Online training based on CSA's vendor-neutral research

Level up your cloud computing knowledge with the variety of CSA online courses and certificates for beginners and pros alike.
mobile-hero-graphic  
Certificate of Cloud Security Knowledge (CCSK)
Certificate of Cloud Security Knowledge (CCSK)
The CCSK certificate is widely recognized as the standard of expertise for cloud security, and gives you a cohesive and vendor-neutral understanding of how to secure data in the cloud.
View Classes
Certificate of Cloud Security Knowledge (CCSK)
Zero Trust Training (ZTT) / CCZT
Zero Trust Training (ZTT) / CCZT
This series of self-paced courses covers essential areas of Zero Trust knowledge, and prepares you for the CCZT. This includes ZT strategy and governance, architecture, planning, implementation, identity, device security and more.
Zero Trust Training (ZTT)
Cloud Infrastructure Security Training
Cloud Infrastructure Security Training
Cloud Infrastructure Security courses build upon an existing baseline of cybersecurity knowledge and introduce key aspects of cloud security that are critical for safeguarding your cloud environment.
View Classes
Cloud Infrastructure Security Training (CIST)
Audit and Compliance
Audit and Compliance
Learn the skills and knowledge required to audit cloud services
Audit & Compliance
All Courses
All Courses
Catalog Page with an overview of all the courses that the CSA Knowledge Center has to offer.
View Classes
CSA Research Library
CSA Research Library
A repository for some of CSA's most popular research artifacts, study materials, and relevant documents. This library includes the CSA Security Guidance v4, ENISA Recommendations, Top Threats document and more.
FREE
Enter Library
Certificate of Cloud Security Knowledge Course Sample
Certificate of Cloud Security Knowledge Course Sample
Try the Certificate of Cloud Security Knowledge (CCSK) self-paced online course for free.
FREE
Cloud Key Management Foundations II
Cloud Key Management Foundations II
Self-paced course. Learn the main technical, operational, regulatory, legal, and financial considerations for cloud KMS deployments, as well as best practices for using programmatic library interfaces and practical API management.
$99
Cloud Infrastructure Security Training (CIST)
Microservices & Containers Fundamentals II
Microservices & Containers Fundamentals II
Self-paced course. Learn the guidelines and practices for secure microservices development and governance, mechanisms for maintaining situational awareness, and container incident management.
$99
Cloud Infrastructure Security Training (CIST)
Containers Lifecycle Management & Assurance
Containers Lifecycle Management & Assurance
Self-paced course. Learn the container lifecycle phases, such as initiation, planning and design, implementation, operations and maintenance, and disposition. Container assurance measures and hardware-based security methods are also covered.
$99
Cloud Infrastructure Security Training (CIST)
CCSK Exam Bundle + Intro to Generative AI & Prompt Engineering
CCSK Exam Bundle + Intro to Generative AI & Prompt Engineering
This bundle includes the CCSK course and exam + FREE Introduction to Generative AI & Prompt Engineering course.
$795
2 Courses
Foundational Cloud Governance and Security Knowledge: 1-day course
Foundational Cloud Governance and Security Knowledge: 1-day course
Virtual Instructor-Led Course. During this course, you will learn the unique requirements for governance, risk, compliance, and security in the cloud, as well as assessment methods and techniques.
$995
Take Course
STAR Lead Auditor Training Exam Bundle
STAR Lead Auditor Training Exam Bundle
Self-paced course. Learn the skills and knowledge required to audit cloud service providers against the STAR Certification standard. Auditing principles, maturity modeling, and Cloud Controls Matrix control areas will also be covered.
$750
2 Course hours
Audit & Compliance
Cloud Key Management Foundations
Cloud Key Management Foundations
Self-paced course. Learn the history, definitions, components, key features, main technologies, and service patterns of cloud key management, as well as considerations for key management system selection and planning.
$99
Take Course
Cloud Infrastructure Security Training (CIST)
Cloud Infrastructure Security Training Bundle
Cloud Infrastructure Security Training Bundle
Cloud Infrastructure Security courses build upon an existing baseline of cybersecurity knowledge and introduce key aspects of cloud security that are critical for safeguarding your cloud environment.
