422 reviews

ISC2 CCSP Training

Item: ccsp-certification
Rating: 9
Author: Kevin Reid

Become a Cloud Security expert with the CCSP certification. Master cloud security architecture, design, and operations for secure cloud adoption and management.

course: ISC2 CCSP - Certified Cloud Security Professional

Duration: 5 days

Format: Virtual or Classroom

Prepares for Exam: ISC2 Certified Cloud Security Professional Exam CCSP

Prepares for Certification: ISC2 Certified Cloud Security Professional (CCSP)

Attend this and 60+ other Security courses for FREE with Unlimited Security Training

Overview

The ISC2 CCSP training course teaches you to design, manage, and secure cloud environments with industry best practices. You will gain expertise in cloud architecture, data security, compliance, and risk management across major cloud platforms. This instructor-led training prepares you for the CCSP exam and the ISC2 Certified Cloud Security Professional certification, a globally recognized credential for cloud security experts.

This course includes

Instructor-led training
Practice test
Pre-reading
Personal Learning Path
Certification Guarantee
Email, chat and phone support

Who is ISC2 CCSP - Certified Cloud Security Professional training course for?

The ISC2 CCSP - Certified Cloud Security Professional course is intended for IT professionals and security managers responsible for securing cloud environments and services. It covers various areas including cloud concepts, architecture, data security, platform and infrastructure security, application security, security operations, and legal and compliance aspects of cloud security. By completing the course and obtaining the certification, individuals demonstrate their expertise in securing cloud environments, understanding cloud architecture and design principles, implementing data security measures, managing cloud platforms, and addressing legal and compliance requirements. The CCSP certification validates their knowledge and skills in cloud security and enables them to effectively protect cloud-based systems and data.

Curriculum

What you will learn during our ISC2 CCSP training.

Domain 1: Understand the concept of cloud computing

Definitions of cloud computing
Roles in cloud computing (e.g. cloud service customer, cloud service provider, cloud service partner, cloud service broker)
Key features of cloud computing (e.g. selfservice on demand, wide network access, multitenancy, rapid elasticity and scaling, resource pooling, metered service)
Building block technologies (e.g. virtualization, storage, networking, databases, orchestration)
1.2 Describe Cloud Reference Architecture Activities with cloud computing
Cloud service functionalities (e.g. application feature types, platform feature types, infrastructure feature types)
Cloud service categories (e.g. software as a service (SaaS), infrastructure as a service (IaaS), platform as a service (PaaS))
Cloud deployment models (e.g. public, private, hybrid, community)
Common cloud considerations (eg interoperability, portability, reversibility, availability, security, privacy, robustness, performance, governance, maintenance and versioning, service levels and service level agreements (SLA), auditing, regulation)
Impact of related technologies (e.g. machine learning, artificial intelligence, blockchain, internet of things (IoT), containers, quantum computing)
1.3 Understand security concepts relevant to cloud computing
Cryptography and key management
Access control
Sanitization of data and media (e.g. overwriting, cryptographic erasure)
Network security (eg network security groups)
Virtualization security (e.g. hypervisor security, container security)
Common threats
1.4 Understand design principles for secure cloud computing
Cloud Secure Data Lifecycle
Cloud based Disaster Recovery (DR) and Business Continuity (BC) planning
Cost/benefit assessment
Functional security requirements (e.g. portability, interoperability, vendor lockin)
Security considerations for different cloud categories (e.g. Software as a Service (SaaS), Infrastructure as a Service (IaaS), Platform as a Service (PaaS))
1.5 Evaluate cloud service providers
Verification against criteria (e.g. International Organization for Standardization/International Electrotechnical Commission (ISO/IEC) 27017, Payment Card Industry Data Security Standard (PCI DSS))
System/subsystem products

