Introduction to Cloud Computing
-
Welcome and intro to the program
-
Example IT supply chain: mobile app (3:55)
-
What are the essentials of cloud? Domain 1 of CCSK.
-
CCSKv4 Domain 1 questions
-
Cloud Service models
-
Service Model Game
-
Shared responsibility model
-
Services of the Major Cloudproviders, and how they map
-
Courseware for the Major Cloudproviders
Introduction to PCI-DSS
Cloud Provider Documentation
PCI Requirement 1: Network
Labs
-
Prepare for Labs - required skills
-
Check your AWS lab access
-
Check your MS Azure lab access
-
AWS lab architecture
-
Requirement 1 example, AWS Security groups - your turn
-
Requirement 1.2.3, Review the AWS Lab Network Diagram 'in vivo'
-
CloudWenger: The CLI Swiss Army knife
-
MSA lab architecture
-
Requirement 1.2.3, Review the MSA Lab Network Diagram 'in vivo'
AWS Example Architectures
AKS Example Architectures
Where do Technical Security Controls Come From?
-
New technology brings new risks and new controls
-
CIS Benchmark AWS Foundations
-
CIS Benchmark MSA Foundations
-
CIS Benchmark GCP Foundations
-
Lab: Getting started with CIS controls
-
Lab R1 - Your turn, again
-
Working with the CIS community
-
Web versus Command line (CLI) versus API
-
Multiple approaches for checking controls - a network isolation example
PCI Requirement 2: System components
PCI Requirement 3: Data Protection
PCI Requirement 4: Open networks
PCI Requirement 5: Workload Antivirus
Control Frameworks and Mappings
PCI Requirement 6: Software and Supply Chain
PCI Requirement 7 & 8: Identity
PCI Requirement 9: Physical
PCI Requirement 10: Logging and Monitoring
PCI Requirement 11: Pentesting and scanning
PCI Requirement 12: Scope and Policy
Bonus section
Docker, Kubernetes and Automation
