Architectural Concepts and Designs Requirements

• Reviewing cloud computing concepts
• Describing cloud reference architecture
• Security concepts relevant to cloud computing
• Design principles of secure cloud computing
• Identifying trusted cloud services

Cloud Data Security

• Understanding cloud data lifecycle
• Designing and implementing cloud data storage architectures
• Designing and applying data security strategies
• Understanding and implementing data discovery and classification technologies
• Designing and implementing relevant jurisdictional data protections for personally identifiable information

Cloud Platform and Infrastructure Security

• Comprehending cloud infrastructure components
• Analyzing risks associated to cloud infrastructure
• Designing and planning security controls
• Planning disaster recovery and business continuity management

Cloud Application Security

• Recognizing the need for training and awareness in application security
• Understanding cloud software assurance and validation
• Using verified secure software
• Comprehending the Software Development Lifecycle (SDLC) process
• Applying the Secure Software Development Lifecycle

Operations

• Supporting the planning process for the data center design
• Implementing and building physical infrastructure for cloud environment
• Running physical infrastructure for cloud environment
• Managing physical infrastructure for cloud environment
• Building logical infrastructure for cloud environment

Legal and Compliance

• Legal requirements and unique risks within the cloud environment
• Privacy issues, including jurisdictional variation
• The audit process, methodologies, and required adaptions for a cloud environment
• Implications of cloud to enterprise risk management
• Outsourcing and cloud contract design

• Make coaching and monitoring innovative and using modern
• Media training also using on the go training by using interactive means and focusing on
• The exercises, practical applications and real situations study
• Live delivery method, instructor-led training
• Experienced consultant, trainers, and professional
• Qualified trainer with high-level experience

• Send daily attendance reports to training departments
• Send full attendance report to training dep. by the end of the course
• Attend 100 % from the course days also provide daily
• Issue attendance certificate for participant who attend minimum 80% from the course duration

• Pre- assessment before starting training
• Post assessment after finish training
• Full report for the deferent between Pre-& Post assessment

• This Certified Risk Information Systems Control training course is intended for anyone who manages IT risk and information security controls within their job role. Likewise, this CRISC course is intended for experienced IT professionals who would like to prepare for the CRISC exam.