0% found this document useful (0 votes)

68 views33 pages

Cloud Security Introduction For Beginners

Cloud

Uploaded by

asksukumar7374

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

68 views33 pages

Cloud Security Introduction For Beginners

Cloud

Uploaded by

asksukumar7374

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as PDF, TXT or read online on Scribd

You are on page 1/ 33

Cloud

Security
101 Sanjeev Kumar Jaiswal

1
Sanjeev Jaiswal (jassi)
• 14+ years of Experience

• Security Architect, Tesco

➤ Security Head in Lifesight for 2.5 years
➤ India Lead, AppSec Team in Epam

• Application Security and

• Cloud Security

• Programming: Perl, Python

• Areas of Interest: Learning and teaching

concepts on DevSecOps, Cloud Security &
Security Automation
2
What we will cover

• For whom this session is (awareness session)

• Brief of Cloud Computing
• Cloud Security Overview
• What covers under cloud security
• Job pro le categories
• Learning references
• What’s Next

3
fi
Key Audience

• College Students
• Freshers (0-2 years)
• Want to switch into Cloud Security
• Interested in Cloud Security
• Curious what’s there in Cloud Security

4
What we will cover

• Quick recap of Cloud Computing - 5 mins.

• Service model and Deployment model - 5 mins.
• Why we need Cloud Security - 5 mins.
• Cloud Security Fundamentals - 30 mins.
• What’s Next - 5 mins.
• Q&A - 10 min.

5
Cloud Computing is the use of
computing services like servers,
storage, databases, networking,
software, analytics, intelligence and
many more over the Internet (“the
cloud”)

6
Why we need cloud computing at all?

• Better Availability
• Higher durability
• Secured?
• Economical
• Compliant
• Go live in a minute

7
Advantages of Cloud Computing
• Pay as you go
• Resilient
• Scalable
• Economical
• Enhance Productivity, Performance and
• Security

8
Cloud Computing
Deployment Model

9
Cloud Computing Service Model

• IaaS - Digital Ocean, Rackspace, GCE, Amazon EC2

• PaaS - Beanstalk, Heroku, Google App Engine
• SaaS - Gmail, Facebook, Dropbox, Wordpress, O ce365
• XaaS - Database as a Service, Security as a Service, Malware as a Service
(VMware AppDefense)

10 ffi
Cloud
Security
Basics
11
12
13
14
15
Why we need cloud security

✴Cloud computing is being used for more than two decades.

Still, several businesses nd security as a challenge to handle.

• Everyone is in Cloud now a days

• It’s shared responsibility
• Still new, so more to explore
• Multi tenancy make things more attack prone
• Service Providers are not macho man
• Data Security is a big concern
• and many more …
16
fi
17
Cloud-Native Security vs Hybrid Cloud Security

• Door with built-in lock

• CCTV camera
• You need both for better security

18
Most Crucial aspects of Cloud Security

Security in the cloud consists of 4 areas:

• Data Protection
• Infrastructure Protection
• Privilege Management
• Detective Controls

19
Cloud Security Dissection

• It’s a shared responsibility • Logging and Monitoring

• IAM: Principle of Least Privilege • Cloud Security Automation
• Network Security • Backup and Disaster Recovery
• Application Security • Cloud Compliance and Governance
• Data Security • Threat Detection and Response

20
Logging

• Whom to give log access

• What to Log
• Where to store
• Log Duration
• Secured Cloud Logging Service - sumologic, alertlogic
• Cloudtrail, Cloudwatch, VPC ow logs in AWS

21
fl
Alert & Monitoring

• Trigger point
• What to monitor
• At what frequency
• How much possibility through Automation?
• Alert response mechanism
• IR Mechanism

22
AWS essential services
• AWS EC2
• AWS IAM
• API Gateway
• Amazon S3
• CloudTrail
• VPC
• Amazon RDS
• Lambda
• Cloudfront
• Route53
• Load Balancer

23
AWS Security services and tools
• AWS IAM • AWS Shield
• KMS • AWS WAF
• AWS CloudTrail • Trusted Advisor
• AWS Con g • AWS Security Hub
• AWS GuardDuty • Amazon Cognito
• AWS Macie • Pacu, Prowler, Cloud
Custodian, Cloudcheckr,
• Amazon Inspector Tenable, and so on…

24
fi
Summary
25
• Understand basics of cloud computing
• Get familiar with linux commands, cli, computer networks
• Create a free tier account with AWS/GCP/Azure
• Make yourself comfortable with essential services
• Make a good grip on cloud native security services
• Hands-on is everything
• Read o cial documentation for better understanding

