Cybersecurity in the Cloud

Design a simple cloud service and select appropriate security measures to protect it. Associate user roles with entities deploying or using a cloud service. Assess levels of risk and vulnerabilities that apply to cloud services. Learn and apply basic network security techniques in the cloud environment.

Learn how to analyze a data breach and trace it back to the vulnerability that made it possible. Understand data security and privacy requirements arising from legal obligations and industry standards.

After completing this module, learners will be able to list and describe the OWASP Top 10 vulnerabilities and identify methods to provide cloud security assurance as part of the development life cycle. They will also be able to describe different types of virtualization or sandboxing used to protect cloud applications, and explain the application of authentication factors and federated identity solutions in cloud client and server authentication.

After completing this module, learners will be able to associate lists of OWASP Top Ten Risks with major cloud cybersecurity risks, apply appropriate cryptographic techniques to secure authentication mechanisms and cloud data, and identify effective strategies to resist injection attacks, cross-site scripting attacks, and object deserialization attacks. They will also be able to assess strategies to address risks posed by administrative failures.