Course

Objective:

Learning Outcomes:

• Identify and explain the differences between the core products offered by cloud service providers (compute, storage, networks)
• Correlate core security concepts with cloud products (compute, storage, networks)
• Identify attack vectors and techniques used against cloud environments and the potential impact
• Describe the security principles of a cloud environment
• Observe an organization’s cloud infrastructure for potential security incidents (including network, virtual machines, containers and serverless functions)
• Use tools to check for vulnerabilities in virtual machines, containers, and network systems in the cloud
• Develop awareness of incident management concepts
• Demonstrate knowledge of and participate in cloud incident response process (initial detection, investigation, escalation to SOC Tier 2/3 if needed, documentation, writing post-mortems)
• Participate in an incident lifecycle from outbreak to full remediation
• Use Google Cloud tools to help interpret threat detection reports and security compliance reports, and interpret what the reports are saying
• Apply knowledge of cloud security principles to assist the vulnerability manager with preparing status reports of the security of the cloud environment
• Provide input for security standards, policies, procedures and guidelines for their organization
• Support the cultivation of security practices to other parts of the organization
• Assist with recommendations for security enhancements to management or senior IT staff
• Research the latest information technology (IT) security trends and latest threats
• Awareness of industry compliance standards (Governance, risk, and compliance)
• Assist with threat detection and incident response activities focusing on logs and platform events
• Help organize and maintain the overall SOC Platform including maintenance, enhancements and integration

General Topics: