Professional Course
5.0 (4 Reviews)

Audit and Security for Cloud-Based Services

ACI Learning, In Worldwide
2 days
Next course start
Inquire for dates and prices See details
2 days
Next course start
Inquire for dates and prices See details

Course description

Audit and Security for Cloud-Based Services

This course covers the common architecture of cloud computing and examines the security and controls of SaaS, PaaS, and IaaS. It also covers the deficiencies that exist in cloud-based services and how Security-as-a-Service can be helpful.

Do you work at this company and want to update this page?

Is there out-of-date information about your company or courses published here? Fill out this form to get in touch with us.

Upcoming start dates

1 start date available

Inquire for dates and prices

  • On-site
  • Worldwide

Who should attend?

Operational, Business Application, Information Technology, and External Auditors; Audit Managers and Directors; Information Security professionals

Prerequisites: A working knowledge of operating system security, networking concepts and associated logical access controls; Network Security Essentials (ASG203), Intermediate Audit School (ITG241) or equivalent experience

Training content

Understanding Corporate Culture:

  • the SPI Cloud Computing Model
  • cloud network models
  • key drivers for moving towards cloud-based services

Software as a Service (SaaS):

  • key enterprise applications
  • the SaaS transaction model(s)
  • SaaS security and audit concerns

Platform as a Service (PaaS):

  • major development providers/platforms
  • PaaS security and audit concerns

Infrastructure as a Service (IaaS):

  • host security in the cloud
  • network security in the cloud
  • data storage/SAN in a cloud IaaS environment
  • cloud bursting
  • cloud bursting
  • IaaS security and audit concerns

Brokered Cloud Services:

  • cloud aggregators
  • cloud brokers
  • cloud management service portals

Security as a Service:

  • identity management as a service
  • security event monitoring/IDS as a service
  • vulnerability management as a service
  • data leakage prevention as a service/Web filtering, e-mail filtering

Cloud-Based Security Standards and Dependencies:

  • directories and identity management
  • federated identities
  • emerging security Standards: SPML, XACML, OAuth, OpenID, others

Governance in a Cloud Services Environment:

  • key performance indicators
  • audit trails for cloud-based services
  • service level agreements, licensing
  • legal complexities: data privacy, globalization, trans-border constraints
  • third-party assessments and certifications: SAS70, ISO 27001

Disaster Recovery in a Cloud-Based Environment:

  • SPI HA architectures
  • virtualized environments and their impact on disaster recovery
  • updating and testing disaster recovery plans

Cloud Security and Audit:

  • key risks and audit concerns
  • identifying key controls and mitigations
  • cloud-based risk analysis models: ENISA, NIST, CSA
  • security best-practices models for cloud-based services
  • audit techniques and tests in a cloud-based environment

Certification / Credits

NASBA Certified CPE: 16 Credits Auditing

IT Audit Certificate, Information Security Certificate

What You'll learn

You will learn about the current state of cloud computing, its common architecture, and the major services provided in the market. Also, how to use SaaS as a way to protect against security and control deficiencies.


Average rating 5

Based on 4 reviews.
Write a review!
Max J.
06 May 2019
Excellent and easy to follow

I was looking forward to this course after taking Intermediate IT Audit from Jason Claycomb last year. This program was prepared and presented in the same excellent, easy to fol...

Show more
26 Apr 2018

Very informative with both a very knowledgeable instructor and participative class which made the discussions more engaging.

10 Aug 2017


ACI Learning

ACI Learning

At ACI Learning, we train leaders in Cybersecurity, Audit, and Information Technology. Whether you're starting your IT career, mastering your profession, or developing your team, we're with you every step of the way. We believe that training is not a...

Read more and show all training delivered by this supplier