Cloud Service Governance (for Manager) («CLSECU»)

• Specification and implementation of cloud security governance 
• Developing information security basics
• Anchoring information security in the management and the board of directors
• Integrating information security requirements in all processes 
• Defining the security target
• Developing a business case for information security
• Developing the ICT security architecture
• Ensuring the integration of IT security aspects in business continuity management 
• Ensuring data security during transmission
• Ensuring data security during storage and archiving 

1. Half day
   • Cloud services – Service models, architecture models and the cloud reference architecture
   • Cloud services in a business context
   • Cloud security governance – who bears what responsibility
   • Cloud and the data lifecycle; legal and regulatory requirements regarding cloud security
   • Security certifications and attestations in the cloud environment
2. Half day
   • Cryptography and key management in clouds; Cloud Access Security Broker (CASB)
   • Cloud services and business continuity, disaster recovery
   • Risks of cloud services and the secure way into the cloud
   • Cloud security operations, security incident management, security testing and forensics in cloud services

Component of the following courses

• ICT Security Expert with federal diploma («ICTSED»)

The topics relevant to customers and suppliers are explained and discussed on the basis of practical examples and questions from the participants' environment. The course includes group exercises and room for discussion.

This course is designed for Information Security Officers on their way to CISO, Chief Information Security Officers in small and medium sized companies as well as people with CxO functions with an interest or need in information security.

Experience as Security Officer or Information Security Officer and practical experience in IT security