- Course overview
- Course details
- Prerequisites
Course overview
About this course
This self-paced training course gives participants broad study of security controls and techniques on Google Cloud. Through recorded lectures, demonstrations, and hands-on labs, participants explore and deploy the components of a secure Google Cloud solution, including Cloud Identity, Resource Manager, Cloud IAM, Virtual Private Cloud firewalls, Cloud Load Balancing, Cloud Peering, Cloud Interconnect, and VPC Service Controls.
This is the first course of the Security in Google Cloud series. After completing this course, enroll in the Security Best Practices in Google Cloud course.
Audience
[Cloud] information security analysts, architects, and engineers. Information security/cybersecurity specialists. Cloud infrastructure architects. Also intended for Google and partner field personnel who work with customers in those job roles. Also useful for cloud application developers.
At course completion
You will be able to:
- Identify the foundations of Google Cloud security.
- Manage administration identities with Google Cloud.
- Implement user administration with Identity and Access Management (IAM).
- Configure Virtual Private Clouds (VPCs) for isolation, security, and logging.
Course details
Module 1: Welcome to Managing Security in Google Cloud
- Welcome to Security in Google Cloud
- Document: Welcome and Getting Started Guide
Module 2: Foundations of Google Cloud Security
- Module Overview
- Google Cloud's approach to security
- VPC network security and monitoring
- The shared security responsibility model
- Threats mitigated by Google and Google Cloud
- Access transparency
- Module review
- Quiz
Module 3: Securing Access to Google Cloud
- Module Overview
- Cloud Identity
- Google Cloud Directory Sync
- Managed Microsoft AD
- Google authentication versus SAML-based SSO
- Identity Platform
- Authentication best practices
- Demo Intro: Defining Users with Cloud Identity Console
- Lab Demo: Defining Users with Cloud Identity Console
- Module review
- Quiz
Module 4: Identity and Access Management (IAM)
- Module Overview
- Resource Manager
- IAM roles
- Service Accounts
- Workload Identity Federation
- IAM & Organization policies
- Policy Intelligence
- IAM Best practices
- Lab Intro: Configuring IAM
- Lab: Configuring IAM
- Module review
- Quiz
Module 5: Configuring Virtual Private Cloud for Isolation and Security
- Module Overview
- VPC firewall rules
- VPC firewall defaults
- VPC firewall best practices
- Lab Intro: Configuring VPC Firewalls
- Lab: Configuring VPC Firewalls
- Load balancing and SSL policies
- VPC peering
- Connecting to Google Cloud
- Cloud Interconnect
- VPC Service Controls
- Demo - VPC Service Controls
- Private Google API access
- Access Context Manager
- VPC Flow Logs
- Lab Intro: Configuring and Using VPC Flow Logs in Cloud Logging
- Lab: Configuring and Using VPC Flow Logs in Cloud Logging
- Cloud IDS
- Lab Intro: Getting Started with Cloud IDS
- Lab: Getting Started with Cloud IDS
- Module review
- Quiz
Module 6: Course Resources
- Document: Managing Security in Google Cloud - Course Resources
Prerequisites
Prior completion of Google Cloud Fundamentals: Core Infrastructure or equivalent experience.
Prior completion of Networking in Google Cloud or equivalent experience.
Knowledge of foundational concepts in information security: Fundamental concepts: vulnerability, threat, attack surface confidentiality, integrity, availability, Common threat types and their mitigation strategies, Public-key cryptography, Public and private key pairs, Certificates Cipher types, Key width Certificate authorities, Transport Layer Security/Secure Sockets, Layer encrypted communication Public key infrastructures Security policy.
Basic proficiency with command-line tools and Linux operating system environments. Systems Operations experience, including deploying and managing applications, either on-premises or in a public cloud environment. Reading comprehension of code in Python or JavaScript.
Enquiry
Course : Managing Security in Google Cloud
Enquiry
request for : Managing Security in Google Cloud
