(ISC)2 CCSP Certified Cloud Security Professional Official Study Guide, 3rd Edition

(ISC)2 CCSP Certified Cloud Security Professional Official Study Guide, 3rd Edition

by Mike Chapple, David Seidl
Released October 2022
Publisher(s): Sybex
ISBN: 9781119909378

Read it now on the O’Reilly learning platform with a 10-day free trial.

O’Reilly members get unlimited access to books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Book description

The only official study guide for the new CCSP exam objectives effective from 2022-2025

(ISC)2 CCSP Certified Cloud Security Professional Official Study Guide, 3rd Edition is your ultimate resource for the CCSP exam. As the only official study guide reviewed and endorsed by (ISC)2, this guide helps you prepare faster and smarter with the Sybex study tools that include pre-test assessments that show you what you know, and areas you need further review. In this completely rewritten 3rd Edition, experienced cloud security professionals Mike Chapple and David Seidl use their extensive training and hands on skills to help you prepare for the CCSP exam. Objective maps, exercises, and chapter review questions help you gauge your progress along the way, and the Sybex interactive online learning environment includes access to a PDF glossary, hundreds of flashcards, and two complete practice exams. Covering all CCSP domains, this book walks you through Cloud Concepts, Architecture and Design, Cloud Data Security, Cloud Platform and Infrastructure Security, Cloud Application Security, Cloud Security Operations, and Legal, Risk, and Compliance with real-world scenarios to help you apply your skills along the way.

The CCSP credential from (ISC)2 and the Cloud Security Alliance is designed to show employers that you have what it takes to keep their organization safe in the cloud. Learn the skills you need to be confident on exam day and beyond.

  • Review 100% of all CCSP exam objectives
  • Practice applying essential concepts and skills
  • Access the industry-leading online study tool set
  • Test your knowledge with bonus practice exams and more

As organizations become increasingly reliant on cloud-based IT, the threat to data security looms larger. Employers are seeking qualified professionals with a proven cloud security skillset, and the CCSP credential brings your resume to the top of the pile. (ISC)2 CCSP Certified Cloud Security Professional Official Study Guide gives you the tools and information you need to earn that certification and apply your skills in a real-world setting.

Table of contents

  1. Cover
  2. Title Page
  3. Copyright
  4. Acknowledgments
  5. About the Authors
  6. About the Technical Editor
  7. About the Technical Proofreader
  8. Introduction
    1. CCSP Certification
    2. Taking the CCSP Exam
    3. Computer-Based Testing Environment
    4. Exam Retake Policy
    5. Work Experience Requirement
    6. Recertification Requirements
    7. What Does This Book Cover?
    8. CCSP Exam Objectives
    9. CCSP Certification Exam Objective Map
    10. How to Contact the Publisher
    11. Assessment Test
    12. Answers to Assessment Test
  9. Chapter 1: Architectural Concepts
    1. Cloud Characteristics
    2. Business Requirements
    3. Cloud Computing Service Categories
    4. Cloud Deployment Models
    5. Multitenancy
    6. Cloud Computing Roles and Responsibilities
    7. Cloud Computing Reference Architecture
    8. Virtualization
    9. Cloud Shared Considerations
    10. Emerging Technologies
    11. Summary
    12. Exam Essentials
    13. Review Questions
  10. Chapter 2: Data Classification
    1. Data Inventory and Discovery
    2. Information Rights Management
    3. Data Control
    4. Summary
    5. Exam Essentials
    6. Review Questions
  11. Chapter 3: Cloud Data Security
    1. Cloud Data Lifecycle
    2. Cloud Storage Architectures
    3. Threats to Cloud Storage
    4. Designing and Applying Security Strategies for Storage
    5. Summary
    6. Exam Essentials
    7. Review Questions
  12. Chapter 4: Security in the Cloud
    1. Shared Cloud Platform Risks and Responsibilities
    2. Cloud Computing Risks by Deployment Model
    3. Cloud Computing Risks by Service Model
    4. Virtualization
    5. Disaster Recovery (DR) and Business Continuity (BC)
    6. Cloud Design Patterns
    7. Summary
    8. Exam Essentials
    9. Review Questions
  13. Chapter 5: Cloud Platform, Infrastructure, and Operational Security
    1. Foundations of Managed Services
    2. Shared Responsibilities by Service Type
    3. Securing Communications and Infrastructure
    4. Securing Hardware and Compute
    5. Securing Software
    6. Managing Virtual Systems
    7. Assessing Vulnerabilities
    8. Securing the Management Plane
    9. Auditing Your Environment and Provider
    10. Summary
    11. Exam Essentials
    12. Review Questions
  14. Chapter 6: Cloud Application Security
    1. Developing Software for the Cloud
    2. Cloud Application Architecture
    3. Cloud-Secure Software Development Lifecycle (SDLC)
    4. Cloud Application Assurance and Validation
    5. Identity and Access Management
    6. Summary
    7. Exam Essentials
    8. Review Questions
  15. Chapter 7: Operations Elements
    1. Designing a Secure Data Center
    2. Managing Security Operations
    3. Summary
    4. Exam Essentials
    5. Review Questions
  16. Chapter 8: Operations Management
    1. Monitoring, Capacity, and Maintenance
    2. Change and Configuration Management
    3. Problem and Incident Management
    4. IT Service Management and Continual Service Improvement
    5. Business Continuity and Disaster Recovery
    6. Summary
    7. Exam Essentials
    8. Review Questions
  17. Chapter 9: Legal and Compliance Issues
    1. Legal Requirements and Unique Risks in the Cloud Environment
    2. Analyzing a Law
    3. Legal Liability
    4. Torts and Negligence
    5. U.S. Privacy and Security Laws
    6. International Laws
    7. Laws, Regulations, and Standards
    8. Information Security Management Systems
    9. Privacy in the Cloud
    10. Cloud Forensics
    11. Audit Processes, Methodologies, and Cloud Adaptations
    12. Summary
    13. Exam Essentials
    14. Review Questions
  18. Chapter 10: Cloud Vendor Management
    1. The Impact of Diverse Geographical Locations and Legal Jurisdictions
    2. Security Policy Framework
    3. Enterprise Risk Management
    4. Risk Treatment and Response
    5. Risk Analysis
    6. Cloud Contract Design
    7. Government Cloud Standards
    8. Manage Communication with Relevant Parties
    9. Summary
    10. Exam Essentials
    11. Review Questions
  19. Appendix: Answers to the Review Questions
    1. Chapter 1: Architectural Concepts
    2. Chapter 2: Data Classification
    3. Chapter 3: Cloud Data Security
    4. Chapter 4: Security in the Cloud
    5. Chapter 5: Cloud Platform, Infrastructure, and Operational Security
    6. Chapter 6: Cloud Application Security
    7. Chapter 7: Operations Elements
    8. Chapter 8: Operations Management
    9. Chapter 9: Legal and Compliance Issues
    10. Chapter 10: Cloud Vendor Management
  20. Index
  21. End User License Agreement

Product information

  • Title: (ISC)2 CCSP Certified Cloud Security Professional Official Study Guide, 3rd Edition
  • Author(s): Mike Chapple, David Seidl
  • Release date: October 2022
  • Publisher(s): Sybex
  • ISBN: 9781119909378