$795
13 Courses
Cloud Infrastructure Security Training (CIST)
Introduction to Generative AI & Prompt Engineering
Introduction to Generative AI & Prompt Engineering
Self-paced. An introduction to AI and machine learning basics, with a focus on generative AI models. Delve into the nuances of different AI models, effective prompt creation, real-world applications, and troubleshooting techniques in prompt engineering.
FREE
Container Architecture Risks  & Mitigations
Container Architecture Risks & Mitigations
Self-paced course. Learn the common container architecture risks and the mitigations for preventing container security failures. Core component risks, container threat scenarios, and relevant mitigations are also covered.
$99
Cloud Infrastructure Security Training (CIST)
DevSecOps: Collective Responsibility
DevSecOps: Collective Responsibility
Learn about the collective responsibility pillar of DevSecOps and the techniques needed to sustain and measure a DevSecOps culture program. Self-paced course.
$99
Cloud Infrastructure Security Training (CIST)
Certificate of Cloud Security Knowledge - Lectures + Labs
Certificate of Cloud Security Knowledge - Lectures + Labs
Virtual Instructor Led Course. This training includes a CCSK exam token and teaches the fundamentals of cloud security including: architecture, data security, managing risk and more. Hands-on labs are included.
$2,195
Take Course
Introduction to CSA Tools
Introduction to CSA Tools
A free introduction to CSA’s cloud governance, risk and compliance tools including the Cloud Controls Matrix (CCM), CAIQ and STAR Registry. In this course sample, we provide a walk through of each of these tools and explain how to use them.
FREE
Take Course
DevSecOps: Bridging Compliance & Development
DevSecOps: Bridging Compliance & Development
Self-paced course. Learn how to bridge the compliance and development gap. Aligning compliance objectives and security measures, identifying inflection points, embedding, automating, measuring, and testing controls are also covered.
$99
Cloud Infrastructure Security Training (CIST)
Top Threats
Top Threats
Learn about the top 11 cloud computing issues related to threats and vulnerabilities, cloud threat modeling techniques, and cloud risk treatment techniques.
$99
Cloud Infrastructure Security Training (CIST)
Microservices & Containers Fundamentals
Microservices & Containers Fundamentals
Self-paced course. Learn the history, evolution, and underlying technologies of microservices and containers, key adjacent architectures, and security challenges and mitigation strategies for deploying applications in containers.
$99
Cloud Infrastructure Security Training (CIST)
DevSecOps: Automation
DevSecOps: Automation
Self-paced course. Learn about DevSecOps best practices and processes to automate security into the development cycle.
$99
Cloud Infrastructure Security Training (CIST)
DevSecOps: Pragmatic Implementation
DevSecOps: Pragmatic Implementation
Self-paced course. In this two part course, learn a framework-agnostic approach to pragmatically embed security within the software development lifecycle (SDLC).
$99
2 Courses
Certificate of Competence in Zero Trust (CCZT)
Certificate of Competence in Zero Trust (CCZT)
This course includes a CCZT exam token and prepares students for the exam with material and study guides that cover foundational Zero Trust knowledge, including strategy, governance, architecture, planning, and implementation.
$455
Architectures & Components of Software-Defined Perimeter
Architectures & Components of Software-Defined Perimeter
In this course, learners will get an in-depth look at the main components, workflows, communication flows, and logging of Software-Defined Perimeter (SDP), as well as SDP and NIST Zero Trust Architecture deployment models.
$99
Zero Trust Training (ZTT)
Key Features & Technologies of Software-Defined Perimeter
Key Features & Technologies of Software-Defined Perimeter
Software-Defined Perimeters enable security professionals to protect their organizations from sophisticated cyber threats. In this course, learners will get an in-depth look at the key features and technologies of SDP.
$99
Zero Trust Training (ZTT)
Certificate of Cloud Security Knowledge
Certificate of Cloud Security Knowledge
Teaches the fundamentals of cloud security including: architecture, data security, managing risk and more.
$495
Certificate of Cloud Security Knowledge (CCSK)
Certificate of Cloud Security Knowledge (CCSK) + Zero Trust Training (ZTT)
Certificate of Cloud Security Knowledge (CCSK) + Zero Trust Training (ZTT)
This bundle includes the CCSK course and exam + FREE Introduction to Zero Trust Architecture course.
