The Official (ISC)2 CCSP CBK Reference, 4th Edition

The Official (ISC)2 CCSP CBK Reference, 4th Edition

by Aaron Kraus
Released October 2022
Publisher(s): Sybex
ISBN: 9781119909019

Read it now on the O’Reilly learning platform with a 10-day free trial.

O’Reilly members get unlimited access to books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Book description

The only official body of knowledge for CCSP—the most popular cloud security credential—fully revised and updated.

Certified Cloud Security Professional (CCSP) certification validates the advanced technical skills needed to design, manage, and secure data, applications, and infrastructure in the cloud. This highly sought-after global credential has been updated with revised objectives. The new third edition of The Official (ISC)2 Guide to the CCSP CBK is the authoritative, vendor-neutral common body of knowledge for cloud security professionals.

This comprehensive resource provides cloud security professionals with an indispensable working reference to each of the six CCSP domains: Cloud Concepts, Architecture and Design; Cloud Data Security; Cloud Platform and Infrastructure Security; Cloud Application Security; Cloud Security Operations; and Legal, Risk and Compliance. Detailed, in-depth chapters contain the accurate information required to prepare for and achieve CCSP certification. Every essential area of cloud security is covered, including implementation, architecture, operations, controls, and immediate and long-term responses.

Developed by (ISC)2, the world leader in professional cybersecurity certification and training, this indispensable guide:

  • Covers the six CCSP domains and over 150 detailed objectives
  • Provides guidance on real-world best practices and techniques
  • Includes illustrated examples, tables, and diagrams

The Official (ISC)2 Guide to the CCSP CBK is a vital ongoing resource for IT and information security leaders responsible for applying best practices to cloud security architecture, design, operations and service orchestration.

Table of contents

  1. Cover
  2. Title Page
  3. Copyright
  4. Acknowledgments
  5. About the Author
  6. About the Technical Editor
  7. Foreword to the Fourth Edition
  8. Introduction
  9. Chapter 1: Cloud Concepts, Architecture, and Design
    1. Understand Cloud Computing Concepts
    2. Describe Cloud Reference Architecture
    3. Understand Security Concepts Relevant to Cloud Computing
    4. Understand Design Principles of Secure Cloud Computing
    5. Evaluate Cloud Service Providers
    6. Summary
  10. Chapter 2: Cloud Data Security
    1. Describe Cloud Data Concepts
    2. Design and Implement Cloud Data Storage Architectures
    3. Design and Apply Data Security Technologies and Strategies
    4. Implement Data Discovery
    5. Implement Data Classification
    6. Design and Implement Information Rights Management
    7. Plan and Implement Data Retention, Deletion, and Archiving Policies
    8. Design and Implement Auditability, Traceability, and Accountability of Data Events
    9. Summary
  11. Chapter 3: Cloud Platform and Infrastructure Security
    1. Comprehend Cloud Infrastructure and Platform Components
    2. Design a Secure Data Center
    3. Analyze Risks Associated with Cloud Infrastructure and Platforms
    4. Plan and Implementation of Security Controls
    5. Plan Disaster Recovery and Business Continuity
    6. Summary
  12. Chapter 4: Cloud Application Security
    1. Advocate Training and Awareness for Application Security
    2. Describe the Secure Software Development Life Cycle Process
    3. Apply the Secure Software Development Life Cycle
    4. Apply Cloud Software Assurance and Validation
    5. Use Verified Secure Software
    6. Comprehend the Specifics of Cloud Application Architecture
    7. Design Appropriate Identity and Access Management Solutions
    8. Summary
  13. Chapter 5: Cloud Security Operations
    1. Build and Implement Physical and Logical Infrastructure for Cloud Environment
    2. Operate Physical and Logical Infrastructure for Cloud Environment
    3. Manage Physical and Logical Infrastructure for Cloud Environment
    4. Implement Operational Controls and Standards
    5. Support Digital Forensics
    6. Manage Communication with Relevant Parties
    7. Manage Security Operations
    8. Summary
  14. Chapter 6: Legal, Risk, and Compliance
    1. Articulating Legal Requirements and Unique Risks within the Cloud Environment
    2. Understand Privacy Issues
    3. Understanding Audit Process, Methodologies, and Required Adaptations for a Cloud Environment
    4. Understand Implications of Cloud to Enterprise Risk Management
    5. Understand Outsourcing and Cloud Contract Design
    6. Summary
  15. Index
  16. End User License Agreement

Product information

  • Title: The Official (ISC)2 CCSP CBK Reference, 4th Edition
  • Author(s): Aaron Kraus
  • Release date: October 2022
  • Publisher(s): Sybex
  • ISBN: 9781119909019