26
ffi
27
What’s Next
28
• Advanced Network and Infra Security
• SIEM in Cloud
• CSPM vs CASB (also check CWPP) and now CNAPP
• Cloud Security Threats
• CSA and NIST standards
• Data Governance and Compliance
• Security Automation :
• Cloudformation, Terraform, Pulumi etc.
• Security in CI/CD -> DevSecOps (Hotshot)
29
References & Credits
• Basics of Cloud Security
• Cloud Services Explained by IBM
• Awesome AWS Security
• Cloud Computing Courses from Acloud.guru
• AWS Security Study Plan
• AWS Security Interview Questions
• Cybersecurity in the Cloud Specialization (Coursera)
• Secure Cloud Architecture
30
My Social Channels
cybercloud.guru

github.com/jassics

twitter.com/jassics

linkedin.com/in/jassics

31
For further queries, please feel free to contact
me at jassics@gmail.com
WhatsApp Group (Cybercloud Learning):
https://chat.whatsapp.com/
HYOMBR0edCm4L2ej3lcPmn

32
33

Cloud Security Basics Guide
No ratings yet
Cloud Security Basics Guide
33 pages
Week 1
No ratings yet
Week 1
28 pages
Cyber Security Preparation
No ratings yet
Cyber Security Preparation
3 pages
Cloud Security Curriculum Guide
No ratings yet
Cloud Security Curriculum Guide
3 pages
Cloud Security
No ratings yet
Cloud Security
5 pages
Effectively and Securely Using The Cloud Computing Paradigm
No ratings yet
Effectively and Securely Using The Cloud Computing Paradigm
83 pages
Cloud Security Essentials Guide
No ratings yet
Cloud Security Essentials Guide
43 pages
History
No ratings yet
History
63 pages
Cloud Computing Security Guide
No ratings yet
Cloud Computing Security Guide
75 pages
Cloud Computing v26
No ratings yet
Cloud Computing v26
92 pages
Introduction To Cloud Security
0% (1)
Introduction To Cloud Security
42 pages
Security For Cloud and On Cloud
No ratings yet
Security For Cloud and On Cloud
15 pages
Unit 4 - Cloud Computing - WWW - Rgpvnotes.in
No ratings yet
Unit 4 - Cloud Computing - WWW - Rgpvnotes.in
16 pages
Unit1 Fundamentals of Cloud Security
No ratings yet
Unit1 Fundamentals of Cloud Security
2 pages
?cloud Security? (MSG Notes )
No ratings yet
?cloud Security? (MSG Notes )
27 pages
Unit 4
No ratings yet
Unit 4
11 pages
Cloud Security for IT Professionals
No ratings yet
Cloud Security for IT Professionals
44 pages
CS Notes UNIT-2
No ratings yet
CS Notes UNIT-2
197 pages
Unit 4 Cloud Security and Monitoring Essentials
No ratings yet
Unit 4 Cloud Security and Monitoring Essentials
14 pages
CC6004ES Network & Cloud Security: London Metropolitan University, Faculty of Computing
100% (1)
CC6004ES Network & Cloud Security: London Metropolitan University, Faculty of Computing
25 pages
LM 12 Slides
No ratings yet
LM 12 Slides
17 pages
Unit 3 English
No ratings yet
Unit 3 English
20 pages
Cloud Security and Cloud Hardening
No ratings yet
Cloud Security and Cloud Hardening
7 pages
CloudComputing Unit 5
No ratings yet
CloudComputing Unit 5
27 pages
Cybersecurity Roadmap
No ratings yet
Cybersecurity Roadmap
23 pages
Cloud Security Essentials Guide
No ratings yet
Cloud Security Essentials Guide
19 pages
Chapter 7 Security Management in CC
No ratings yet
Chapter 7 Security Management in CC
31 pages
Cloud Computing
No ratings yet
Cloud Computing
21 pages
Unit 1
No ratings yet
Unit 1
13 pages
Cloud Security
No ratings yet
Cloud Security
35 pages
Cyber Security (Cloud Security) - 6
No ratings yet
Cyber Security (Cloud Security) - 6
8 pages
Cloud Security Study Guide
No ratings yet
Cloud Security Study Guide
11 pages
CC Unit 4
No ratings yet
CC Unit 4
21 pages
Cloud Security
75% (4)
Cloud Security
70 pages
CCSK v5 Curriculum
No ratings yet
CCSK v5 Curriculum
9 pages
Pwned Labs Cloud Security Engineer Roadmap - 2025 Edition
No ratings yet
Pwned Labs Cloud Security Engineer Roadmap - 2025 Edition
23 pages
Cyber Cloud
No ratings yet
Cyber Cloud
5 pages
Unit 5 - CC
No ratings yet
Unit 5 - CC
28 pages
Lecture 12 Cloud Security
No ratings yet
Lecture 12 Cloud Security
30 pages
Cloud Security
No ratings yet
Cloud Security
14 pages
Cloud Security Privacy Lecture
No ratings yet
Cloud Security Privacy Lecture
52 pages
Cloudsecurityunit1 240904164811 446432e0
No ratings yet
Cloudsecurityunit1 240904164811 446432e0
68 pages
Unit1 SPC NOTES
No ratings yet
Unit1 SPC NOTES
53 pages
Cloud Security Challenges & Solutions
No ratings yet
