Contact us:
+48 22 379 02 00
info@cloudteam.pl
PL
EN
GCP-SEC
Security in Google Cloud Platform
AUDIENCE
Security Engineers
LEVEL

Introductory (100) – preliminary course, overview

Intermediate (200) – the course extends the knowledge from the level 100 with specific issues

Advanced (300) – the course extends the knowledge from the level 300 with specific issues

Expert (400) – the training course involves an expert level of knowledge and experience and provides an in-depth analysis of the issue

Intermediate
LENGTH
3 days
TRAINING METHOD
vILT
PRICE

5200

This training course gives you a broad study of security controls and techniques in Google Cloud. Through recorded lectures, demonstrations, and hands-on labs, you’ll explore and deploy the components of a secure Google Cloud solution, including Cloud Identity, Resource Manager, Identity and Access Management (IAM), Virtual Private Cloud firewalls, Cloud Load Balancing, Direct Peering, Carrier Peering, Cloud Interconnect, and VPC Service Controls.

AUDIENCE PROFILE

This class is intended for the following job roles:

  • Cloud information security analysts, architects, and engineers.
  • Information security/cybersecurity specialists.
  • Cloud infrastructure architects.

ACQUIRED SKILLS

  • Understand Google’s approach to security.
  • Manage administration identities using Cloud Identity.
  • Implement least privilege administration using Resource Manager and IAM.
  • Implement Identity-Aware Proxy.
  • Implement IP traffic controls using VPC firewalls and Google Cloud Armor.
  • Remediate security vulnerabilities, especially public access to data and virtual machines.
  • Scan for and redact sensitive data using the Cloud Data Loss Prevention API.
  • Analyze changes to resource metadata configuration using audit logs.
  • Scan a Google Cloud deployment with Forseti, to remediate important types of vulnerabilities, especially in public access to data and VMs.

Foundations of Google Cloud Security

  • Google Cloud’s Approach to Security
  • The Shared Security Responsibility Model
  • Threats Mitigated by Google and Google Cloud
  • Access Transparency

Cloud Identity

  • Cloud Identity
  • Google Cloud Directory Sync
  • Google Authentication Versus SAML-based SSO
  • Authentication Best Practices

Identity and Access Management (IAM)

  • Resource Manager
  • IAM Roles
  • IAM Policies
  • IAM Recommender
  • IAM Troubleshooter
  • IAM Audit Logs
  • IAM Best Practices

Configuring Virtual Private Cloud for Isolation and Security

  • VPC Firewalls
  • Load Balancing and SSL Policies
  • Interconnect and Peering Policies
  • Best Practices for VPC Networks
  • VPC Flow Logs

Securing Compute Engine: Techniques and Best Practices

  • Service Accounts, IAM Roles and API Scopes
  • Managing VM Logins
  • Organization Policy Controls
  • Compute Engine Best Practices
  • Encrypting Disks with CSEK

Securing Cloud Data: Techniques and Best Practices

  • Cloud Storage IAM permissions and ACLs
  • Auditing Cloud Data
  • Signed URLs and Policy Documents
  • Encrypting with CMEK and CSEK
  • Cloud HSM
  • BigQuery IAM Roles and Authorized Views
  • Storage Best Practices

Application Security: Techniques and Best Practices

  • Types of Application Security Vulnerabilities
  • Web Security Scanner
  • Threat: Identity and Oauth Phishing
  • Identity-Aware Proxy
  • Secret Manager

Securing Google Kubernetes Engine: Techniques and Best Practices

  • Introduction to Kubernetes/GKE
  • Authentication and Authorization
  • Hardening Your Clusters
  • Securing Your Workloads
  • Monitoring and Logging

Protecting against Distributed Denial of Service Attacks (DDoS)

  • How DDoS Attacks Work
  • Google Cloud Mitigations
  • Types of Complementary Partner Products

Content-Related Vulnerabilities: Techniques and Best Practices

  • Threat Ransomware
  • Ransomware Mitigations
  • Threats: Data Misuse, Privacy Violations, Sensitive Content
  • Content-Related Mitigations

Monitoring, Logging, Auditing, and Scanning

  • Cloud Audit Logs
  • Deploying and Using Forseti

To get the most out of this course, participants should have:

  • Prior completion of Google Cloud Fundamentals: Core Infrastructure or equivalent experience.
  • Prior completion of Networking in Google Cloud or equivalent experience.
  • Knowledge of foundational concepts in information security: Fundamental concepts: vulnerability, threat, attack surface confidentiality, integrity, availability, Common threat types and their mitigation strategies, Public-key cryptography, Public and private key pairs, Certificates Cipher types, Key width Certificate authorities, Transport Layer Security/Secure Sockets, Layer encrypted communication Public key infrastructures Security policy.
  • Basic proficiency with command-line tools and Linux operating system environments
  • Systems Operations experience, including deploying and managing applications, either on-premises or in a public cloud environment
  • Reading comprehension of code in Python or JavaScript

5200

Included in price:

  • Authorized instructor
  • Authorized course materials
  • Certificate of completion

All quoted prices are net prices. All prices are subject to VAT at 23%.

