Cloud Audit and Compliance


Duration: 2 days
CPE Credits: 14
Course Number: SEC-305
Intrinsec Security - Logo (Graphic)

Cloud Audit and Compliance is a two day, 14 CPE training seminar offered to you by Intrinsec Security.

Cloud Audit and Compliance Training Information

Cloud computing and the adoption of cloud-based systems has quickly gained the popularity of countless organizations and companies around the world. Yet with such rapid growth in cloud usage, many enterprises are still struggling to acknowledge how the cloud might influence their entire organization.

Focusing on how to audit, control, monitor and assess these newly implemented IT and business systems is more important than ever as more and more organizations face foreign challenges when assessing vulnerabilities, reporting on compliance issues and establishing internal controls.

Cloud Audit and Compliance is a two-day course reviewing how to effectively and appropriately assess cloud computing services and providers. Not only that, but Cloud Audit and Compliance training helps identify how an enterprise and its people can assess their own readiness to adopt cloud computing, along with the ability to monitor the usage of their cloud services once implemented.

What Comes With This Course

  • 2 Days of Authorized Cloud Audit and Compliance Training
  • Cloud Audit and Compliance On-Demand *LIFE*
    • Cloud Audit and Compliance Student Training Pack
    • +5 hours of video content reviewing key audit and compliance topics and best practices for cloud computing
    • 1-on-1 Instructor Access; personal mentoring and content review assistance
    • Available Online, 24/7 access for convenient studying
    • Access to resources and non-expiring, valid for life

*LIFE* = You gain instant online access to this resource for LIFE after registering for any of our publicly scheduled course dates (click here to view dates).



What You Will Learn

This Cloud Audit and Compliance training program has a total of six domains. All of the domains are collectively developed to enhance your overall competencies with key auditing and compliance related knowledge for cloud computing.

Domain 1: Audit Principles

Audit Principles

Cloud Audit and Compliance kicks off with Domain 1, Audit Principles, which reviews the appropriate auditing process you can implement to assess your cloud-based environment.

Cloud Audit & Compliance Key Topics:
  • Audit Introduction
  • Audit Control Types
  • Audit Phases
  • Audit Procedures
  • Compliance Issues
  • Assessing Providers
Domain 2: Certifications and Compliance

Certifications and Compliance

In this domain, Certifications and Compliance, the overall goal is for students to understand why it is so important for them to seek and obtain compliance in public and private clouds.

Cloud Audit & Compliance Key Topics:
  • Service Model Impact on Compliance
  • Compliance Standards and Frameworks Used by Cloud Service Providers
    • ISO: International Organization for Standardization
    • NIST: National Institute of Standards and Technology
    • PCI: Payment Card Industry
    • SOC: Service Organization Controls
Domain 3: Assessing Cloud Service Providers

Assessing Cloud Service Providers

The Assessing Cloud Service Providers domain looks at cloud service providers and the security they bring to the table. More specifically, it covers the available tools from Cloud Security Alliance and how you can use them to assess cloud service providers.

Cloud Audit & Compliance Key Topics:
  • Cloud Controls Matrix
  • CAIQ
  • STAR Registry
  • Training Exercises Focused on Cloud Controls Matrix and Star Registry.
Domain 4: Auditing Usage of Cloud Computing

Auditing Usage of Cloud Computing

In Domain 4 students will learn how to assess cloud usage within their own firm, and to analyze what needs to be investigated in a corporation that is leveraging cloud computing services of any type.

Cloud Audit & Compliance Key Topics:
  • Pre-Discovery
  • Logical Access Control
  • Security Logging
  • Governance
  • Encryption
  • Incident Response
  • Asset Configuration
  • Network Configuration
  • Disaster Recovery
Domain 5: SaaS Adoption Risks and Assessment

SaaS Adoption Risks and Assessment

SaaS Adoption Risks and Assessment discusses governance and security of Software as a Service (SaaS) consumption within your organization.

Cloud Audit & Compliance Key Topics:
  • Assessing SaaS Solutions
  • SaaS Security Risks and What Management Should Know
  • Establishing Governance with a Cloud Governance Board
  • Discovery of SaaS Applications (both technical and non-technical measures)
Domain 6: ISO 27017 IaaS Technical Controls

ISO 27017 IaaS Technical Controls

The ISO 27017 IaaS Technical Controls domain reviews the ISO 27017 security controls and the internal and/or Cloud Service Provider (CSP) tools that can be leveraged to secure an IaaS environment.

Cloud Audit & Compliance Key Topics:
  • Cloud Governance Board
  • SaaS / IaaS Encryption
  • Database Activity Monitoring
  • DLP Solutions
  • Cloud-Based Web Threat Management

This Training Program Is Brought To You By:



Why Yes, We Do Provide Group Training!

We have multiple options for you to lower costs and get more of your people trained.


Oct 26 - 27, 2017 9:00am - 5:00pm EST Live Online USD $1,595.00
Oct 19 - 20, 2017 9:00am - 5:00pm EST New York, NY. USD $1,595.00

Request Group Training