Secure your CSSP certification
CCSP is the world's leading Cloud Security certification. It covers the advanced technical skills and knowledge to design, manage, and secure data, applications, and infrastructure in the cloud using best practices, policies, and procedures.
If you're a cloud security professional seeking your CSSP certification, this book is a perfect way to prepare for the exam. Covering in detail all six domains, the expert advice in this book gives you key information you'll need to pass the exam. In addition to the information covered on the exam, you'll get tips on setting up a study plan, tips for exam day, and access to an online test bank of questions.
* Key information for all six exam domains
* Test -taking and exam day tips and tricks
* Free online practice questions and flashcards
* Coverage of the core concepts
From getting familiar with the core concepts to establishing a study plan, this book is all you need to hang your hat on that certification!
Autorentext
Arthur J. Deane is a security and compliance executive at Google. He is a technical professional with 13+ years experience in information security, cloud security, IT risk management, and systems engineering.
Klappentext
FEATURES
- 2 Practice Tests Online
- Expert Strategies 100 Flashcards Study Tips
Secure your (ISC)2 CCSP certification
The Certified Cloud Security Professional (CCSP) is the world's leading cloud security certification. It verifies that you have the technical skills and know-how to design, manage, and secure data, applications, and infrastructure in the cloud. This guide is the perfect way to prepare for that all-important certification exam! It covers all six domains, with expert advice to help you avoid pitfalls and achieve your best score. You'll also find recommendations on setting up a study plan, tips for exam day, and online practice tests to help you be ready.
Inside...
- How to prepare for the CCSP examination
- The latest updates to the CCSP Common Body of Knowledge (CBK)
- Advice on getting the most out of a CCSP certification
- Tips on studying for the exam and a stress-free test day
Zusammenfassung
Secure your CSSP certification
CCSP is the world's leading Cloud Security certification. It covers the advanced technical skills and knowledge to design, manage, and secure data, applications, and infrastructure in the cloud using best practices, policies, and procedures.
If you're a cloud security professional seeking your CSSP certification, this book is a perfect way to prepare for the exam. Covering in detail all six domains, the expert advice in this book gives you key information you'll need to pass the exam. In addition to the information covered on the exam, you'll get tips on setting up a study plan, tips for exam day, and access to an online test bank of questions.
- Key information for all six exam domains
- Test -taking and exam day tips and tricks
- Free online practice questions and flashcards
- Coverage of the core concepts
From getting familiar with the core concepts to establishing a study plan, this book is all you need to hang your hat on that certification!
Inhalt
Introduction 1
About this Book 1
Foolish Assumptions 2
Icons Used in This Book 3
Beyond the Book 4
Where to Go from Here 5
Part 1: Starting Your CCSP Journey 7
Chapter 1: Familiarizing Yourself with (ISC)2 and the CCSP Certification 9
Appreciating (ISC)2 and the CCSP Certification 9
Knowing Why You Need to Get Certified 10
Studying the Prerequisites for the CCSP 11
Understanding the CCSP Domains 12
Domain 1: Cloud Concepts, Architecture and Design 12
Domain 2: Cloud Data Security 13
Domain 3: Cloud Platform and Infrastructure Security 14
Domain 4: Cloud Application Security 15
Domain 5: Cloud Security Operations 15
Domain 6: Legal, Risk and Compliance 16
Preparing for the Exam 17
Studying on your own 18
Learning by doing 19
Getting official (ISC)2 CCSP training 19
Attending other training courses 20
Practice, practice, practice 20
Ensuring you're ready for the exam 21
Registering for the Exam 21
Taking the Exam 22
Identifying What to Do After the Exam 23
Chapter 2: Identifying Information Security Fundamentals 25
Exploring the Pillars of Information Security 26
Confidentiality 26
Integrity 27
Availability 27
Threats, Vulnerabilities, and RisksOh My! 28
Threats 28
Vulnerabilities 28
Risks 29
Securing Information with Access Control 29
Deciphering Cryptography 30
Encryption and decryption 30
Types of encryption 31
Common uses of encryption 32
Grasping Physical Security 34
Realizing the Importance of Business Continuity and Disaster Recovery 34
Implementing Incident Handling 35
Preparing for incidents 37
Detecting incidents 37
Containing incidents 38
Eradicating incidents 39
Recovering from incidents 39
Conducting a Post-Mortem 39
Utilizing Defense-in-Depth 40
Part 2: Exploring the CCSP Certification Domains 41
Chapter 3: Domain 1: Cloud Concepts, Architecture and Design 43
Knowing Cloud Computing Concepts 44
Defining cloud computing terms 44
Identifying cloud computing roles 46
Recognizing key cloud computing characteristics 47
Building block technologies 49
Describing Cloud Reference Architecture 49
Cloud computing activities 50
Cloud service capabilities 51
Cloud service categories 51
Cloud deployment models 55
Cloud shared considerations 58
Impact of related technologies 63
Identifying Security Concepts Relevant to Cloud Computing 64
Cryptography and key management 65
Access control 67
Data and media sanitization 69
Network security 69
Virtualization security 70
Common threats 71
Comprehending Design Principles of Secure Cloud Computing 76
Cloud Secure Data Lifecycle 76
Cloud based disaster recovery (DR) and business continuity (BC) planning 78
Cost benefit analysis 78
Security considerations for different cloud categories 79
Evaluating Cloud Service Providers 82
Verifying against certification criteria 82
Meeting system/subsystem product certifications 88
Chapter 4: Domain 2: Cloud Data Security 91
Describing Cloud Data Concepts 91
Cloud data lifecycle phases 92
Data dispersion 94
Designing and Implementing Cloud Data Storage Architectures 94
Storage types 94<...