SCHEDULE

date id code code2 dayNumber monthPl monthEn dayPl dayEn guaranteedPl guaranteedEn price linkPl linkEn
11.12.2024 05318f73f4614c12b79735cc3488a93e MS-4005 MS-4005 11 Grudnia December Środa Wednesday 1700 POPROŚ O OFERTĘ ASK FOR A QUOTE
16.12.2024 08175cbc07e740ed98dcf31476f02c11 SC-100 SC-100 16 Grudnia December Poniedziałek Monday 4500 POPROŚ O OFERTĘ ASK FOR A QUOTE
16.12.2024 0a314b30509d44c492fd1d3920d2fa69 AWS-DEV AWS-DEV 16 Grudnia December Poniedziałek Monday 5200 POPROŚ O OFERTĘ ASK FOR A QUOTE
16.12.2024 0b0b683b3b4942ee94939def702485fa PL-600 PL-600 16 Grudnia December Poniedziałek Monday 4000 POPROŚ O OFERTĘ ASK FOR A QUOTE
09.12.2024 0b925111f528437f801b292f96e2b03d DP-300 DP-300 09 Grudnia December Poniedziałek Monday 4000 POPROŚ O OFERTĘ ASK FOR A QUOTE
11.12.2024 103ff2f2ba0247d796f35644542d2dad AWS-MIG AWS-MIG 11 Grudnia December Środa Wednesday 5200 POPROŚ O OFERTĘ ASK FOR A QUOTE
04.12.2024 22aa97fe6cc54cf8a8fcd1d2c1f2da9b SC-5003 SC-5003 04 Grudnia December Środa Wednesday 1700 POPROŚ O OFERTĘ ASK FOR A QUOTE
09.12.2024 24f03acdbb6448cdbeb5af96c1553ac6 MD-102 MD-102 09 Grudnia December Poniedziałek Monday 4500 POPROŚ O OFERTĘ ASK FOR A QUOTE
06.12.2024 263a81638a3144398d0b13437378f9cf PL-900 PL-900 06 Grudnia December Piątek Friday 1700 POPROŚ O OFERTĘ ASK FOR A QUOTE
09.12.2024 266008f35a4345fab40feb4c54cfefd2 GCP-ARCHDP GCP-ARCHDP 09 Grudnia December Poniedziałek Monday 3500 POPROŚ O OFERTĘ ASK FOR A QUOTE
06.12.2024 2a3fa854b9924d9cb0fc8326aa372ef6 AWS-SESS AWS-SESS 06 Grudnia December Piątek Friday 2300 POPROŚ O OFERTĘ ASK FOR A QUOTE
16.12.2024 33fea3fdb0a84c57a72f6d23ed459a32 MS-10987 MS-10987 16 Grudnia December Poniedziałek Monday
GUARANTEED TO RUN

Guaranteed to Run Courses – learn more
GUARANTEED TO RUN

Guaranteed to Run Courses – learn more

 4000 POPROŚ O OFERTĘ ASK FOR A QUOTE
11.12.2024 37eb102d32bf48e785808cf4c6a1f81f GCP-SEC GCP-SEC 11 Grudnia December Środa Wednesday 5200 POPROŚ O OFERTĘ ASK FOR A QUOTE
09.12.2024 3c073df7e30e4cfab6e09668f0e3efbb AI-102 AI-102 09 Grudnia December Poniedziałek Monday 4000 POPROŚ O OFERTĘ ASK FOR A QUOTE
20.12.2024 4338f103e4404ae990f1f15672ced8d3 SC-900 SC-900 20 Grudnia December Piątek Friday 1700 POPROŚ O OFERTĘ ASK FOR A QUOTE
16.12.2024 4e89bfcee664482dbd9825659037c29c GCP-ARCHGKE GCP-ARCHGKE 16 Grudnia December Poniedziałek Monday 5200 POPROŚ O OFERTĘ ASK FOR A QUOTE
20.12.2024 549f64a3ea48404eaaa56a7db898a52a GCP-BDML GCP-BDML 20 Grudnia December Piątek Friday 2300 POPROŚ O OFERTĘ ASK FOR A QUOTE
10.02.2025 5a6c4273641d4e68bf81fa9f8e73c088 AZ-400 AZ-400 10 Lutego February Poniedziałek Monday 4500 POPROŚ O OFERTĘ ASK FOR A QUOTE
16.12.2024 5dbea5c142c04dc28dd2d33d2bbafef6 DP-203 DP-203 16 Grudnia December Poniedziałek Monday 4000 POPROŚ O OFERTĘ ASK FOR A QUOTE
09.12.2024 6776d39eb27047118258340c7fbed7e0 AZ-400 AZ-400 09 Grudnia December Poniedziałek Monday 4500 POPROŚ O OFERTĘ ASK FOR A QUOTE
10.12.2024 68b785cfde65452a9b451142212b4b3d MS-4004 MS-4004 10 Grudnia December Wtorek Tuesday 1700 POPROŚ O OFERTĘ ASK FOR A QUOTE
16.12.2024 836e4d5ee113406fb8bc722cf4cb6a5b AZ-204 AZ-204 16 Grudnia December Poniedziałek Monday 5500 POPROŚ O OFERTĘ ASK FOR A QUOTE
13.12.2024 93557c0baa294bc1b54000a95c2c00dd GCP-ACEE GCP-ACEE 13 Grudnia December Piątek Friday 2300 POPROŚ O OFERTĘ ASK FOR A QUOTE
16.12.2024 97b885da10c64fe898e12d62ca5f6cf9 SC-200 SC-200 16 Grudnia December Poniedziałek Monday
GUARANTEED TO RUN

