(Isc)2 Ccsp Certified Cloud Security Professional Official Study Guide - Guide, 3rd Editio

Read more

Informationen zum Autor About the Authors Mike Chapple, PhD, CCSP, CISSP, is a bestselling author and Teaching Professor of Information Technology, Analytics, and Operations at Notre Dame's Mendoza College of Business. He is also the Academic Director of the University's Master of Science in Business Analytics program and holds multiple technical certifications, including the CIPP/US, CySA+, CISM, PenTest+, and Security+. David Seidl, CISSP, is Vice President for Information Technology and Chief Information Officer at Miami University. He holds multiple technical certifications including GPEN, GCIH, PenTest+, and CySA+ and has written books on security certification and cyberwarfare. Klappentext Your Official Study Guide for the Certified Cloud Security Professional (CCSP)® Exam Organizations increasingly rely on cloud-based services, making cloud data security more vital than ever. The (ISC)2 Certified Cloud Security Professional (CCSP) credential proves your expertise in every aspect of essential cloud security, and this Sybex Study Guide is the only Official Study Guide reviewed and endorsed by (ISC)2. Covering 100% of CCSP exam objectives and completely updated and all-new for the 2022 exam objectives, this book helps you prepare with assessment tests that check exam readiness, objective maps, exercises, chapter review questions, and an industry-leading online study tool set. Along with plenty of practice in applying critical concepts and skills, you'll have online access to two complete practice exams, a searchable glossary of essential terms, and more than 100 electronic flash cards to help you review. It's the smartest, most effective way to prepare for the exam - and further your career. Coverage of all exam objectives in this Study Guide means you'll be ready for: Cloud Concepts, Architecture, and Design Cloud Data Security Cloud Platform and Infrastructure Security Cloud Application Security Cloud Security Operations Legal, Risk, and Compliance Interactive learning environment Take your exam prep to the next level with Sybex's superior interactive online study tools. To access our learning environment, simply visit www.wiley.com/go/sybextestprep, register your book to receive your unique PIN, and instantly gain one year of FREE access after activation to: Interactive test bank with 2 practice exams to help you identify areas where further review is needed. Get more than 90% of the answers correct, and you're ready to take the certification exam. More than 100 electronic flashcards to reinforce learning and last-minute prep before the exam. Comprehensive glossary in PDF format gives you instant access to the key terms so you are fully prepared. ABOUT THE CCSP CERTIFICATION The CCSP is the premier cloud security certification from (ISC)2. This vendor-neutral certification validates IT and information security professionals' knowledge and competency to apply best practices to cloud security architecture, design, operations, and service orchestration. It shows you're on the forefront of cloud security. (ISC)2 is a global nonprofit organization that maintains the Common Body of Knowledge for information security professionals. Candidates must have experience, adhere to the (ISC)2 Code of Ethics and maintain continuing education requirements or recertify every three years. Visit www.isc2.org to learn more. Zusammenfassung The only official study guide for the new CCSP exam objectives effective from 2022-2025(ISC)² CCSP Certified Cloud Security Professional Official Study Guide, 3rd Edition is your ultimate resource for the CCSP exam. As the only official study guide reviewed and endorsed by (ISC)², this guide helps you prepare faster and smarter with the Sybex study tools that include pre-test assessments that show you what you know, and areas you need further review. In...

List of contents

Introduction xxiii
 
Assessment Test xxxii
 
Chapter 1 Architectural Concepts 1
 
Cloud Characteristics 3
 
Business Requirements 5
 
Understanding the Existing State 6
 
Cost/Benefit Analysis 7
 
Intended Impact 10
 
Cloud Computing Service Categories 11
 
Software as a Service 11
 
Infrastructure as a Service 12
 
Platform as a Service 12
 
Cloud Deployment Models 13
 
Private Cloud 13
 
Public Cloud 13
 
Hybrid Cloud 13
 
Multi- Cloud 13
 
Community Cloud 13
 
Multitenancy 14
 
Cloud Computing Roles and Responsibilities 15
 
Cloud Computing Reference Architecture 16
 
Virtualization 18
 
Hypervisors 18
 
Virtualization Security 19
 
Cloud Shared Considerations 20
 
Security and Privacy Considerations 20
 
Operational Considerations 21
 
Emerging Technologies 22
 
Machine Learning and Artificial Intelligence 22
 
Blockchain 23
 
Internet of Things 24
 
Containers 24
 
Quantum Computing 25
 
Edge and Fog Computing 26
 
Confidential Computing 26
 
DevOps and DevSecOps 27
 
Summary 28
 
Exam Essentials 28
 
Review Questions 30
 
Chapter 2 Data Classification 35
 
Data Inventory and Discovery 37
 
Data Ownership 37
 
Data Flows 42
 
Data Discovery Methods 43
 
Information Rights Management 46
 
Certificates and IRM 47
 
IRM in the Cloud 47
 
IRM Tool Traits 47
 
Data Control 49
 
Data Retention 50
 
Data Audit and Audit Mechanisms 53
 
Data Destruction/Disposal 55
 
Summary 57
 
Exam Essentials 57
 
Review Questions 59
 
Chapter 3 Cloud Data Security 63
 
Cloud Data Lifecycle 65
 
Create 66
 
Store 66
 
Use 67
 
Share 67
 
Archive 69
 
Destroy 70
 
Cloud Storage Architectures 71
 
Storage Types 71
 
Volume Storage: File- Based Storage and Block Storage 72
 
Object- Based Storage 72
 
Databases 73
 
Threats to Cloud Storage 73
 
Designing and Applying Security Strategies for Storage 74
 
Encryption 74
 
Certificate Management 77
 
Hashing 77
 
Masking, Obfuscation, Anonymization, and Tokenization 78
 
Data Loss Prevention 81
 
Log Capture and Analysis 82
 
Summary 85
 
Exam Essentials 85
 
Review Questions 86
 
Chapter 4 Security in the Cloud 91
 
Chapter 5 Shared Cloud Platform Risks and Responsibilities 92
 
Cloud Computing Risks by Deployment Model 94
 
Private Cloud 95
 
Community Cloud 95
 
Public Cloud 97
 
Hybrid Cloud 101
 
Cloud Computing Risks by Service Model 102
 
Infrastructure as a Service (IaaS) 102
 
Platform as a Service (PaaS) 102
 
Software as a Service (SaaS) 103
 
Virtualization 103
 
Threats 105
 
Risk Mitigation Strategies 107
 
Disaster Recovery (DR) and Business Continuity (BC) 110
 
Cloud- Specific BIA Concerns 110
 
Customer/Provider Shared BC/DR Responsibilities 111
 
Cloud Design Patterns 114
 
Summary 115
 
Exam Essentials 115
 
Review Questions 116
 
Cloud Platform, Infrastructure, and Operational Security 121
 
Foundations of Managed Services 123
 
Cloud Provider Responsibilities 124
 
S