Domain 2: Describe cloud data concepts

Phases of cloud data life cycle phases
Data dissemination
2.1 Design and implement architectures for cloud data storage
Storage types (e.g. longterm, ephemeral, raw disk)
Threats to storage types
2.2 Design and apply data security technology and strategies
Encryption and key management
Hashing
Maybe
Tokenization
Data Loss Prevention (DLP)
Data Obfuscation
Data deidentification (e.g. anonymisation)
2.3 Implement data discovery > Structured data
Structured data
Unstructured data
2.4 Implement data classification
Mapping
Marking
Sensitive Data (e.g. Protected Health Information (PHI), Personally Identifiable Information (PII), Cardholder Data)
2.5 Design and information rights management (IRM)
Objectives (e.g. data rights, provisioning, access models)
Appropriate tools (e.g. issuance and revocation of certificates)
2.6 Plan and implement policies for data retention, deletion and archiving
Data retention policies
Data deletion procedures and mechanisms
Data archiving procedures and mechanisms
Legal team
2.7 Define and implement auditability, traceability and accountability for data events
Definition of event sources and requirements for identity attribution
Logging, storage and analysis of data events
Chain control and nonjudgment

Domain 3: Understand cloud infrastructure components

Physical environment
Network and communications
Calculations
Virtualization
Storage
Management plan
3.1 Design a secure data center
Logical design (e.g. tenant partitioning, access control)
Physical design (e.g. location, purchase or build)
Environmental design (e.g. heating, ventilation and air conditioning (HVAC), connection with multivendors)
3.2 Analyze risks associated with cloud infrastructure
Risk assessment and analysis
Cloud vulnerabilities, threats and attacks
Virtualization risks
Counter strategies
3.3 Design and plan security controls
Physical and environmental protection (e.g. onsite)
System and communication protection
Protection of virtualization systems
Identification, authentication and authorization in cloud infrastructure
Audit mechanisms (e.g. log collection, packet collection)
3.4 Plan emergency plans (DR) and business continuity (BC)
Risks related to the cloud environment
Business requirements (e.g. restore time objective (RTO), restore point objective (RPO), restore service level (RSL))
Business continuity/disaster plan strategy
Creation, implementation and testing of plan

Domain 4: Promote application security training and awareness

Basics in cloud development
Common pitfalls
Common cloud vulnerabilities
4.1 Describe the secure software development life cycle (SDLC) process
Business requirements
Phases and methods
4.2 Apply the Secure Software Development Life Cycle (SDLC)
Avoid common vulnerabilities during development
Risks specific to the cloud
Quality assurance
Threat modeling
Software configuration management and versioning
4.3 Use software security and validation
Function test
Security testing methods
4.4 Use verified secure software
Approved Application Programming Interfaces (API)
Supply chain management
Third party software management
Validated open source software
4.5 Understand specific to cloud application architecture
Additional security components (e.g. Web Application Firewall (WAF), Database Activity Monitoring (DAM), Extensible Markup Language (XML) firewall, Application Programming Interface (API) gateway)
Encryption
Sand box
Application virtualization and orchestration
4.6 Design appropriate identity and access management (IAM) solutions
Federal identity
Identity providers
Single signon (SSO)
Multifactor authentication
Cloud Access Security Broker (CASB)

Domain 5: Implement and build physical and logical infrastructure for cloud environment

