Early Pricing and Register 3 and 4th goes free* - email President@ISACA-RI.ORG
Course Agenda:
1. Cloud-Based Computing: An Architectural Overview
- application architectures
- the SPI Cloud Computing Model
- key drivers for moving towards cloud-based services
2. Software as a Service (SaaS)
- key enterprise applications
- the SaaS transaction model(s)
- SaaS security and audit concerns
3. Platform as a Service (PaaS)
- major development providers/platforms
- PaaS security and audit concerns
4. Infrastructure as a Service (IaaS)
- host security in the cloud
- network security in the cloud
- data storage/SAN in a cloud IaaS environment
- cloud bursting
- virtualization models for cloud-based services: Hypervisor VM and inter VM isolation
- cloud-based security domains: virtualized security/firewalls
- IaaS security and audit concerns
5. Cloud-Based Security Tool Introduction
- security tools offered by AWS, Azure, Google
- logging and monitoring capabilities
6. Cloud Security and Audit
- key risks and audit concerns
- identifying key controls and mitigations
- cloud-based risk analysis models: ENISA, NIST, CSA
- security best-practices models for cloud-based services
- audit techniques and tests in a cloud-based environment