Course : Managing security for Cloud services and MS-Azure, summary
Synthesis course - 2d
- 14h00 - Ref. CAZ
|
Download in PDF format
Share this course by email
 | Assessing and managing risks |
| Know the tools and services available |
| Understand the organization needed to maintain and improve safety levels |
Intended audience
IT and functional managers. All IT managers.
Prerequisites
Basic knowledge of technical architectures and IS management.
Course schedule
1 The fundamentals
- The relationship between Virtualization and Cloud Computing.
- Cloud (IaaS, PaaS, SaaS), market trends.
- The latest on security breaches related to AWS (Amazon Web Services) and Azure.
- Cloud Computing security threats (Notorious Nine and Dirty Dozen) according to CSA (Cloud Security Alliance).
- APTs, Snowden revelations, NSLs (National Security Letters).
- The French and European context. The position of the French Information Systems Security Agency (ANSSI).
2 The shared responsibility model
- Identity Management and Access Control (IAM).
- Multi-Factor Authentication (MFA).
- Security Token Service (STS).
3 Virtual machine (VM) security
- Image security, system hardening.
- AWS and Azure LAN security.
- Virtual Private Cloud (VPC) and Virtual Network architectures and their components.
- A reminder of perimeter protection, partitioning and firewall types.
- Difference between Network Access Control Lists (NACLs) and Security Groups (SGs).
- WAF and CDN.
- DirectConnect, Express Route and/or IPSEC VPN link.
- DDoS defense (Route 53 and DNS, LB, CloudFront).
4 Cryptographic Management
- Basic concepts of SSL and TLS.
- Certification Authority.
- AWS Key Management Service (KMS), Azure KeyVault HSM.
5 Data backups
- Principle and applications.
- Focus on AWS and Azure services.
6 Controlling safety
- Amazon Inspector, Azure Security Center.
- AWS: Config Rules, Trusted Advisor, CloudWatch Logs and Events , CloudTrail.
- Azure: Log Analytics, Azure Portal.
- Other logs (S3 Logs, Bucket Logging , CloudFormation Logs , VPC Flow Logs).
- The benefits of third-party security solutions.
- Intrusion testing: precautions and prior authorization.
- Report an abuse, vulnerability or security breach.
Customer reviews
4,4 / 5
Customer reviews are based on end-of-course evaluations. The score is calculated from all evaluations within the past year. Only reviews with a textual comment are displayed.
ANTOINE G.
24/03/26
5 / 5
super interactif.Merci Yann
DAVID M.
24/03/26
5 / 5
Contenu très intéressant avec un formateur de terrain.la formation aurait mérité d’être proposé sur plus de jours. Les sujets sont bien trop vaste pour être abordés en 2 jours.
DELIL M.
24/03/26
4 / 5
Formateur bienveillant avec une réelle volonté de partage. Le fait de pouvoir pratiquer directement sur la plateforme était un vrai plus. En revanche, la formation manquait parfois de structure, et les objectifs de certaines actions n’étaient pas toujours suffisamment clairs. J’ai également eu le sentiment que la formation était davantage orientée vers l’infrastructure que vers la cybersécurité.
Publication date : 02/16/2024
PARTICIPANTS
IT and functional managers. All IT managers.
PREREQUISITES
Basic knowledge of technical architectures and IS management.
TRAINER QUALIFICATIONS
The experts leading the training are specialists in the covered subjects. They have been approved by our instructional teams for both their professional knowledge and their teaching ability, for each course they teach. They have at least five to ten years of experience in their field and hold (or have held) decision-making positions in companies.
ASSESSMENT TERMS
The trainer evaluates each participant’s academic progress throughout the training using multiple choice, scenarios, hands-on work and more.
Participants also complete a placement test before and after the course to measure the skills they’ve developed.
TERMS AND DEADLINES
Registration must be completed 24 hours before the start of the training.
ACCESSIBILITY FOR PEOPLE WITH DISABILITIES
Do you need special accessibility accommodations? Contact Mrs. Fosse, Disability Manager, at psh-accueil@orsys.fr to review your request and its feasibility.
IT and functional managers. All IT managers.
PREREQUISITES
Basic knowledge of technical architectures and IS management.
TRAINER QUALIFICATIONS
The experts leading the training are specialists in the covered subjects. They have been approved by our instructional teams for both their professional knowledge and their teaching ability, for each course they teach. They have at least five to ten years of experience in their field and hold (or have held) decision-making positions in companies.
ASSESSMENT TERMS
The trainer evaluates each participant’s academic progress throughout the training using multiple choice, scenarios, hands-on work and more.
Participants also complete a placement test before and after the course to measure the skills they’ve developed.
TEACHING AIDS AND TECHNICAL RESOURCES
• The main teaching aids and instructional methods used in the training are audiovisual aids, documentation and course material, hands-on application exercises and corrected exercises for practical training courses, case studies and coverage of real cases for training seminars.
• At the end of each course or seminar, ORSYS provides participants with a course evaluation questionnaire that is analysed by our instructional teams.
• A check-in sheet for each half-day of attendance is provided at the end of the training, along with a course completion certificate if the trainee attended the entire session.
• The main teaching aids and instructional methods used in the training are audiovisual aids, documentation and course material, hands-on application exercises and corrected exercises for practical training courses, case studies and coverage of real cases for training seminars.
• At the end of each course or seminar, ORSYS provides participants with a course evaluation questionnaire that is analysed by our instructional teams.
• A check-in sheet for each half-day of attendance is provided at the end of the training, along with a course completion certificate if the trainee attended the entire session.
TERMS AND DEADLINES
Registration must be completed 24 hours before the start of the training.
ACCESSIBILITY FOR PEOPLE WITH DISABILITIES
Do you need special accessibility accommodations? Contact Mrs. Fosse, Disability Manager, at psh-accueil@orsys.fr to review your request and its feasibility.
Dates and locations
Last places available
Guaranteed date, in person or remotely
Guaranteed session