Hardware specific security configuration requirements (e.g. Basic Input Output System (BIOS), virtualization and Trusted Platform Module (TPM) settings, storage management, network management)
Installation and configuration of virtualization management tools
Specific security configuration requirements for virtual hardware (eg network, storage, memory, central processing unit (CPU))
Installation of guest operating system (OS) virtualization toolkit
5.1 Operation physical and logical infrastructure for cloud environment
Configure access control for local and remote access (eg Secure Keyboard Video Mouse (KVM), consolebased access mechanism, Remote Desktop Protocol (RDP))
Secure network configuration (e.g. Virtual Local Area Networks (VLAN), Transport Layer Security (TLS), Dynamic Host Configuration Protocol (DHCP), Domain Name System (DNS), Virtual Private Network (VPN))
Guest operating system (OS) provisioning through the use of bases (eg Windows, Linux, VMware)
Availability of standalone hosts
Availability of cluster hosts (eg Distributed Resource Scheduling (DRS), Dynamic Optimization (DO), Storage Cluster, Maintenance Mode, High Availability)
Availability of guest operating system (OS)
5.2 Manage physical and logical infrastructure for cloud environment
Access control for remote access (e.g. Remote Desktop Protocol (RDP), secure terminal access, Secure Shell (SSH))
Basic operating system (OS) compliance checks and patches
Patch Management
Performance and capacity monitoring (e.g. network, compute, storage, response time)
Hardware monitoring (eg disk, central processing unit (CPU), fan speed, temperature)
Configuration of host and guest operating system (OS) backup and restore functions
Network security controls (eg firewalls, Intrusion Detection Systems (IDS), Intrusion Prevention Systems (IPS), honeypots, vulnerability assessments, network security groups)
Management plan (e.g. planning, orchestration, maintenance)
5.3 Implement operator controls and standards (e.g. information technology infrastructure library (ITIL), International organization for standardization/International electrotechnical commission (ISO/IEC) 20001)
Change management
Continuity management
Information security management
Continuous service improvement management
Incident management
Problem management
Broadcast management
Configuration management
Service level management
Availability management
Capacity management
5.4 Support digital rhetoric
Forensic data collection methods
Evidence management
Collection, acquisition and preservation of digital evidence
5.5 Manage communication with relevant parties
Supplier
Customers
Partners
Regulators
Other stakeholders
5.6 Manage security operations
Security Operations Center (SOC)
Monitoring security controls (e.g. firewalls, intrusion detection systems (IDS), intrusion prevention systems (IPS), honeypots, vulnerability assessments, network security groups)
Logging and analysis (e.g. Security Information and Event Management (SIEM), logging management)
Handling of incidents

Domain 6: Communicate legal requirements and unique risks within the cloud environment

Contradictions in international law
Evaluation of legal risks specific to cloud computing
Legal and guidance frameworks
eDiscovery (e.g. International Organization for Standardization / International Electrotechnical Commission (ISO / IEC) 27050, Cloud Security Alliance (CSA) guidance)
Forensic requirements
6.1 Understand personal data issues
Difference between contractual and regulatory private data (e.g. protected health information (PHI), personally identifiable information (PII)) Countryspecific legislation on private data (e.g. protected health information (PHI), personally identifiable information (PII))
Legal differences in data protection
Standard privacy requirements (e.g. International Organization for Standardization / International Electrotechnical Commission (ISO / IEC) 27018, Generally Accepted Privacy Principles (GAPP), General Data Protection Regulation (GDPR))
6.2 Understand the audit process, methods and required adaptation to a cloud environment
Internal and external audit controls
Effects of audit requirements
Identifying support issues regarding virtualization and cloud
Types of audit reports (e.g. Statement on Standards for Attestation Engagements (SSAE), Security Operations Center (SOC), International Standard on Assurance Engagements (ISAE))
Limitations of audit scope opinions (e.g. Statement on Standards for Attestation Engagements (SSAE), International Standard on Assurance Engagements (ISAE))
Salary analysis
Audit planning
Internal information security management (ISMS)
Internal information security control system
Policies (e.g. organization, function, cloud computing)
Identification and involvement of relevant stakeholders
Special compliance requirements for highly regulated industries (e.g. North American Electric Reliability Corporation / Critical Infrastructure Protection (NERC / CIP), Health Insurance Portability and Accountability Act (HIPAA), Payment Card Industry (PCI))
Impact of information and technology (IT) distribution model (e.g. different geographical locations and crossing legal jurisdictions)
6.3 Understand the implications of the cloud for the company's risk management
Assess suppliers' risk management programs (e.g. controls, methods, policies)
Difference between data owner / controller vs. data keeper / processor (e.g. risk profile, risk threshold, responsibility)
Regulatory transparency requirements (e.g. breach notification, SarbanesOxley (SOX), General Data Protection Regulation (GDPR))
Risk management (ie avoid, modify, share, retain)
Different risk frameworks
Metrics for risk management
Assessment of risk environment (e.g. service, supplier, infrastructure)
6.4 Understand outsourcing and cloud contract design
Business requirements (e.g. service agreement (SLA), master service agreement (MSA), description of work (SOW))
Supplier management
Contract management (e.g. right to audit, metrics, definitions, termination, litigation, security, compliance, access to cloud / data, cyber risk insurance)
Supply chain management (e.g. International Organization for Standardization / International Electrotechnical Commission (ISO / IEC) 27036)

Preparation

How to best be prepared for our ISC2 CCSP training.

