Professional Cloud Security Engineer Certification

Become the First Generation Leader of the Professional Cloud Security Engineer Revolution.

Apply Now
banner-img

Online-Live

Format

2 Months

Recommended 5/6 Hrs/Week

Dec 05, 2020

Start Date

client-cisco
client-hp
client-ibm
client-infosys
client-lg
client-citrix

Syllabus

Foundations of GCP Security
  • Understand the GCP shared security responsibility model
  • Understand Google Cloud’s approach to security
  • Understand the kinds of threats mitigated by Google and by GCP
  • Define and Understand Access Transparency and Access Approval (beta)
Cloud Identity
  • Cloud Identity
  • Syncing with Microsoft Active Directory using Google Cloud Directory Sync
  • Using Managed Service for Microsoft Active Directory (beta)
  • Choosing between Google authentication and SAML-based SSO
  • Best practices, including DNS configuration, super admin accounts
  • Lab: Defining Users with Cloud Identity Console
Identity, Access, and Key Management
  • GCP Resource Manager: projects, folders, and organizations
  • GCP IAM roles, including custom roles
  • GCP IAM policies, including organization policies
  • GCP IAM Labels
  • GCP IAM Recommender
  • GCP IAM Troubleshooter
  • GCP IAM Audit Logs
  • Best practices, including separation of duties and least privilege, the use of Google groups in policies, and avoiding the use of primitive roles
  • Labs: Configuring Cloud IAM, including custom roles and organization policiesPC
Configuring Google Virtual Private Cloud for Isolation and Security
  • Configuring VPC firewalls (both ingress and egress rules)
  • Load balancing and SSL policies
  • Private Google API access
  • SSL proxy use
  • Best practices for VPC networks, including peering and shared VPC use, correct use of subnetworks
  • Best security practices for VPNs
  • Security considerations for interconnect and peering options
  • Available security products from partners
  • Defining a service perimeter, including perimeter bridges
  • Setting up private connectivity to Google APIs and services
  • Lab: Configuring VPC firewalls
  • Securing Compute Engine: techniques and best practices
    • Compute Engine service accounts, default and customer-defined
    • IAM roles for VMs
    • API scopes for VMs
    • Managing SSH keys for Linux VMs
    • Managing RDP logins for Windows VMs
    • Organization policy controls: trusted images, public IP address, disabling serial port
    • Encrypting VM images with customer-managed encryption keys and with customer-supplied encryption keys
    • Finding and remediating public access to VMs
    • Best practices, including using hardened custom images, custom
    • service accounts (not the default service account), tailored API
    • scopes, and the use of application default credentials instead of user-managed keys
    • Lab: Configuring, using, and auditing VM service accounts and scopes
    • Encrypting VM disks with customer-supplied encryption keys
    • Lab: Encrypting disks with customer-supplied encryption keys
    • Using Shielded VMs to maintain the integrity of virtual machines
    Securing cloud data: techniques and best practices
    • Cloud Storage and IAM permissions
    • Cloud Storage and ACLs
    • Auditing cloud data, including finding and remediating publicly accessible data
    • Signed Cloud Storage URLs
    • Signed policy documents
    • Encrypting Cloud Storage objects with customer-managed encryption keys and with customer-supplied encryption keys
    • Best practices, including deleting archived versions of objects after key rotation
    • Lab: Using customer-supplied encryption keys with Cloud Storage
    • Lab: Using customer-managed encryption keys with Cloud Storage and Cloud KMS
    • BigQuery authorized views
    • BigQuery IAM roles
    • Best practices, including preferring IAM permissions over ACLs
    • Lab: Creating a BigQuery authorized view
    Security Applications: techniques and best practices
    • Types of application security vulnerabilities
    • DoS protections in App Engine and Cloud Functions
    • Cloud Security Scanner
    • Lab: Using Cloud Security Scanner to find vulnerabilities in an App Engine application
    • Identity Aware Proxy
    • Lab: Configuring Identity Aware Proxy to protect a project
    Securing Kubernetes: techniques and best practices
    • Authorization
    • Securing Workloads
    • Cloud Audit Logging
    • Securing Clusters
    • Logging and Monitoring
    Protecting against Distributed Denial of Service Attacks
    • How DDoS attacks work>
    • Mitigations: GCLB, Cloud CDN, autoscaling, VPC ingress and egress firewalls, Cloud Armor (including its rules language)
    • Types of complementary partner products
    • Lab: Configuring GCLB, CDN, traffic blacklisting with Cloud Armor
    Protecting against content-related vulnerabilities
    • Threat: Ransomware
    • Mitigations: Backups, IAM, Data Loss Prevention API
    • Threats: Data misuse, privacy violations, sensitive/restricted/unacceptable content
    • Threat: Identity and Oauth phishing
    • Mitigations: Classifying content using Cloud ML APIs; scanning and redacting data using Data Loss Prevention API
    • Lab: Redacting Sensitive Data with Data Loss Prevention API
    Monitoring, Logging, Auditing, and Scanning
    • Security Command Center
    • Stackdriver monitoring and logging
    • Lab: Installing Stackdriver agents
    • Lab: Configuring and using Stackdriver monitoring and logging
    • VPC flow logs
    • Lab: Viewing and using VPC flow logs in Stackdriver
    • Cloud audit logging
    • Lab: Configuring and viewing audit logs in Stackdriver
    • Deploying and Using Forseti
    • Lab: Inventorying a Deployment with Forseti Inventory (demo)
    • Lab: Scanning a Deployment with Forseti Scanner (demo)

    Certification

    Executive Program in Google Cloud Network Engineer Certified By Google.

    certificate
    143000

    Happy Clients Our success is measured by results.

