12.1 Zero Trust (ZT) 12.2 Artificial Intelligence (AI) Flashcards: https://quizlet.com/in/1125762754/ccsk-domain-12-related-technologies-strategies-flash-cards/?i=4jehw4&x=1jqt
Category Archives: ccsk
CCSK Domain 11: Incident Response & Resilience
11.1 Incident Response 11.2 Preparation 11.3 Detection & Analysis 11.4 Containment, Eradication & Recovery 11.5 Post-Incident Analysis Flashcards: https://quizlet.com/in/1125762755/ccsk-domain-11-incident-response-resilience-flash-cards/?i=4jehw4&x=1jqt
CCSK Domain 10: Application Security
10.1 Secure Development Lifecycle (SSDLC) 10.2 Architecture’s Role in Secure Cloud Applications 10.3 Identity & Access Management (IAM) and Application Security 10.4 DevOps & DevSecOps 10.4.2 Web Application Firewalls (WAF) & API Gateways Flashcards: https://quizlet.com/in/1125761456/ccsk-domain-10-application-security-flash-cards/?i=4jehw4&x=1qqt
CCSK Domain 8: Cloud Workload Security
8.1 Introduction to Cloud Workload Security 8.2 Securing Virtual Machines (VMs) 8.3 Securing Containers 8.4 Securing Serverless & FaaS 8.5 Securing AI Workloads Flashcards: https://quizlet.com/in/1125654258/ccsk-domain-8-cloud-workload-security-flash-cards/?i=4jehw4&x=1jqt
CCSK Domain 7 – Infrastructure and Networking
7.1 Cloud Infrastructure Security 7.1.1 Foundational Infrastructure Security Techniques 7.1.2 CSP Infrastructure Security Responsibilities 7.1.3 Infrastructure Resilience 7.2 Cloud Network Fundamentals 7.2.1 Software-Defined Networks (SDN) Common SDN-Based Components 7.2.2 Cloud Connectivity 7.3 Cloud Network Security & Secure Architectures 7.3.1 Preventative Security Measures 7.3.2 Detective Security Measures 7.4 Infrastructure as Code (IaC) 7.5 Zero Trust forContinue reading “CCSK Domain 7 – Infrastructure and Networking”
CCSK Domain 6 – Security Monitoring
1. Cloud Monitoring – Why It’s Hard Monitoring is more complex in the cloud due to: A. Management Plane B. High Velocity C. Distribution & Segregation D. Cloud Sprawl E. Shared Responsibility Model 2. Logs vs Events A. Logs B. Events 3. Security Posture Management Goes beyond logs by analyzing the configuration state of cloudContinue reading “CCSK Domain 6 – Security Monitoring”
CCSK Domain 4 Notes: Organization Management
Introduction Organization Hierarchy Models Key Terms: Level AWS Azure GCP Organization Organization Tenant Organization Group Organizational Unit (OU) Management Group Folder Deployment Account Subscription Project Benefits: Segmentation, reduced “blast radius,” logical separation, and compliance alignment. Key Capabilities in Cloud Hierarchy All major CSPs offer: Landing Zone / Account Factory: Building Hierarchies (Three Models) Model DescriptionContinue reading “CCSK Domain 4 Notes: Organization Management”
CCSK Domain 3 Notes: Risk, Audit and Compliance
This domain covers evaluating cloud service providers (CSPs) and establishing cloud risk registries, discussing compliance requirements, and introducing tools for governance and risk management. 3.1. Cloud Risk Management Key Concepts in Risk Cloud Risk Factors (Pandemic Eleven, 2022 CSA Top Threats) Common risk factors and categories include: Cloud Risk Management Process (Based on ENISA framework)Continue reading “CCSK Domain 3 Notes: Risk, Audit and Compliance”
CCSK Domain 2 Notes
1. Introduction 2. Cloud Governance Key Points Two major ways cloud impacts governance: 3. Complexities in Cloud Governance 4. Governance Framework Components Effective governance requires: 5. Governance Hierarchy Layers: Governance documents produced: 6. Stakeholder Alignment 7. Cloud Security Frameworks 8. CSA CCM & STAR 9. Policies ✅ Exam Tip: Always tie governance hierarchy → frameworksContinue reading “CCSK Domain 2 Notes”
CCSK Domain 1 Notes
Definitions Essential Characteristics (NIST) Service Models – IaaS → CSC manages OS, apps, data; CSP infra. – PaaS → CSC manages apps; CSP manages platform. – SaaS → CSC manages config only; CSP manages everything else. Deployment Models Core Concepts CSA Enterprise Architecture Shared Responsibility Model Key Tools ✅ Exam Tip: Always link responsibility levelContinue reading “CCSK Domain 1 Notes”