Not currently available
Certificate of Cloud Security Knowledge - Exam Bundle
Certificate of Cloud Security Knowledge - Exam Bundle
This course includes the CCSK exam token and teaches the fundamentals of cloud security including: architecture, data security, managing risk and more.
$795
Certificate of Cloud Security Knowledge (CCSK)
DevSecOps: Pragmatic Implementation (Part 1)
DevSecOps: Pragmatic Implementation (Part 1)
Part 1 of a framework-agnostic approach to pragmatically embed security within the software development lifecycle (SDLC).
Not currently available
DevSecOps: Pragmatic Implementation (Part 2)
DevSecOps: Pragmatic Implementation (Part 2)
Part 2 of a framework-agnostic approach to pragmatically embed security within the software development lifecycle (SDLC).
Not currently available
STAR Lead Auditor Training Exam
STAR Lead Auditor Training Exam
This exam tests the student’s knowledge and comprehension on how to effectively conduct 2nd or 3rd-party audits of a cloud service provider (CSP) against the CSA STAR Certification standard.
Not currently available
STAR Lead Auditor Training
STAR Lead Auditor Training
Self-paced course. Learn the skills and knowledge required to audit cloud service providers against the STAR Certification standard. Auditing techniques, maturity modeling, and Cloud Controls Matrix control areas will also be covered.
Not currently available
Introduction to Zero Trust Architecture
Introduction to Zero Trust Architecture
Foundations, definitions, concepts, and components of Zero Trust. In this module, learners will be introduced to goals, benefits, planning considerations, implementation options, and use cases for Zero Trust.
Not currently available
Zero Trust Training (ZTT)
DevSecOps: Pragmatic Implementation (Part 1)
DevSecOps: Pragmatic Implementation (Part 1)
Part 1 of a framework-agnostic approach to pragmatically embed security within the software development lifecycle (SDLC).
Not currently available
DevSecOps: Pragmatic Implementation (Part 2)
DevSecOps: Pragmatic Implementation (Part 2)
Part 2 of a framework-agnostic approach to pragmatically embed security within the software development lifecycle (SDLC).
Not currently available
STAR Lead Auditor Training Exam
STAR Lead Auditor Training Exam
This exam tests the student’s knowledge and comprehension on how to effectively conduct 2nd or 3rd-party audits of a cloud service provider (CSP) against the CSA STAR Certification standard.
Not currently available
STAR Lead Auditor Training
STAR Lead Auditor Training
Self-paced course. Learn the skills and knowledge required to audit cloud service providers against the STAR Certification standard. Auditing techniques, maturity modeling, and Cloud Controls Matrix control areas will also be covered.
Not currently available
Microservices & Containers Fundamentals II
Microservices & Containers Fundamentals II
Self-paced course. Learn the guidelines and practices for secure microservices development and governance, mechanisms for maintaining situational awareness, and container incident management.
$99
Cloud Infrastructure Security Training (CIST)
Microservices & Containers Fundamentals
Microservices & Containers Fundamentals
Self-paced course. Learn the history, evolution, and underlying technologies of microservices and containers, key adjacent architectures, and security challenges and mitigation strategies for deploying applications in containers.
$99
Cloud Infrastructure Security Training (CIST)
Cloud Key Management Foundations
Cloud Key Management Foundations
Self-paced course. Learn the history, definitions, components, key features, main technologies, and service patterns of cloud key management, as well as considerations for key management system selection and planning.
$99
Take Course
Cloud Infrastructure Security Training (CIST)
DevSecOps: Automation
DevSecOps: Automation
Self-paced course. Learn about DevSecOps best practices and processes to automate security into the development cycle.
$99
Cloud Infrastructure Security Training (CIST)
Top Threats
Top Threats
Learn about the top 11 cloud computing issues related to threats and vulnerabilities, cloud threat modeling techniques, and cloud risk treatment techniques.
