Membership
Become a Member
Enterprises
Solution Providers
Current Members
Solution Providers
Affiliates
Assurance
STAR Program
STAR Levels
View Registry
Submit to Registry
Provide Feedback
GDPR Code of Conduct for STAR
STAR Resources
CAIQ
Cloud Controls Matrix
GDPR Code of Conduct
CAIQ-Lite
CSA-OneTrust VRM Tool
GDPR
Download the Code of Conduct
Submit Code of Conduct to the Registry
Resource Center
Global Consultancy
Become a Consulting Partner
Find a Consulting Service
Certificates & Training
Certificates
CCSK
CCAK
Trainings
CCAK (Coming Soon)
CCSK Lectures
CCSK Lectures + Labs
Advanced Cloud Security Practitioner
Register for Training
For Individuals
For Enterprises
Instructors
Become an Instructor
Training Partners
Become a Training Partner
Webinars
Cloudbytes
Research
GDPR
Events
Americas
APAC
EMEA
Research
What We Do
Research Working Groups
CSA Research Lifecycle
Research Publications
Security Guidance v4
Cloud Controls Matrix (CCM)
IoT Framework
Contribute
Open Peer Reviews
Surveys
Volunteer FAQ
Ron Knode Award
Working Groups
Internet of Things
DevSecOps
Software Defined Perimeter
Blockchain
Cloud Controls Matrix
EMEA Projects
APAC Projects
Community
About Circle
Create an Account
Login to Circle
How To Get Started
Blog
Events
Americas
APAC
EMEA
Chapters
Global Chapters
Form a Chapter
About
About CSA
Board
History
CSA Staff
CSA EMEA
Press Releases
News Coverage

Certificate of Cloud Security Knowledge (CCSK)

The standard of expertise for cloud security.

View ClassesTake the Exam
Education Home
View Upcoming Classes
Enterprise Training
CCSK Exam
Resources
Home
Education
CCSK

Certificate of Cloud Security Knowledge

As organizations migrate to the cloud, they need information security professionals who are cloud savvy. The CCSK certificate is widely recognized as the standard of expertise for cloud security. It gives you a cohesive and vendor-neutral understanding of how to secure data in the cloud, which will prepare you to earn cloud credentials specific to certain vendors or job functions.

Learn CSA’s Security Guidance V.4 along with...

  • An in-depth understanding of the full capabilities of cloud computing.
  • The knowledge to effectively develop a holistic cloud security program relative to globally accepted standards.
  • Best practices for IAM, cloud incident response, application security, data encryption, SecaaS, securing emerging technologies and more.
  • How to assess the security of cloud providers and your own organization using the cloud-specific governance & compliance tool: Cloud Controls Matrix.
View Upcoming Classes
Download the CCSK Prep-Kit
Justify Your Investment in Cloud Security Training

What are the benefits of earning your CCSK?

If you are looking to earn the Certificate of Cloud Auditing Knowledge (CCAK), we recommend earning your CCSK first.

  • Prove your competency in key cloud security issues through an organization that specializes in cloud research.
  • Increase employment opportunities by filling the skills-gap for cloud-certified professionals.
  • Demonstrate your technical knowledge, skills, and abilities to effectively use controls tailored to the cloud.
  • Learn to establish a baseline of security best practices when dealing with a broad array of responsibilities, from cloud governance to configuring technical security controls.
  • Complement other credentials such as the CCAK, CISA, CISSP and CCSP.

Who should earn their CCSK?

How to Prepare for the CCSK Exam

The CCSK is an open-book, online exam, completed in 90 minutes with 60 multiple-choice questions selected randomly from the CCSK question pool. Purchasing the exam costs $395 and provides you with two test attempts, which you will have 2 years to use. The minimum passing score is 80%. There are several ways you can prepare for the exam.
Option 1

Study on Your Own

You can also study for the exam yourself using our free prep-kit. The kit includes sample questions, an outline of the domains and topics covered in the exam, as well as all of the documents you will be tested on.

Download Prep-Kit
Option 2

Enroll in Training

There are two types of training for the CCSK, the regular class is lectures-only, but there is a lectures + labs version as well. Download the class outlines to see the differences between both courses and determine which is a better fit for you.

Class Formats:

View Upcoming Classes
Recommended

Instructor-Led Training

Receive a superior cloud security education, by enrolling in an instructor-led course. Having direct access to a cloud security expert, lets you ask questions and gain additional context around topics and challenges that are relevant to your particular organization.

