Study Guide for the Certificate of Cloud Auditing Knowledge (CCAK) Now Available
Blog Article Published: 02/23/2021
The Certificate of Cloud Auditing Knowledge (CCAK) Study Guide is now available for purchase. The study guide is a valuable resource for IT, business professionals looking to qualify for the CCAK exam. It helps individuals acquire the necessary foundational knowledge of cloud governance, compliance, security, and auditing as they prepare to qualify for the CCAK, the first credential available for industry professionals to demonstrate their expertise in the essential principles of auditing the security of cloud computing systems. Developed with the support of the Cloud Audit Expert group, the guide takes a deep dive into the content covered in the CCAK and reinforces materials with a combination of basic concepts and terminology, targeted examples, and best practices.
“With the release of the study guide, we have achieved a major industry milestone. Cloud migration is driving demand for multiple evaluations to mitigate risk and having a complete guide to auditing and assessing the cloud will have a major impact on the trajectory of cloud security,” - Daniele Catteddu, Chief Technology Officer, Cloud Security Alliance.
Developed by CSA and ISACA, the CCAK credential and training program fills the need for vendor-neutral, technical training and credentials in cloud auditing. By building on the body of knowledge covered in CSA’s Certificate of Cloud Security Knowledge (CCSK) and complementing ISACA’s ANSI-accredited certifications, CCAK delivers the best possible solution for cloud auditing education.
The guide encompasses chapters on cloud governance, cloud compliance programs, CSA’s Cloud Controls Matrix (CCM) and Consensus Assessments Initiative Questionnaire (CAIQ), cloud auditing, continuous assurance and compliance, as well as a glossary of key terms. Additional chapters cover CCM auditing guidelines, cloud threat analysis methodology using CCM, and evaluating a cloud compliance program. Each chapter outlines basic learning objectives with ensuing sections providing content knowledge and a short quiz.
Topics are presented at an introductory level and cover:
- Governance, Assurance, Transparency and Accountability in the cloud
- Cloud Governance tools: Policies, Security Assessment, Audit, Contracts and SLAs
- Designing, building and evaluating a Cloud Compliance Program
- Relevant cloud standards, security frameworks, certifications and attestation
- Cloud controls objectives, technical and process controls, security metrics
- The impact of cloud computing on auditing
- The differences in security and auditing IaaS-PaaS-SaaS
- The key role of the shared responsibility model
- Continuous auditing and DevSecOps
The Certificate of Cloud Auditing Knowledge Study Guide is available for purchase at a cost of $59 for members and $70 for non-members.
Join our LinkedIn Live event!
Interested in learning more about the CCAK? Join our LinkedIn Live event on March 2nd hosted by Daniele Catteddu, CTO at Cloud Security Alliance and Paul Philips, Technical Research Manager, ISACA where they will discuss how to establish cloud audit expertise.