Beschreibung:
About the Authors
Mike Chapple, PhD, CCSP, CISSP, is a bestselling author and Teaching Professor of Information Technology, Analytics, and Operations at Notre Dame's Mendoza College of Business. He is also the Academic Director of the University's Master of Science in Business Analytics program and holds multiple technical certifications, including the CIPP/US, CySA+, CISM, PenTest+, and Security+.
David Seidl, CISSP, is Vice President for Information Technology and Chief Information Officer at Miami University. He holds multiple technical certifications including GPEN, GCIH, PenTest+, and CySA+ and has written books on security certification and cyberwarfare.
The only official study guide for the new CCSP exam objectives effective from 2022-2025
(ISC)² CCSP Certified Cloud Security Professional Official Study Guide, 3rd Edition is your ultimate resource for the CCSP exam. As the only official study guide reviewed and endorsed by (ISC)², this guide helps you prepare faster and smarter with the Sybex study tools that include pre-test assessments that show you what you know, and areas you need further review. In this completely rewritten 3rd Edition, experienced cloud security professionals Mike Chapple and David Seidl use their extensive training and hands on skills to help you prepare for the CCSP exam. Objective maps, exercises, and chapter review questions help you gauge your progress along the way, and the Sybex interactive online learning environment includes access to a PDF glossary, hundreds of flashcards, and two complete practice exams. Covering all CCSP domains, this book walks you through Cloud Concepts, Architecture and Design, Cloud Data Security, Cloud Platform and Infrastructure Security, Cloud Application Security, Cloud Security Operations, and Legal, Risk, and Compliance with real-world scenarios to help you apply your skills along the way.
The CCSP credential from (ISC)² and the Cloud Security Alliance is designed to show employers that you have what it takes to keep their organization safe in the cloud. Learn the skills you need to be confident on exam day and beyond.
* Review 100% of all CCSP exam objectives
* Practice applying essential concepts and skills
* Access the industry-leading online study tool set
* Test your knowledge with bonus practice exams and more
As organizations become increasingly reliant on cloud-based IT, the threat to data security looms larger. Employers are seeking qualified professionals with a proven cloud security skillset, and the CCSP credential brings your resume to the top of the pile. (ISC)² CCSP Certified Cloud Security Professional Official Study Guide gives you the tools and information you need to earn that certification and apply your skills in a real-world setting.
Introduction xxiii
Assessment Test xxxii
Chapter 1 Architectural Concepts 1
Cloud Characteristics 3
Business Requirements 5
Understanding the Existing State 6
Cost/Benefit Analysis 7
Intended Impact 10
Cloud Computing Service Categories 11
Software as a Service 11
Infrastructure as a Service 12
Platform as a Service 12
Cloud Deployment Models 13
Private Cloud 13
Public Cloud 13
Hybrid Cloud 13
Multi- Cloud 13
Community Cloud 13
Multitenancy 14
Cloud Computing Roles and Responsibilities 15
Cloud Computing Reference Architecture 16
Virtualization 18
Hypervisors 18
Virtualization Security 19
Cloud Shared Considerations 20
Security and Privacy Considerations 20
Operational Considerations 21
Emerging Technologies 22
Machine Learning and Artificial Intelligence 22
Blockchain 23
Internet of Things 24
Containers 24
Quantum Computing 25
Edge and Fog Computing 26
Confidential Computing 26
DevOps and DevSecOps 27
Summary 28
Exam Essentials 28
Review Questions 30
Chapter 2 Data Classification 35
Data Inventory and Discovery 37
Data Ownership 37
Data Flows 42
Data Discovery Methods 43
Information Rights Management 46
Certificates and IRM 47
IRM in the Cloud 47
IRM Tool Traits 47
Data Control 49
Data Retention 50
Data Audit and Audit Mechanisms 53
Data Destruction/Disposal 55
Summary 57
Exam Essentials 57
Review Questions 59
Chapter 3 Cloud Data Security 63
Cloud Data Lifecycle 65
Create 66
Store 66
Use 67
Share 67
Archive 69
Destroy 70
Cloud Storage Architectures 71
Storage Types 71
Volume Storage: File- Based Storage and Block Storage 72
Object- Based Storage 72
Databases 73
Threats to Cloud Storage 73
Designing and Applying Security Strategies for Storage 74
Encryption 74
Certificate Management 77
Hashing 77
Masking, Obfuscation, Anonymization, and Tokenization 78
Data Loss Prevention 81
Log Capture and Analysis 82
Summary 85
Exam Essentials 85
Review Questions 86
Chapter 4 Security in the Cloud 91
Chapter 5 Shared Cloud Platform Risks and Responsibilities 92
Cloud Computing Risks by Deployment Model 94
Private Cloud 95
Community Cloud 95
Public Cloud 97
Hybrid Cloud 101
Cloud Computing Risks by Service Model 102
Infrastructure as a Service (IaaS) 102
Platform as a Service (PaaS) 102
Software as a Service (SaaS) 103
Virtualization 103
Threats 105
Risk Mitigation Strategies 107
Disaster Recovery (DR) and Business Continuity (BC) 110
Cloud- Specific BIA Concerns 110
Customer/Provider Shared BC/DR Responsibilities 111
Cloud Design Patterns 114
Summary 115
Exam Essentials 115
Review Questions 116
Cloud Platform, Infrastructure, and Operational Security 121
Foundations of Managed Services 123
Cloud Provider Responsibilities 124
S