    572000

    Projects- Our focus in on delivery a better content.

    12

    Years of experience In Imparting Quality Training Across Verticals.

    38000

    Students Placed in Top MNC's

    Platforms Covered

    Google_Compute

    Google Compute Engine (GCE)

    Google Compute Engine (GCE) is the Infrastructure as a Service (IaaS) component of Google Cloud Platform which is built on the global infrastructure that runs Google's search engine, Gmail, YouTube and other services.

    Vpc

    virtual private cloud (VPC)

    A virtual private cloud (VPC) is an on-demand configurable pool of shared computing resources allocated within a public cloud environment, providing a certain level of isolation between the different organizations (denoted as users hereafter) using the resources.

    integration_google

    Google Cloud Storage

    Google Cloud Storage is a RESTful online file storage web service for storing and accessing data on Google Cloud Platform infrastructure. The service combines the performance and scalability of Google's cloud with advanced security and sharing capabilities.

    GoogleCloudSQL

    Google Cloud SQL

    Cloud SQL is a fully-managed database service that makes it easy to set up, maintain, manage, and administer your relational databases on Google Cloud Platform. You can use Cloud SQL with MySQL , PostgreSQL, or SQL Server .

    Container-Engine

    Kubernetes Engine

    Google Kubernetes Engine (GKE) is a management and orchestration system for Docker container and container clusters that run within Google's public cloud services. Google Kubernetes Engine is based on Kubernetes, Google's open source container management system.

    Testimonials

    Instructors and Experts

    Learn from India's Best leading faculty and industry leaders

    Sanjeev

    Sanjeev Singh

    EXP 18+
    team-3

    Sameer

    EXP 15+
    Satwik

    Satwik Muthappa

    EXP 15+
    Mujaheed

    Mujaheed

    EXP 12+

    Program Fee

    GCP Cloud Network Engineer

    INR. 2000*

    Inclusive of all Taxes

    • 4 Session/ classes
    • Online - live Classes

    GCP Cloud Network Engineer

    INR. 23,994*

    Inclusive of all Taxes

    • Training
    • Single Certification
    • Online - live Classes
    • No Cost EMI Available

    GCP Cloud Network Engineer

    INR. 39,990*

    * Inclusive of all Taxes

    • Training
    • Dual Certification
    • Online - live Classes
    • No Cost EMI Available

    Frequently Asked Questions

    Why learn Google Cloud Platform?

    Google Cloud Platform is one of the leaders in the cloud space. Learning Google Cloud Platform can help open up opportunities for your career. It is highly secure and can reduce an organisation time-to-insight with it’s server-less big data analytics solutions. This is why many companies are adopting GCP for their cloud needs.

    What is the best way to learn Google Cloud Platform?

    GCP Certification Training is the best program that you need to master this cloud technology. We offer live instructor-led sessions supplemented by a 24x7 support system and lifetime access to our updated course materials. Our projects are designed for better hands-on for our learners. With these added advantages, we try to make sure that your learning objectives are fulfilled.

    What is the future scope of Google Cloud Platform?

    Career growth in GCP seems to be skyrocketing at the moment with more and more organizations looking towards GCP to solve their cloud needs. Companies like SPotify, HSBC, Ubisoft are deploying GCP based solutions already and this list seems to be growing day-by-day. Getting GCP Certified can help you get started with your career in this lucrative cloud technology space.

    How to get GCP certified?

    Once you have grasped the basic concepts, now is the time to take up our Google Cloud Platform Certification Training to master GCP cloud computing in and out. Our course is in-line with the certification exam requirements offered by Google. After the course completes and you are done working on the live project, you are now ready to fill the exam form, pick a date and clear the certification!

    How to clear the GCP certification exam?

    Our GCP Certification Training course is inline with the Google Cloud Certified Exam. With our training, you will be able to build, manage and administer application infrastructure using Google Cloud Platform. Once you are done with the training, you can go ahead and fill the form for the exam online, pick a date to appear for the exam and get Google Cloud certified!

    Contact Us

    logo

    We offer most advanced technologies than any other computer and business training company. Businesses and individuals can choose from the course offerings, delivered by experts.

    1st Floor, 104, S R Arcade, 6th Cross, Marathahalli, Bangalore - 560037.

    info@vepsun.com

    +91 90-363-63007

    +91 90-353-53007