Training

Training Banner

CCSK training

Cloud Computing Security Knowledge - Foundation
The CCSK - Foundation course is based on V3.0 of the CCSK exam and the CSA Security Guidance for Critical Areas of Cloud Computing V3.0.

The Cloud Computing Security Knowledge- Foundation class provides students a comprehensive one day review of cloud security fundamentals and prepares them to take the Cloud Security Alliance CCSK v3.0 certificate exam. Starting with a detailed description of cloud computing, the course covers all major domains in the Guidance v3.0 document from the Cloud Security Alliance, and the recommendations from the European Network and Information Security Agency (ENISA).

This class is geared towards security professionals, but is also useful for anyone looking to expand their knowledge of cloud security. (We recommend attendees have at least a basic understanding of security fundamentals, such as firewalls, secure development, encryption, and identity management). View the class schedule page.

Certificate of Cloud Security Knowledge - Plus
The CCSK- Plus class builds upon the CCSK Foundation class with expanded material and extensive hands-on activities with a second day of training. Students will learn to apply their knowledge as they perform a series of exercises as they complete a scenario bringing a fictional organization securely into the cloud.

This second day of training includes additional lecture, although student’s will spend most of their time assessing, building, and securing a cloud infrastructure during the exercises. View the class schedule page.

CCSK Training Partner Program
For organizations wishing to be partners to provide training for the above courses, please review the CCSK Training Partner Program here. View the class schedule page.

CCSK Master Training Partners

Partner Contact Information
Hewlett Packard Enterprise Education Services
Hewlett Packard Enterprise Education Services
Email APJ Region
Email AMS Region
Email EMEA Region
Visit website

PCI DSS in the Cloud Training

The first ever class dedicated to assessing and implementing PCI DSS controls in cloud computing environments covers how to think of and how to do PCI DSS in various cloud computing environments. Focused primarily on people familiar with PCI DSS, it starts from the “hype-free” cloud computing facts and then delves into key scenarios where PCI DSS and clouds overlap in the real world. You will learn where to look while assessing such environments and what pitfalls and mistakes to avoid. It will also cover the shared responsibility between service providers and merchants in implementing PCI DSS controls. Specifically, we will discuss how PCI DSS Requirement 12.8 applies to various cloud scenarios.

The class would be most useful to PCI DSS QSA, organizations offering PCI DSS consulting as well as merchants planning or implementing PCI compliance.

New classes will be announced soon. Please check back here, or follow the CSA Class Schedule.

Download courseware: How to do PCI DSS in the Cloud (pptx).
Download courseware: How to do PCI DSS in the Cloud (ppt).

Cloud Control Matrix (CCM) Foundation Training

Training Course Overview

This training course is designed to provide training for CSA's Cloud Controls Matrix (CCM), which is a part of CSA’s GRC Stack toolkit. The course will also provide an introduction to the Consensus Assessments Initiative Questionnaire (CAIQ) and CSA Security, Trust & Assurance Registry (STAR).


Course curriculum will center on:

  • Introduction to Cloud
  • Introduction & Purpose of Cloud Controls Matrix
  • Cloud Controls Matrix Structure
  • Cloud Controls Matrix Domains
  • Intro to CAIQ and STAR, the Future, Summary

  • KEY LEARNING OBJECTIVES

    Upon completion of this training, the attendee should be able to use the CCM and CAIQ to be able to:

    For a cloud vendor:

  • Comply with fundamental cloud security principles and requirements included in relevant security standards and legislations
  • Assess the security posture
  • Compare yourself with competitors and industry benchmark

  • For a cloud customer or cloud auditor:

  • Assess the overall level of security offered by cloud provider
  • Build the necessary assessment processes for engaging with cloud providers
  • Leverage the mapping with other industry-accepted security standards, regulations, and controls frameworks (such as ISACA COBIT, FERPA, AICPA, ISO/IEC 27001/27002, NIST, Jericho Forum, NERC CIP, PCI DSS and the CSA Guidance document) to reduce audit complexity
  • Normalize security expectations, cloud taxonomy and terminology, and security measures implemented in the cloud

  • CCM Training is currently being offered upon request. Please email us for more information.

    Upcoming Training Opportunities

    Course Date and Location
    IT2S Group
    CCSK Foundation
    December 5 Online - Português Register
    IT2S Group
    CCSK Plus
    December 5 Online - Português Register
    Hewlett Packard Enterprise
    CCSK Foundation
    December 8 - 9 Online Register
    Intrinsec Security
    CCSK Plus
    December 12 - 14 Online Register
    Intrinsec Security
    CCSK Foundation
    December 12 - 14 Online Register
    HPE
    CCSK Foundation
    December 15 - 16 Virtual Instructor Led Register
    Club Cloud Computing
    CCSK Plus
    January 10-12 Utrecht, Netherlands Register
    Club Cloud Computing
    CCSK Foundation
    January 10 - 12 Utrecht, Netherlands Register
    Intrinsec Security
    CCSK Plus
    January 23 - 25 Online Register
    Intrinsec Security
    CCSK Foundation
    January 23 - 25 Online Register
    Intrinsec Security
    CCSK Foundation
    February 27 - March 1 Herndon, VA (Washington Dulles Marriott Suites) Register
    Intrinsec Security
    CCSK Plus
    February 27 - March 1 Herndon, VA (Washington Dulles Marriott Suites) Register
    Intrinsec Security
    CCSK Foundation
    March 27 - 29 Online Register
    Intrinsec Security
    CCSK Plus
    March 27 - 29 Online Register
    Net Security Training
    CCSK Plus
    April 10 - 11 London, UK Register
    Net Security Training
    CCSK Plus
    September 7 - 11 London, UK Register

    Certified Cloud Security Professional

    Developed by two leading non-profits focused on cloud and information security, the Cloud Security Alliance (CSA) and (ISC)², the Certified Cloud Security Professional (CCSP) credential denotes professionals with deep-seated knowledge and competency derived from hands-on experience with cyber, information, software and cloud computing infrastructure security. CCSPs help achieve the highest standard for cloud security expertise and enable organizations to benefit from the power of cloud computing while keeping sensitive data secure.

