Cloud Security Fundamentals

The planned actions may be carried out in classroom or online format

Cloud Security Fundamentals

In this course, students will learn basic principles associated with securing the cloud and SaaS-based applications through Secure Access Service Edge architecture and identify concepts required to recognize and potentially mitigate attacks against traditional and hybrid datacenters as well as mission critical infrastructure. Students will also learn how to initially setup and configure containers on a docker bridge network and test the container security through vulnerability scans and reports.

NIST/NICE Alignment and Work Roles:

Implementation and Operation – Technical Support (IO-WRL-007)
Implementation and Operation – Network Operations (IO-WRL-004)

Potential Job Roles:

  • Technical Support Associate
  • Help Desk Associate;
  • Network Operations Specialist;
  • Network Admin Associate;
  • Cybersecurity Specialist

Course Objectives:

  • Define cloud computing service, deployment, and shared responsibility models.
  • Describe cloud native technologies including virtual machines, containers and orchestration, as well as serverless computing.
  • Identify cloud native security Kubernetes, Microservices, and DevSecOps.
  • Create a Container to run services on virtual machines.
  • Examine Docker Volumes, Networking, and Host Port Mapping.
  • Run docker bridge network containers in detached and interactive mode.
  • Summarize hybrid data center security design concepts.
  • Configure and test containers with vulnerability scanning.
  • Review traditional data center security solution weaknesses.
  • Investigate east-west and north-south traffic protection methods.
  • Configure the NGFW to deny International Attackers.
  • Recognize the four pillars of Prisma Cloud.
  • Review the layers of a Prisma Access architecture solution.
  • Demonstrate an understanding of unique SaaS-based security risks.
  • Review how Cloud Native Protection Platforms protect SaaS-based applications and data.
  • Describe the layers and capabilities in a Secure Access Service Edge (SASE).
  • Describe the integrated components of a Prisma Access SASE.