Setting the Gold Standard in Cloud Security Training: Dive Deep into Governance. Risk and Compliance (GRC).

This CSF2: Cloud Security Fundamental Level 2 training offers a concise introduction to the information security risks associated with cloud computing from the perspectives of governance, risk, and compliance. Students have the opportunity to assess their current level of knowledge regarding cloud GRC and to identify any gaps in that knowledge through the use of this course. This class is beneficial for students who either have an interest in working with cloud technology or who are planning to be a part of an organisation that will be transitioning to the cloud.

Our trainers have all passed a rigorous certification process and are proven security professionals with years of industry experience and multiple professional qualifications.

Cloud security is a set of rules, methods, and technologies that are meant to keep the cloud environment safe and under control. Cloud security can reduce the risks of moving to a cloud environment by using strict access controls, system audits, adherence to global security frameworks, and other measures.

Interaction with a variety of stakeholders, including auditors, customers, providers, and internal staff, is essential to the execution of a GRC programme successfully. We will discuss methods that will make it possible for an organization to manage the complicated information flow in a way that is both effective and efficient

Skills Covered

  • Understand, and be able to differentiate between, the various service delivery models, frameworks and hypervisor threats that are incorporated into the cloud computing reference architecture.
  • Discuss strategies for data ownership, data sovereignty, data classification and implementing appropriate measures for assurance for ensuring privacy, compliance with regulatory agencies and working with authorities during legal investigations.
  • Understand the challenges for data centre design, forensic analysis and cloud environment deployments and recommend appropriate risk mitigation strategies.
  • Understand and apply Business Continuity Planning and Disaster Recovery procedures for disaster situations.
  • Design appropriate identity and access management solutions.
  • Comprehend and apply appropriate processes and frameworks including the Software Development Life-Cycle (SDLC) process and secure operations.

Who Should Attend

This training is intended for professionals who have full-time IT experience, and are pursuing cloud security knowledge to enhance credibility and career mobility. The course is ideal for those working in positions such as, but not limited to:

  • IT Executive
  • IT/Security Manager
  • IT/Security Consultant
  • IT Auditor / None IT Auditor
  • IT Risk Manager/Analyst
  • IT Compliance Manager /Analyst
  • HOD, Senior Manager, Director and Business Owner
  • Business User
  • Project/Program Manager

Course Curriculum


There are no prerequisites requirements for taking the course, however, in order to make full use of the course candidate should have necessary working experience in information technology or have attended the CSF1: Cloud Security Fundamental Level 1 course.

Download Syllabus