$99
Cloud Infrastructure Security Training (CIST)
Containers Lifecycle Management & Assurance
Containers Lifecycle Management & Assurance
Self-paced course. Learn the container lifecycle phases, such as initiation, planning and design, implementation, operations and maintenance, and disposition. Container assurance measures and hardware-based security methods are also covered.
$99
Cloud Infrastructure Security Training (CIST)
DevSecOps: Collective Responsibility
DevSecOps: Collective Responsibility
Learn about the collective responsibility pillar of DevSecOps and the techniques needed to sustain and measure a DevSecOps culture program. Self-paced course.
$99
Cloud Infrastructure Security Training (CIST)
Cloud Key Management Foundations II
Cloud Key Management Foundations II
Self-paced course. Learn the main technical, operational, regulatory, legal, and financial considerations for cloud KMS deployments, as well as best practices for using programmatic library interfaces and practical API management.
$99
Cloud Infrastructure Security Training (CIST)
Introduction to Zero Trust Architecture
Introduction to Zero Trust Architecture
Foundations, definitions, concepts, and components of Zero Trust. In this module, learners will be introduced to goals, benefits, planning considerations, implementation options, and use cases for Zero Trust.
Not currently available
Zero Trust Training (ZTT)
DevSecOps: Pragmatic Implementation (Part 1)
DevSecOps: Pragmatic Implementation (Part 1)
Part 1 of a framework-agnostic approach to pragmatically embed security within the software development lifecycle (SDLC).
Not currently available
DevSecOps: Pragmatic Implementation (Part 2)
DevSecOps: Pragmatic Implementation (Part 2)
Part 2 of a framework-agnostic approach to pragmatically embed security within the software development lifecycle (SDLC).
Not currently available
Container Architecture Risks  & Mitigations
Container Architecture Risks & Mitigations
Self-paced course. Learn the common container architecture risks and the mitigations for preventing container security failures. Core component risks, container threat scenarios, and relevant mitigations are also covered.
$99
Cloud Infrastructure Security Training (CIST)
DevSecOps: Bridging Compliance & Development
DevSecOps: Bridging Compliance & Development
Self-paced course. Learn how to bridge the compliance and development gap. Aligning compliance objectives and security measures, identifying inflection points, embedding, automating, measuring, and testing controls are also covered.
$99
Cloud Infrastructure Security Training (CIST)
Introduction to Generative AI & Prompt Engineering
Introduction to Generative AI & Prompt Engineering
Self-paced. An introduction to AI and machine learning basics, with a focus on generative AI models. Delve into the nuances of different AI models, effective prompt creation, real-world applications, and troubleshooting techniques in prompt engineering.
FREE
Certificate of Cloud Security Knowledge - Exam Bundle
Certificate of Cloud Security Knowledge - Exam Bundle
This course includes the CCSK exam token and teaches the fundamentals of cloud security including: architecture, data security, managing risk and more.
$795
Certificate of Cloud Security Knowledge (CCSK)
DevSecOps: Pragmatic Implementation (Part 1)
DevSecOps: Pragmatic Implementation (Part 1)
Part 1 of a framework-agnostic approach to pragmatically embed security within the software development lifecycle (SDLC).
Not currently available
DevSecOps: Pragmatic Implementation (Part 2)
DevSecOps: Pragmatic Implementation (Part 2)
Part 2 of a framework-agnostic approach to pragmatically embed security within the software development lifecycle (SDLC).
Not currently available
STAR Lead Auditor Training Exam
STAR Lead Auditor Training Exam
This exam tests the student’s knowledge and comprehension on how to effectively conduct 2nd or 3rd-party audits of a cloud service provider (CSP) against the CSA STAR Certification standard.
Not currently available
STAR Lead Auditor Training
STAR Lead Auditor Training
Self-paced course. Learn the skills and knowledge required to audit cloud service providers against the STAR Certification standard. Auditing techniques, maturity modeling, and Cloud Controls Matrix control areas will also be covered.
Not currently available
Introduction to Zero Trust Architecture
Introduction to Zero Trust Architecture
Foundations, definitions, concepts, and components of Zero Trust. In this module, learners will be introduced to goals, benefits, planning considerations, implementation options, and use cases for Zero Trust.
Not currently available
Zero Trust Training (ZTT)