This content is open to everyone — sign in to save your progress, earn points, and unlock module exams.
Unit 1 of Cloud
Foundational concepts of cloud computing: characteristics, service models (IaaS, PaaS, SaaS), deployment models, security design principles, cloud architecture patterns, and an introduction to virtualisation with VMware.
Learning outcomes
NIST SP 800-145 definition, the five essential characteristics, and the IaaS/PaaS/SaaS service models with security implications.
Public, private, community, and hybrid deployment models; migration strategies; and the shared responsibility matrix.
Regions, availability zones, control and data planes, defence in depth, Zero Trust, Type-1/2 hypervisors, and containers vs VMs.
AWS, Azure, and GCP service equivalents, NIC MeghRaj, and the Indian data sovereignty frameworks shaping cloud deployments.
Function as a Service, Container as a Service, Database as a Service, and Security as a Service — the extended delivery models beyond the NIST triad, with distinct shared responsibility boundaries.
The six migration strategies — Rehost, Replatform, Repurchase, Refactor, Retire, Retain — and how each changes the security posture, responsibility, and compliance risk of a workload.
NIST SP 800-207 Zero Trust Architecture tenets, the five implementation pillars, and how ZTA replaces the perimeter model in cloud-native environments.
VPC design, public vs private subnet tiers, Security Groups vs NACLs, microsegmentation, SDN programming model, and DDoS protection services.
SAML 2.0 assertion flow, OIDC and JWT structure, OAuth 2.0 grant types, MFA methods and phishing resistance, and AWS IAM Identity Center.
AWS Organizations, Service Control Policies, the Well-Architected security pillar, CIS Foundations Benchmark Level 1, FinOps security controls, and Indian regulatory governance requirements.
20 multiple-choice questions on cloud computing foundations.