At Readynez, we provide many resources and have experienced experts in the field. That is why we are also very successful with many satisfied customers. You can therefore safely take your course with us. To take our CCSP course, you need to have some experience in the field in advance.

You thus have the perfect starting point to take the course with these prerequisites:

It is strongly recommended that you have a minimum of five years of full-time experience in information technology, including three years of work experience in IT security and one year in cloud computing.
You must also be able to demonstrate knowledge within one or more of the six CBK domains:
Domain 1: Cloud Concepts, Architecture and Design
Domain 2: Cloud Data Security
Domain 3: Cloud Platform and Infrastructure Security
Domain 4: Cloud Application Security
Domain 5: Cloud Security Operations
Domain 6: Legal, Risk and Compliance

Meet our instructors

Meet some of the Readynez Instructors you can meet on your course. They are experts, passionate about what they do, and dedicated to give back to their industry, their field, and those who want to learn, explore, and advance in their careers.

Kevin Henry

Kevin Henry delivers high-impact, LIVE instructor-led cybersecurity training for professionals preparing for certifications such as CISSP, CISM, CISA, and CCSP. With decades of global experience and deep industry insight, he equips learners with practical skills, strong exam readiness, and real-world understanding essential for modern security roles.

Meet the Instructor: Kevin Henry  

At Readynez, we’re beyond proud to have Kevin on the instructor team!  

With over 30 years of experience in IT security and audit, Kevin has helped thousands achieve certifications like CISSP, CISA, CISM, CCSP, and more.  

As the official course writer for ISC2 and ISACA, and a trusted advisor to organizations globally, Kevin brings unmatched expertise, actionable guidance, engaging stories and real-world insight to every course.  

Delegates consistently rate him 10/10 - and it’s easy to see why. His passion for teaching, deep knowledge, and genuine care for student success make him one of the most respected instructors in the field.  

Excellence starts with instructors like you. Thank you for empowering learners worldwide - and for your unwavering commitment and trust!  

Ready to join a session with Kevin? https://www.readynez.com/en/training/courses/vendors/isc2/

Read Less

Friedhelm Düsterhöft

As one of Europe’s most respected GRC and cybersecurity experts, Friedhelm Düsterhöft brings over 30 years of experience to his LIVE instructor-led training. He equips professionals with practical skills, strong certification readiness, and a clear understanding of complex regulatory frameworks essential for modern security roles.

Meet the Instructor: Friedhelm Düsterhöft

With over 30 years of experience in IT, information security, and data privacy, Friedhelm Düsterhöft is one of the most respected voices in the GRC (Governance, Risk, and Compliance) space - helping professionals build robust, regulation-ready organizations.

As an authorized trainer for ISC2 and an accredited trainer for ISACA & EXIN, Friedhelm’s dedication to excellence has earned him the titles PECB German Trainer of the Year 2022 and PECB Platinum Trainer 2024.

Founder of msdd.neT GmbH 
ISO 27001 & ISO 31000 Expert 
Accredited Certification Auditor
Contributor to global whitepapers on cybersecurity and compliance 
Instructor for GRC courses including CISSP, CISA and NIS2 Lead Implementer

Friedhelm is known for translating complex regulatory demands into clear, actionable strategies - empowering professionals to build strong compliance cultures from the ground up.

If you're training with Friedhelm, you're learning from one of the most trusted minds in the field.

Find your next IT and security course with Friedhelm Düsterhöft here: https://www.readynez.com/en/training/courses/all/

Read Less

James Rowney

James is recognised for his more than 20 years of contribution to learning and certification within IT Security.

James has worked on many large mission critical environments in some of the largest companies in their industries.

