Architecting Secure Cloud Computing

SABSA Master Class S6

This interactive 2 day course provides an introduction to contemporary concepts of Cloud Computing, based on the models and definitions from a range of sources such as the US National Institute of Standards and Technology, the Cloud Security Alliance, and the European Network and Information Security Agency (ENISA).  The course presents a comprehensive view of the service and deployment models of Cloud Computing, and provides a business-oriented approach to architecting Cloud-based services which meet business needs based on the Sherwood Applied Business Security Architecture (SABSA).


The course guides its participants through the ideas and characteristics of Cloud Computing, and using the SABSA approach provides detailed guidance on how to effectively design and assess Cloud Computing services. It provides practical direction on the way in which Cloud-based services can meet regulatory obligations such as Sarbanes-Oxley and PCI.  Additionally, it prepares the participants for their Cloud Security Alliance Certified Cloud Security Knowledge  (CCSK) examination.

Who Should Attend

This course will be beneficial for anyone who is considering deploying a Cloud service and for Cloud service providers, including:

  • Staff responsible for implementation or management of Cloud-based services
  • Information Security Managers
  • IT managers responsible for delivering or running critical business information systems
  • IT consultants advising clients on security matters
  • Information Service Provider (ISP) staff responsible for Cloud services
  • Security Managers, Auditors, Project Managers, Operations Managers
  • Business Managers

What You Will Learn

This course will enable delegates to:

  • Understand the service and deployment models for Cloud Computing
  • Explain the major characteristics of Cloud service technology
  • Understand the necessary skills to design, implement, maintain and audit a Cloud-based service
  • Assess a service provider’s Cloud service offerings


In addition the course will have hands-on activities in which delegates will have the opportunity to undertake practical exercises with the intention of gaining experience in analysing, comparing and assessing Cloud service offerings.


Prerequisite

A basic knowledge of information systems, security and management processes.

In-House Training

This course is available for private presentation, either on your own premises or 'off-site'. There are many advantages to in-house training. Please contact ALC for a quotation and to discuss your requirements. Contact us at certify@alctraining.com

Course Structure

The course will cover the following topics:


1. Introduction to SABSA

  • The need for a business approach to system architectures
  • An attribute approach to defining critical success requirements
  • The SABSA framework

2. Defining Cloud

  • Definitions NIST, ENISA, CSA
  • Essential characteristics
  • Infrastructure, Platform and Software as a Service models
  • Cloud deployment options
  • CSA and Jericho reference models

3. Current Clouds

  • Amazon EC2
  • Google GAE
  • Microsoft Azure
  • Force.com
  • Go-Grid
  • Cloud.com
  • Rackspace

4.  Architecting Cloud Services

  • Architecting and Building IaaS
  • IaaS threats
  • Developing with PaaS
  • Profiling SaaS
  • SaaS threats
  • Integrating IAM
  • Regulatory & Commercials

5. Cloud Availability

  • Essential and non-essential services
  • Survivability of essential services
  • SLAs and non-essential services

6. Applying a SABSA Approach

  • Analysing SABSA attributes for Cloud
  • Cloud Attribute Taxonomy

7.  Cloud Certification

  • CCSK guidelines