Securing virtual and cloud environments Course
1 hour, 9 minutes
Syllabus
Defending a public server
Video - 00:01:00
Public servers offer services to Internet users. These servers should be hardened and placed on an isolated network such as a screened subnet or DMZ so that in the case of compromise, lateral movement by the attacker will not allow access to other sensitive hosts.
Common attacks and mitigations
Video - 00:10:00
Public servers are subjected to many types of attacks that can be mitigated by hardening the network and host using a wide variety of methods. This episode covers common attacks include DDoS, URL hijacking/redirection, session replay, and pass-the-hash.
DDoS attacks in the real world
Video - 00:03:00
In this episode you will learn about DDos attacks in the real world.
Containers and software-defined networking
Video - 00:11:00
Modern software development often uses application containers which serve as a logical boundary for app files and settings outside of the operating system. This episode also covers software-defined networking (SDN).
Hypervisors and virtual machines
Video - 00:08:00
Hypervisors are servers configured to host virtual machine guests. This episode will discuss Type 1 and Type 2 hypervisors as well as hardening.
Cloud deployment models
Video - 00:09:00
Virtualization alone does not constitute cloud computing; a number of characteristics such as resource pooling and metered usage must also be involved. This episode discusses public, private, hybrid and community clouds.
Cloud service models
Video - 00:08:00
Cloud computing services are categorized using the term “as a service” (aaS). This episode discusses IaaS, Paas, SaaS, and where responsibility lies for each type of service.
Securing the cloud
Video - 00:10:00
Cloud security is generally split between the Cloud Service Provider (CSP) and the cloud tenant, depending on which type of cloud service is being used. Security solutions include firewalls, data loss prevention tools as well as a Cloud Access Security Broker which enforces cloud computing security policies.
Chapter 9 exam question review
Video - 00:02:00
Public servers can be hosted as virtual machines in the public cloud. In this episode, a scenario is presented where a virtual machine requires access to specific cloud-based resources.
Docker container lab
Video - 00:04:00
Containerized applications are self-contained boundaries consisting of only application files, not an operating system. This demo shows how to work with Docker containers on the Linux platform.
Chapter 9 Ask Me Anything (AMA)
Video - 00:02:00
Virtual machines, often referred to as instances, are widely used both on-premises and in the cloud. This episode tackles issues related to being aware of deployed instances in the interest of reducing the attack surface.
Unlock 7 days of free training
- 1,400+ hands-on courses and labs
- Certification practice exams
- Skill assessments
Plans & pricing
Infosec Skills Personal
$299 / year
- 190+ role-guided learning paths (e.g., Ethical Hacking, Threat Hunting)
- 100s of hands-on labs in cloud-hosted cyber ranges
- Custom certification practice exams (e.g., CISSP, Security+)
- Skill assessments
- Infosec peer community support
Infosec Skills Teams
$799 per license / year
- Team administration and reporting
- Dedicated client success manager
-
Single sign-on (SSO)
Easily authenticate and manage your learners by connecting to any identity provider that supports the SAML 2.0 standard.
-
Integrations via API
Retrieve training performance and engagement metrics and integrate learner data into your existing LMS or HRS.
- 190+ role-guided learning paths and assessments (e.g., Incident Response)
- 100s of hands-on labs in cloud-hosted cyber ranges
- Create and assign custom learning paths
- Custom certification practice exams (e.g., CISSP, CISA)
- Optional upgrade: Guarantee team certification with live boot camps
Learn about scholarships and financing with
Award-winning training you can trust