    The CCSP credential is designed for experienced information security professionals with at least five years of full-time IT experience, including three years of information security and at least one year of cloud security experience. The CCSP credential is suitable for mid-level to advanced professionals involved with IT architecture, web and cloud security engineering, information security, governance, risk and compliance, and even IT auditing.

    The CCSP exam, administered at Pearson Vue Testing Centers across the globe, tests competence in the six CCSP domains of the (ISC)² CBK (Common Body of Knowledge). Candidates have 4 hours to complete 125 multiple choice questions with a score of 700 or better out of 1000 to pass. The six domains covered on the exam are:

    • Architectural Concepts & Design Requirements
    • Cloud Data Security
    • Cloud Platform & Infrastructure Security
    • Cloud Application Security
    • Operations
    • Legal & Compliance

    Learn more about the CCSP credential and its training opportunities:

    Visit the (ISC)² Website

    CCSK Master Training Partners

    Partner Contact Information
    Hewlett Packard Enterprise Education Services
    Hewlett Packard Enterprise Education Services
    Email APJ Region
    Email AMS Region
    Email EMEA Region
    Visit website

    CCSK Training Partners

    Partner Training Region Contact Info
    Alexandra Institute Scandinavia Web: http://alexandra.dk/ccsk
    APCCOR Asia Web: http://www.apccor.com
    Email Registration: [email protected]
    Fax Registration: +65 67228628
    Contact: [email protected]
    Beijing Athink Co., Ltd. 北京爱思考科技有限公司 Mainland China Phone: +86 10 58733296, +86 13701014158
    Email: [email protected]
    Web: http://www.athink.org/gfpx1.asp
    Bright Moon Security Worldwide Phone: (858) 314-8323
    Email: [email protected]
    Web: http://www.brightmoonsecurity.com
    Web: http://brightmoonsecurity.com/training
    Cégep Limoilou Canada Phone: (418) 647-6607
    Email: [email protected]
    Web: http://www.cegeplimoilou.ca/ccsk
    Cloud Computing Security Limited Greater China Phone: (852) 2922 2992
    Email: [email protected]
    Web: www.cloudsecurity.hk
    Address: Suite 2611, Office Tower, Langham Place, Mongkok, Kowloon, Hong Kong
    Club Cloud Computing Global, Dutch-based Email: [email protected]
    Web: http://www.clubcloudcomputing.com/ccsk-certificate-of-cloud-security-knowledge-course/
    Espion Group United Kingdom Phone: UK +44 (0) 845 050 1711, Ireland +353 (01) 210 1711
    Web: https://www.espiongroup.com/training
    Fast Lane Germany Phone: +49 (0)40 25 33 46 10
    Email: [email protected]
    Web: http://www.flane.de
    Intrinsec USA + Canada Phone: 1-855-732-3348
    Email: [email protected]
    Web: www.intrinsecsecurity.com
    IT2S Academy – IT2S Group Latin America Email: [email protected]
    Web: www.it2s.com.br
    Web: http://www.it2sgroup.com
    Itway SpA Italy Phone: 0039-544-288672
    Email: [email protected]
    Web: www.itwayacademy.com
    Nanoforensic Turkey, EMEA Phone: +90 212 506 81 83
    Email: [email protected]
    Web: http://www.nanoforensic.com/
    Net Security Training Ltd Earling, London, UK, EMEA Phone: +44 (0) 20 8840 4496
    Email: [email protected]
    Web: http://www.net-security-training.co.uk
    Web: http://www.net-security-training.co.uk/ccsk-training-certificate-cloud-security-knowledge/
    Neupart Europe Phone: +45 7025 8030
    Email: [email protected]
    Web: www.neupart.com
    Web: www.neupart.com/ccsk-training
    OnlineCloudSec.com Worldwide Email: [email protected]
    Web: http://onlinecloudsec.com/
    QT&C iSolutions Ltd UK and EMEA Phone: +44(0) 370 04 27001
    Email (sales): [email protected]
    Email (Nigel Landman): [email protected]
    Web: http://www.qtandc.co.uk/
    RedLegg United States Phone: 877 811 5040
    Web: www.redlegg.com
    Securosis, L.L.C. Global, US-based Email: [email protected]
    Web: https://securosis.com
    Sfinity New York Phone: 212-248-4800
    Email: [email protected]
    Web: http://www.sfinitynyc.com/
    Symantec Worldwide Web: http://education.symantec.com
    Vertical Distinct Asia Phone (Malaysia): + 603 6140 6398
    Phone (Singapore): +65 6838 5626
    Email: [email protected]
    Web: www.verticaldistinct.com
    Web: http://verticaldistinct.com/product/certificate-cloud-security-knowledge-ccsk/