Cloud Security Challenges & Solutions
49 pages
Chapter 10
No ratings yet
Chapter 10
37 pages
Security Techniques For Cloud Computing.
No ratings yet
Security Techniques For Cloud Computing.
25 pages
15-421/08-731/46-869, Fall 2013 - Lecture 15: Security and Privacy in The Age of Cloud Computing
No ratings yet
15-421/08-731/46-869, Fall 2013 - Lecture 15: Security and Privacy in The Age of Cloud Computing
52 pages
Unit 5th Securing The Cloud
No ratings yet
Unit 5th Securing The Cloud
14 pages
Cloud Security
No ratings yet
Cloud Security
23 pages
Security in Cloud
No ratings yet
Security in Cloud
36 pages
DATA SCIENCE - 2023-2024 Admission Documentation - 2
No ratings yet
DATA SCIENCE - 2023-2024 Admission Documentation - 2
7 pages
Online Students Council Voting System
No ratings yet
Online Students Council Voting System
47 pages
ISC Computer Science XII
0% (1)
ISC Computer Science XII
5 pages
Class XI Computer Science Exam
No ratings yet
Class XI Computer Science Exam
4 pages
Vmware Learning Paths v3
No ratings yet
Vmware Learning Paths v3
21 pages
Android Thesis Writing Help
100% (3)
Android Thesis Writing Help
4 pages
Test Your Skills in Python Language A Complete Questionnaire For Self-Assessment by Shivani Goel
No ratings yet
Test Your Skills in Python Language A Complete Questionnaire For Self-Assessment by Shivani Goel
148 pages
Alibaba Cloud Services and Architectures
No ratings yet
Alibaba Cloud Services and Architectures
13 pages
Quiz1 Sols Ece375 w20
No ratings yet
Quiz1 Sols Ece375 w20
1 page
DC Motor
No ratings yet
DC Motor
17 pages
Unit - 1 STM Notes
No ratings yet
Unit - 1 STM Notes
31 pages
Microcontrollers and Applications
No ratings yet
Microcontrollers and Applications
254 pages
Yr 10 DP Summer Term Exams 2023 2024
No ratings yet
Yr 10 DP Summer Term Exams 2023 2024
8 pages
Dynamic Memory Allocation Guide
No ratings yet
Dynamic Memory Allocation Guide
105 pages
40-Intrusion Prevention System
No ratings yet
40-Intrusion Prevention System
7 pages
Lab COMPARE Assignment
No ratings yet
Lab COMPARE Assignment
2 pages
Big Data Based Security Analytics For Protecting Virtualized Infrastructures in Cloud Computing
No ratings yet
Big Data Based Security Analytics For Protecting Virtualized Infrastructures in Cloud Computing
41 pages
Untitled
No ratings yet
Untitled
17 pages
1952 PosCard PRIMERGY Servers Portfolio Global
No ratings yet
1952 PosCard PRIMERGY Servers Portfolio Global
4 pages
Sales Playbook Overview - IBM Power Virtual Server
No ratings yet
Sales Playbook Overview - IBM Power Virtual Server
25 pages
Multi-Cloud Strategies for IT Pros
No ratings yet
Multi-Cloud Strategies for IT Pros
17 pages
Chap1 Introduction
No ratings yet
Chap1 Introduction
22 pages
Mobile App Development Guide
No ratings yet
Mobile App Development Guide
27 pages
Class 10 All MCQs Complete Book Smart
No ratings yet
Class 10 All MCQs Complete Book Smart
26 pages
E3 Series Broadband System: Description
No ratings yet
E3 Series Broadband System: Description
5 pages
05 Packages && Docs (Code Organization) Golang
No ratings yet
05 Packages && Docs (Code Organization) Golang
33 pages
Cisco DNA Software SD-WAN and Routing
No ratings yet
Cisco DNA Software SD-WAN and Routing
4 pages
Lesson 15: Bode Plots of Transfer Functions: ET 438a Automatic Control Systems Technology
No ratings yet
Lesson 15: Bode Plots of Transfer Functions: ET 438a Automatic Control Systems Technology
13 pages
Pointers and Memory in C Programming
No ratings yet
Pointers and Memory in C Programming
44 pages
Ajava From Pract 8 To Last
No ratings yet
Ajava From Pract 8 To Last
44 pages

Cloud Security Introduction For Beginners

Uploaded by

Cloud Security Introduction For Beginners

Uploaded by

Cloud

• Security Architect, Tesco

• Application Security and

• Programming: Perl, Python

• Areas of Interest: Learning and teaching

• For whom this session is (awareness session)

• Quick recap of Cloud Computing - 5 mins.

• IaaS - Digital Ocean, Rackspace, GCE, Amazon EC2

✴Cloud computing is being used for more than two decades.

• Everyone is in Cloud now a days

• Door with built-in lock

Security in the cloud consists of 4 areas:

• It’s a shared responsibility • Logging and Monitoring

• Whom to give log access

You might also like