View Instructor-Led Classes

Interested in the CCSK training with hands-on labs? You can view the list of upcoming classes here

Read these CCSK Success Stories

Study Materials

CSA is proud to collaborate with McGraw-Hill and announce the release of the “CCSK Certificate of Cloud Security Knowledge All-in-One Exam Guide,” written by CSA-authorized trainer Graham Thompson. This book offers exam-focused coverage of the latest cloud technologies, including virtualization, governance and security. Readers will receive real-world examples and best practices, online content that includes access to 120 additional practice questions, and a 10% discount code for the CCSK exam. You can buy the book here

Course Outlines
Guide to the CCSK
CCSK Prep-Kit

The Security Guidance v.4 outlines specific uses and applications of the cloud and addresses regulatory issues and inherent risks in using cloud computing on various technologies including: IoT, blockchain and DevSecOps.

 

CSA Security Guidance v.4

Download Now

An in-depth and independent analysis outlining the information security benefits and key security risks of cloud computing with practical advice on how to protect your organization.

 

ENISA Recommendations

Download Now

The Cloud Controls Matrix provides fundamental security principles that guide cloud service vendors toward the most secure practices. For prospective cloud customers it helps in assessing the overall security posture of cloud providers.

 

CSA Cloud Controls Matrix

Download Now

Domains Covered

CSA CCSK Domain 01 Icon

DOMAIN 1

Cloud Computing Concepts and Architecture
CSA CCSK Domain 02 Icon

DOMAIN 2

Governance and Enterprise Risk Management
CSA CCSK Domain 03 Icon

DOMAIN 3

Legal Issues, Contracts, and Electronic Discovery
CSA CCSK Domain 04 Icon

DOMAIN 4

Compliance and Audit Management
CSA CCSK Domain 05 Icon

DOMAIN 5

Information Governance
CSA CCSK Domain 06 Icon

DOMAIN 6

Management Plane and Business Continuity
CSA CCSK Domain 07 Icon

DOMAIN 7

Infrastructure Security
CSA CCSK Domain 08 Icon

DOMAIN 8

Virtualization and Containers
CSA CCSK Domain 09 Icon

DOMAIN 9

Incident Response
CSA CCSK Domain 10 Icon

DOMAIN 10

Application Security
CSA CCSK Domain 11 Icon

DOMAIN 11

Data Security and Encryption
CSA CCSK Domain 12 Icon

DOMAIN 12

Identity, Entitlement and Access Management
CSA CCSK Domain 13 Icon

DOMAIN 13

Security as a Service
CSA CCSK Domain 14 Icon

DOMAIN 14

Related Technologies
CSA CCSK CCM Icon

EXTRA DOMAIN

Cloud Controls Matrix
CSA CCSK ENISA Icon

EXTRA DOMAIN

ENISA Recommendations
Veterans Can Earn the CCSK for Free

I recently passed the CSA Certificate of Cloud Security Knowledge and I found so much of the content directly valuable. I would recommend it to all IT security professionals. It provides a set of comprehensive and vendor neutral cloud computing principles that are invaluable across security roles and responsibilities. The CSA Security Guidance v4 document will be required reading for all my engineering talent in our organization going forward.

Cory Cowgill
CTO of Fusion Risk Management

With CCSK certification, professionals who have Cloud Computing responsibilities can demonstrate thorough Cloud security knowledge based on the CSA’s catalogue of security best practices.

Patrick Harding
CTO, Ping Identity

As enterprises move toward cloud computing, they are desperately seeking guidance and education in this new domain. CSA is bridging this gap and the CCSK provides an important first step in establishing baseline knowledge for individuals tasked with building and managing applications to the cloud.

Michael Sutton
CISO, Zscaler

The CSA, in providing a set of goals through the CCSK, is challenging security practitioners to become the cloud thought-leaders we need today and tomorrow to ensure safe and secure cloud environments. In developing the CCSK, CSA is 'setting the bar' for security professionals and providing business executives a means to gauge the opinions and rhetoric associated with security in the cloud.

Jerry Archer
CSO, Sallie Mae

The CCSK reflects both the operational knowledge of the CCM (Cloud Controls Matrix) as well as the strategic goals for the CSA. The CCM itself is a superset of many existing security control standards, which makes the CCSK all the more relevant to today's security environment.

John Checco
President Emeritus for the New York Metro InfraGard Members Alliance

This is the mother of all cloud computing security certifications. The Certificate of Cloud Security Knowledge certification is vendor-neutral, and certifies competency in key cloud security areas.

CIO.com
Top Ten Cloud Computing Certifications