview
- Provisioning and Security Administration
- Privilege Management
- Configuration Management
- Change Management
- Security Configuration
- Logging and Monitoring / SIEM
- Incident Management
- Vulnerability Management
- Penetration Testing
- Backup & Recovery / DRP / BCP
AWS Security & Audit
- Foundation Services
- Three-Tier Web Services
- Regions
- Virtual Private Cloud (VPC)
- AMI (Machine Images)
- S3 Buckets
- IAM (Identity & Access Management)
- Cloud Trail
- Cloud Watch
- AWS Config
Azure Security & Audit
- Foundation Services
- Security Mechanisms and Tools
DevOps Security & Control
- DevOps Overview
- SecDevOps
- Key Control Practices
- DevOps Tools
- Cloud / Virtualization / Containers
Audit Tools & Techniques
- ISACA Security and Audit Resources
- Cloud Security Certifications
- Example Audit Programs & Checklists
SPEAKER BIO:
John Tannahill, CISM, is a management consultant specializing in information security and audit services. His current focus is on information security management and control in large information systems environments and networks. His specific areas of technical expertise include UNIX and Windows operating system security, network security, and Oracle and Microsoft SQL Server security. Tannahill is a frequent speaker in Canada, Europe and the US on the subject of information security.
AGENDA:
7:30am- 8:00am: Registration, Continental Breakfast
8:30am-12:00pm: Introduction of the Speaker and Initiation of the presentation
Breaks will be as often as needed or at breaks in the presentation
12:00pm-1:00pm: Lunch
1:00pm-5:00pm: Afternoon presentation / Closing / Survey
Refunds, excluding any PayPal processing fees, will be provided for cancellations submitted more than 72 hours prior to the event start time.
past_event
VENUE AND PARKING INFORMATION:
This event is being held at the University of Central Florida. Visitors should enter the main campus from University Boulevard.
Parking is available in PARKING GARAGE A for $5.00, payable at one of the self-pay stations. Please be prepared to pay cash or use a credit card.
Please review the map below and become familiar with the route into and out of the UCF Campus.
past_event