Exam Objective:

Domain 01: Architectural Concepts & Design Requirements

Domain 02: Cloud Data Security

Domain 03: Cloud Platform & Infrastructure Security

Domain 04: Cloud Application Security

Domain 05: Operations

Domain 06: Legal & Compliance

Detailed Syllabus:

Domain 01: Architectural Concepts & Design Requirements

Understand Cloud Computing Concepts
Describe Cloud Reference Architecture
Understand Security Concepts Relevant to Cloud Computing
Understand Design Principles of Secure Cloud Computing
Identify Trusted Cloud Services

Domain 02: Cloud Data Security

Understand Cloud Data Lifecycle (CSA Guidance)
Design and Implement Cloud Data Storage Architectures
Design and Apply Data Security Strategies
Understand and Implement Data Discovery and Classification Technologies
Design and Implement Relevant Jurisdictional Data Protections for Personally Identifiable Information (PII)
Design and Implement Data Rights Management
Plan and Implement Data Retention, Detection, and Archiving Policies
Design and Implement Auditability, Traceability and Accountability of Data Events

Domain 03: Cloud Platform & Infrastructure Security

Comprehend Cloud Infrastructure Components
Analyze Risks Associated to Cloud Infrastructure
Design and Plan Security Controls
Plan Disaster Recovery and Business Continuity Management

Domain 04: Cloud Application Security

Recognize the need for Training and Awareness in Application Security
Understand Cloud Software Assurance and Validation
Use Verified Secure Software
Comprehend the Software Development Life-Cycle (SDLC) Process
Apply the Secure Software Development Life-Cycle
Comprehend the Specifics of Cloud Application Architecture
Design Appropriate Identity and Access Management (IAM) Solutions

Domain 05: Operations

Support the Planning Process for the Data Center Design
Implement and Building Physical Infrastructure for Cloud Environment
Run Physical Infrastructure for Cloud Environment
Manage Physical Infrastructure for Cloud Environment
Build Logical Infrastructure for Cloud Environment
Run Logical Infrastructure for Cloud Environment
Manage Logical Infrastructure for Cloud Environment
Ensure Compliance with Regulations and Controls (e.g., ITIL, ISO/IEC 20000-1)
Conduct Risk Assessment to Logical and Physical Infrastructure
Understand the Collection, Acquisition and Preservation of Digital Evidence
Manage Communication with Relevant Parties

Domain 06: Legal & Compliance

Understand Legal Requirements and Unique Risks within the Cloud Environment
Understand Privacy Issues, Including Jurisdictional Variation
Understand Audit Process, Methodologies, and Required Adaptations for a Cloud Environment
Understand Implications of Cloud to Enterprise Risk Management
Understand Outsourcing and Cloud Contract Design
Execute Vendor Management

If You Like What We Do Here On PentesterWorld, You Should Consider:

Stay Connected to: Twitter | Facebook

Subscribe to our email updates: Sign Up Now

 

We are thankful for your support.