Security in Google Cloud

Overview

Delivery method

Virtual classroom

Duration

3 days

Audience

Information Technology Specialists

Description

Fees are associated with each registration. Please be mindful of your registration and commit to honouring your registration. Any cancellation after the registration period will incur fees that SSC will have to cover. To avoid this, please cancel at least 12 business days prior to the course start date.

This training course gives you a broad study of security controls and techniques in Google Cloud. Through lectures, demonstrations, and labs, you explore and deploy the components of a secure Google Cloud solution. You use services including Cloud Identity, Identity and Access Management (IAM), Cloud Load Balancing, Cloud IDS, Web Security Scanner, BeyondCorp Enterprise, and Cloud DNS.

Course Outline

• Foundations of Google Cloud Security;
• Securing Access to Google Cloud;
• Identity and Access Management;
• Configuring Virtual Private Cloud for Isolation and Security;
• Securing Compute Engine;
• Securing Cloud Data;
• Securing Applications;
• Securing Google Kubernetes Engine;
• Protecting against Distributed Denial of Service Attacks;
• Content-Related Vulnerabilities;
• Monitoring, Logging, Auditing, and Scanning.

Learning Objectives

By the end of this course, you will be able to:

• Identify the foundations of Google Cloud security;
• Manage administration identities with Google Cloud;
• Implement user administration with Identity and Access Management;
• Configure Virtual Private Clouds for isolation, security, and logging;
• Apply techniques and best practices for securely managing Compute Engine;
• Apply techniques and best practices for securely managing Google Cloud data;
• Apply techniques and best practices for securing Google Cloud applications;
• Apply techniques and best practices for securing Google Kubernetes Engine resources;
• Manage protection against distributed denial of service attacks;
• Manage content-related vulnerabilities;
• Implement Google Cloud monitoring, logging, auditing, and scanning solutions.

Target Audience

• Cloud information security analysts, architects, and engineers;
• Information security/cybersecurity specialists;
• Cloud infrastructure architects.

Prerequisite(s)

• Prior completion of Google Cloud Fundamentals: Core Infrastructure or equivalent experience.
• Prior completion of Networking in Google Cloud or equivalent experience.
• Knowledge of foundational concepts in information security, through experience or through online training such as SANS’s SEC301: Introduction to Cyber Security.
• Basic proficiency with command-line tools and Linux operating system environments.
• Systems Operations experience, including deploying and managing applications, either on premises or in a public cloud environment.
• Reading comprehension of code in Python or Javascript.
• Basic understanding of Kubernetes terminology (preferred but not required).

Notes

The Digital Enterprise Skilling (DES) program provides Shared Services Canada (SSC) employees with the knowledge and skills required to accelerate digital adoption, improve IT services delivery, and adapt to the workforce’s needs of the future. If you have not registered as an SSC Digital Enterprise Skilling (DES) participant yet, sign up here: DES Learner's Portal _ Portail de l'apprenant du programme CNE - Power Apps

Legacy course code: GOO-SEC-SSC