Overview
-
Learn the core concepts of cloud application security as you prepare for the fourth domain of the Certified Cloud Security Professional (CCSP) exam.
Syllabus
-
Introduction
- Securing cloud applications
- What you need to know
- Study resources
- Development methodologies
- Maturity models
- Operation, maintenance, and change management
- DevOps
- Understanding cross-site scripting
- Preventing SQL injection
- Privilege escalation
- Directory traversal
- Overflow attacks
- Session hijacking
- Code execution attacks
- Error and exception handling
- Code repositories
- Code signing
- Identifying threats
- Risk analysis and mitigation
- Software testing
- Third-party code
- Acquired software
- Developer training and awareness
- Building secure cloud solutions
- Web application firewalls
- Database security controls
- Continuing your CCSP certification journey
