Introduction Organization Hierarchy Models Key Terms: Level AWS Azure GCP Organization Organization Tenant Organization Group Organizational Unit (OU) Management Group Folder Deployment Account Subscription Project Benefits: Segmentation, reduced “blast radius,” logical separation, and compliance alignment. Key Capabilities in Cloud Hierarchy All major CSPs offer: Landing Zone / Account Factory: Building Hierarchies (Three Models) Model DescriptionContinue reading “CCSK Domain 4 Notes: Organization Management”
Tag Archives: nist
CCSK Domain 3 Notes: Risk, Audit and Compliance
This domain covers evaluating cloud service providers (CSPs) and establishing cloud risk registries, discussing compliance requirements, and introducing tools for governance and risk management. 3.1. Cloud Risk Management Key Concepts in Risk Cloud Risk Factors (Pandemic Eleven, 2022 CSA Top Threats) Common risk factors and categories include: Cloud Risk Management Process (Based on ENISA framework)Continue reading “CCSK Domain 3 Notes: Risk, Audit and Compliance”
CCSK Domain 2 Notes
1. Introduction 2. Cloud Governance Key Points Two major ways cloud impacts governance: 3. Complexities in Cloud Governance 4. Governance Framework Components Effective governance requires: 5. Governance Hierarchy Layers: Governance documents produced: 6. Stakeholder Alignment 7. Cloud Security Frameworks 8. CSA CCM & STAR 9. Policies ✅ Exam Tip: Always tie governance hierarchy → frameworksContinue reading “CCSK Domain 2 Notes”
CCSK Domain 1 Notes
Definitions Essential Characteristics (NIST) Service Models – IaaS → CSC manages OS, apps, data; CSP infra. – PaaS → CSC manages apps; CSP manages platform. – SaaS → CSC manages config only; CSP manages everything else. Deployment Models Core Concepts CSA Enterprise Architecture Shared Responsibility Model Key Tools ✅ Exam Tip: Always link responsibility levelContinue reading “CCSK Domain 1 Notes”