Understanding business requirements and drivers are essential to any strategy and design. Understanding environments are key to any application or infrastructure changes, both the immediate services they interface with and those beyond. A failure to satisfy Non Functional Requirements can not be fixed by a process.

Specialties: CISSP, CCSP, AWS Solution Architect Associate, TOGAF 9 certified 86080 member of The Association of Enterprise Architects (AEA) - 27519830. BCS Solution & Enterprise Architect Certified - AMBCS - 990529878, Linux RHCE V5 expired, RHCVA Unix, Storage, SAN, Netbackup, Clusters, Design and Delivery of Infrastructure.

Read Less

FAQ

FAQs for the ISC2 CCSP - Certified Cloud Security Professional course.

What is ISC2 CCSP certification?

The ISC2 CCSP (Certified Cloud Security Professional) certification is a globally recognized credential designed for professionals involved in cloud security and governance. It validates expertise in securing cloud environments, addressing key aspects like data security, compliance, architecture, and operations.

How do I prepare for the ISC2 CCSP certification exam?

Join Readynez's comprehensive CCSP training to ace the ISC2 CCSP exam and achieve certification. Our expert-led courses provide hands-on experience, covering critical topics such as cloud architecture, data security, and compliance. Gain the skills needed to secure cloud environments and advance your career in cloud security. Readynez is your trusted partner for effective and efficient certification preparation.

What are the prerequisites for ISC2 CCSP certification?

To earn the ISC2 CCSP (Certified Cloud Security Professional) certification, candidates are required to have a minimum of five years of cumulative, paid work experience in information technology, with at least three years of experience in information security and one year in one or more of the six CCSP domains. A relevant professional certification can substitute for one year of required experience.

How much does the ISC2 CCSP exam cost?

The cost of the ISC2 CCSP (Certified Cloud Security Professional) exam is $599 for members and $699 for non-members.

What topics are covered in the ISC2 CCSP exam?

The ISC2 CCSP (Certified Cloud Security Professional) exam syllabus assesses proficiency in cloud security domains. These domains include cloud concepts, architecture, and design; data security; cloud platform and infrastructure security; application security; operations; and legal and compliance. Candidates must demonstrate comprehensive knowledge in securing cloud environments to successfully pass the exam and earn certification.

Is ISC2 CCSP certification worth it for my career?

Obtaining the ISC2 CCSP (Certified Cloud Security Professional) certification can significantly enhance your career in cloud security. It validates your expertise in securing cloud environments, making you a valuable asset in a rapidly evolving digital landscape. Employers often seek CCSP-certified professionals for roles involving cloud security architecture, design, and management, making it a worthwhile investment for career advancement in the cybersecurity and cloud computing fields.

How long does it take to become ISC2 CCSP certified?

The time required to become ISC2 CCSP (Certified Cloud Security Professional) certified varies based on individual preparation and experience. Typically, candidates spend several months studying and preparing for the exam. This includes gaining practical experience in cloud security and understanding the relevant domains.

Can I take the ISC2 CCSP exam online?

ISC2 CCSP exam can be taken online or from an examination center.

How easy or difficult is it to pass the ISC2 CCSP exam?

The difficulty of passing the ISC2 CCSP (Certified Cloud Security Professional) exam can vary based on individual experience, knowledge, and preparation. The CCSP exam is known for covering a wide range of topics related to cloud security, including architecture, design, operations, and legal and compliance issues. Candidates with a solid understanding of cloud security principles and hands-on experience in the field may find the exam more manageable.

What is the passing score for the ISC2 CCSP exam?

Candidates must obtain a minimum of 700 points out of a possible 1000 in order to pass the CCSP Exam.

How can I maintain my ISC2 CCSP certification?

Your CCSP certification is good for three years. However, the member must meet certain requirements to keep his certification active and valid. These requirements include attaining 30 CPE credits each year and 90 CPE credits for the three-year certification cycle.

How much salary can I get after getting ISC2 CCSP certified?

The salary range for CCSP-certified professionals can be anywhere from $100,000 to $150,000 or more annually, depending on the specific role, industry, and geographic location.

Reviews