Offering Internet-based computing and on-demand resources, software, and data, cloud-based services are rapidly changing the landscape of IT. With Software as a Service (SaaS) delivering application software, Platform as a Service (PaaS) available to design and develop software, and Infrastructure as a Service (IaaS) providing the equipment upon which to support other services, cloud computing offers IT a way to increase capacity and capabilities minus a huge investment.
In this two-day seminar you will explore the current state of cloud computing and its common architecture, and examine the major SaaS, PaaS, and IaaS providers in the market today. You will cover the security and control deficiencies that exist in cloud-based services and look at Security as a Service as a way to protect against them. You will review a risk-based approach to audit and controls for cloud based-services and investigate such areas as cloud-based network models, cloud brokers, and disaster recovery and governance in a cloud-services environment. Throughout the seminar, class exercises will reinforce what you learn and help you identify the risks, controls, and gaps in cloud services.
Prerequisite: A working knowledge of operating systems security, networking concepts, and associated logical access controls such as those presented in Network Security Essentials (ASG203), Intermediate Audit School (ITG241), or Auditing Networked Computers (ITG211).
Advanced Preparation: None
Learning Level: Intermediate Field: Computer Science
Delivery Method: Group Live