Cloud Security Engineer Associate (300)

Key skills

• Workload Security Implementation: Proficient in securing cloud workloads through the application of best practices and technologies, ensuring the
confidentiality, integrity, and availability of resources.
• Proficiency in Security Services: Expertise in Alibaba Cloud security services, including Anti-DDoS, Security Center, Web Application Firewall (WAF),
Bastionhost for secure access, Cloud Firewall (CFW), and Key Management Service (KMS).
• Threat Detection and Incident Response: Skilled in monitoring and responding to security incidents using integrated security tools and services, including
familiarity with SIEM and SOAR solutions to enhance risk governance.
• Security Automation: Knowledge of automating security processes using services such as Cloud Monitor for automated alerts and ActionTrail for auditing
API usage.

Course outline

Course introduction

• Roadmap/agenda
• What the Cloud Security Engineer role is about
• Pre-course survey

Module 1: Cloud Security Basics
• Introduction to Cloud Security
o What is security in the cloud
o Importance of cloud security
o Security responsibilities in the cloud
§ Security considerations for different service models
§ Shared security responsibility model
o Alibaba Cloud security services portfolio
o Compliance and security standards
§ Important compliance and regulations

Module 2: Identity and Access Management on Alibaba Cloud
• Resource Access Management Fundamentals
o Importance of access control
§ Concept of identity on the cloud
§ Principle of least privilege
o What is RAM
§ Authentication and authorization
§ How RAM works
o User and role management
§ Planning username conventions & management
§ Manage roles, not users
§ RAM roles
o Implementing access control policies
§ Access control methods
§ Role-based access control
§ Attribute-based access control
§ RAM policies
§ Writing secure and manageable policies

Module 3: Host Security on Alibaba Cloud
• Cybersecurity Basics
o Understanding cybersecurity technologies
§ What is SIEM
§ What is SOAR
o Host security on the cloud
§ Risks and mitigation strategies specific to cloud hosts
§ Importance of securing both instances and network interfaces
• Security Center Fundamentals
• Bastionhost Fundamentals
• ActionTrail Fundamentals
o What is ActionTrail
o Understanding the importance of action auditing, tracking API calls, and configuration changes

Module 4: Data Security on Alibaba Cloud
• Data Security on Alibaba Cloud
o Built-in data protection mechanisms (OSS, RDS, SSL)
o Popular encryption methods
o Protecting data-at-rest and data-in-transit
§ Importance of SSL/TLS in data transmission
• Key Management Service Fundamentals
o What is KMS
o Concepts & components
o Basic operations
§ Managing and rotating keys in KMS

Module 5: Network Security and Threat Mitigation on Alibaba Cloud
• Web Application Security
o Common cyber attacks across the network stack
o DDoS attacks
o OWASP Top 10 threats
• Cloud Firewall Fundamentals
• Web Application Firewall Fundamentals
• Anti-DDoS Fundamentals