Guaranteed to Run Courses – learn more
GUARANTEED TO RUN

Guaranteed to Run Courses – learn more

 4000 POPROŚ O OFERTĘ ASK FOR A QUOTE
20.01.2025 9fddb372ca284517bc60c9561a01f80e PL-300 PL-300 20 Stycznia January Poniedziałek Monday 3200 POPROŚ O OFERTĘ ASK FOR A QUOTE
20.01.2025 ae47b49ce36f4deeb80e4fbaf242a823 AWS-DEV AWS-DEV 20 Stycznia January Poniedziałek Monday
GUARANTEED TO RUN

Guaranteed to Run Courses – learn more
GUARANTEED TO RUN

Guaranteed to Run Courses – learn more

 5200 POPROŚ O OFERTĘ ASK FOR A QUOTE
18.12.2024 b012ca4f98124ef4a751d427a989119e AWS-SEC AWS-SEC 18 Grudnia December Środa Wednesday 6500 POPROŚ O OFERTĘ ASK FOR A QUOTE
13.01.2025 b1293d539e134384b4ee5997b6e42b6e CT-20409 CT-20409 13 Stycznia January Poniedziałek Monday
GUARANTEED TO RUN

Guaranteed to Run Courses – learn more
GUARANTEED TO RUN

Guaranteed to Run Courses – learn more

 3500 POPROŚ O OFERTĘ ASK FOR A QUOTE
06.12.2024 b4a8a22a607f400f8e2c006e626be914 AI-900 AI-900 06 Grudnia December Piątek Friday 1700 POPROŚ O OFERTĘ ASK FOR A QUOTE
13.01.2025 bb320907a7e54a4f8d0e28ef08f58b2f AWS-ARCH AWS-ARCH 13 Stycznia January Poniedziałek Monday 5200 POPROŚ O OFERTĘ ASK FOR A QUOTE
09.12.2024 bb74dc60cb99474e920168be77a92d86 MS-4001 MS-4001 09 Grudnia December Poniedziałek Monday 1700 POPROŚ O OFERTĘ ASK FOR A QUOTE
13.12.2024 d598b4a6b7364b8f88d528db3a314147 MS-4007 MS-4007 13 Grudnia December Piątek Friday 1700 POPROŚ O OFERTĘ ASK FOR A QUOTE
19.12.2024 dd5f3cc6518d4b9eab20f7e8e1a852fe DASA-FUND DASA-FUND 19 Grudnia December Czwartek Thursday 4500 POPROŚ O OFERTĘ ASK FOR A QUOTE
09.12.2024 e67128e3413a4f309fd9c3a58541a146 AWS-ADVARCH AWS-ADVARCH 09 Grudnia December Poniedziałek Monday 6500 POPROŚ O OFERTĘ ASK FOR A QUOTE
16.12.2024 ef323d863ea14c70b00a8201f3aa834d GCP-GKE GCP-GKE 16 Grudnia December Poniedziałek Monday 2300 POPROŚ O OFERTĘ ASK FOR A QUOTE
06.12.2024 f59a12abf8da4880ae9d4de06f98eca2 GCP-CI GCP-CI 06 Grudnia December Piątek Friday 2300 POPROŚ O OFERTĘ ASK FOR A QUOTE
09.12.2024 fc9d7836c4344733a19047c7f48ffa75 SC-300 SC-300 09 Grudnia December Poniedziałek Monday 4000 POPROŚ O OFERTĘ ASK FOR A QUOTE
12.12.2024 fcab31a1d2d34e4196051262ff44ecb0 MS-4006 MS-4006 12 Grudnia December Czwartek Thursday 1700 POPROŚ O OFERTĘ ASK FOR A QUOTE
code monthEn

Are you looking for another date? Contact us

We do not have a scheduled date for this training.
Contact us to find out when we can start it.

CHOOSE THE MOST CONVENIENT TRAINING COURSE METHOD

ON-SITE TRAINING

Instructor-led training courses
in your premises?

Details

vILT

Do you prefer virtual instructor-led
training method?

See how our remote training courses look like!

PROMOTIONS

In CloudTeam you can enrich any training course with a bonus of your choice!

Learn more

CLOUDTEAM HAS BEEN YOUR RELIABLE IT TRAINING PARTNER FOR 20 YEARS