Cloud Security Fundamentals

This programme introduces participants to the security challenges and best practices specific to cloud environments. Covering AWS, Azure, and Google Cloud in context, participants will learn how to assess cloud security posture, apply identity and access controls, and understand shared responsibility in cloud deployments. Suitable for IT professionals, system administrators, and security staff moving into cloud roles.

Programme Modules

Introduction to Cloud Computing and Security
Cloud service models (IaaS, PaaS, SaaS), deployment types, and the shared responsibility model. Understanding what the cloud provider secures and what you are responsible for.

Identity and Access Management in the Cloud
IAM policies, roles, groups, and permissions across AWS, Azure, and GCP. Principle of least privilege, multi-factor authentication, and service account security.

Network Security in the Cloud
Virtual private clouds (VPCs), security groups, network access control lists, and securing communication between cloud services and on-premises systems.

Data Security and Encryption
Encrypting data at rest and in transit. Key management services, data classification, and preventing unauthorised access to cloud storage and databases.

Monitoring, Logging and Incident Response
Cloud-native monitoring tools, log aggregation, setting alerts for suspicious activity, and responding to cloud security incidents.

Cloud Security Compliance and Governance
ISO 27001, CIS Benchmarks, and Malaysian regulatory requirements in cloud deployments. Cloud security posture management (CSPM) basics.

Final Activity: Cloud Security Audit Exercise
Participants are given a simulated cloud environment configuration and must identify misconfigurations, excessive permissions, and unencrypted resources. Findings are documented in a structured audit report.

Key Outcomes:
Explain the shared responsibility model for major cloud platforms
Configure IAM policies applying the principle of least privilege
Identify and remediate common cloud misconfigurations
Apply encryption and data security controls in cloud environments
Use cloud-native monitoring tools to detect suspicious activity
Assess a cloud environment against basic compliance and governance requirements

Fee: RM 1,750 per participant (minimum 3 participants)
Duration: 2 Days
Training Hours: 9:00 AM to 5:00 PM
Level: Intermediate (basic IT or networking knowledge required)
Training Mode: Physical, Online, or Hybrid
HRD Corp Claimable
Certificate of Completion included

Frequently Asked Questions

Basic understanding of networking and IT systems. Prior cloud experience is helpful but not required. Participants with CompTIA Security+ or ISC2 CC are well-positioned.

AWS, Microsoft Azure, and Google Cloud Platform are referenced throughout. The principles are vendor-neutral and applicable across platforms.

Yes.

Yes.

Up to 15 participants for hands-on lab sessions.