DAY ONE TOPICS
Cloud Computing Architectural Framework
-
Cloud computing evolution
- Cloud
vocabulary,
- Essential
characteristics of cloud computing,
- Cloud
deployment models
-
Cloud service models
-
Multi- Tenancy,
- Approaches
to create a barrier between the Tenants
-
Cloud computing threats,
- Cloud
Reference Model
- The
Cloud Cube Model
-
Security for cloud computing - How security gets integrated.
Governance and Enterprise Risk Management
-
Information security governance processes
-
Governance and enterprise risk management in cloud computing
-
Governance recommendations,
- Enterprise
Risk Management recommendations
-
Information Risk Management recommendations
-
Third Party Management recommendations
Legal and Electronic Discovery Risk Management
- Legal
and Electronic Discovery Risk Management Security recommendations
Compliance
and Audit
- Cloud
customer responsibilities
- Compliance
-
Audit Security Recommendations.
Information Lifecycle Management
- Key
challenges regarding data lifecycle security
-
Data Security recommendations by ILM Phase
DAY
TWO TOPICS
Portability and Interoperability
-
Changing providers reasons
- Changing
providers expectations
-
Recommendations all cloud solutions
-
IaaS Cloud Solutions
-
PaaS Cloud Solutions
- SaaS
Cloud Solutions
Traditional
Security, Business Continuity, and Disaster Recovery
-
Risk of insider abuse
-
Security baseline
-
Customers actions
-
Contract, Documentation, Recovery Time Objectives (RTOs)
- Customers
responsibility
-
Vendor Security Process (VSP)
Data Center Operations
- Data
Center Operations
-
Security challenge,
- Implement
“Five Principal Characteristics of Cloud Computing
- Data
center security recommendations
Incident
Response, Notification, and Remediation
-
How to identify incidents
-
How to respond to security incidents
-
Security incident containment
-
Security incident response recommendations
Application
Security
- Web
Application
- Application
Weaknesses
-
Attack Methods
- What
is Web Application Security
- Application
security layer
- Vulnerability
distribution
-
Why Web Application Risks Occur
-
Security solutions
-
Applications in cloud environments
-
Security recommendations
Encryption
and Key Management
- Encryption
for confidentiality and integrity
-
Encrypting data at rest
- Key
management lifecycle
- Cloud
encryption standards
-
Recommendations
Identity and Access Management
- Identity
and Access Management in the cloud
-
Identity and Access Management functions
-
Identity and Access Management (IAM) Model
- Identity
Federation
-
Identity provisioning recommendations
-
Authentication for SaaS and Paas customers
-
Authentication for IaaS customers
-
Introducing Identity Services
-
Enterprise Architecture with IDaaS
-
IDaaS security recommendations
Virtualisation
- Hardware
Virtualisation
-
Software Virtualisation
-
Memory Virtualisation
-
Storage Virtualisation
- Data
Virtualisation
- Network
Virtualisation
-
Virtualisation Security recommendations
Enisa
- Cloud Computing Risk Assessmen
|
