homepage
Open menu
CS_Images_for_new_webpage3.jpg

SANS Cloud Security - Securing Thin Air

The most trusted source of cloud security training, certification, and research
Courses & Certifications Resources & Tools
News & UpdatesCoursesCertificationsInstructorsReviewsFree ResourcesAbout

Latest Cloud Security News & Updates

210810_Yawn_Webcast_400x460_Images.png
Webcast
Making Compliance Suck Less
In part 2 of our 3-part series on automating compliance, AJ Yawn will discuss how compliance professionals can leverage OSQuery to collect technically accurate evidence for security audits in an efficient and streamlined manner.
Register Here
image001.png image001.png
NEW! SANS.edu Graduate Certificate in Cloud Security
Designed for working InfoSec and IT professionals. Highly technical. 12-credit-hour program. Includes 4 industry-recognized GIAC certifications. Free info session.

Featured Cloud Security Courses & Certifications

new
Cloud Security
SEC540: Cloud Security and DevSecOps Automation
SEC540 provides security professionals with a methodology to secure modern Cloud and DevOps environments. Students learn how to implement more than 20 DevSecOps security controls to build, test, deploy, and monitor cloud infrastructure and services. Immersive hand-on labs ensure that students not...
Certification:

  • GCSA

Course Details
new
Cloud Security, Security Management, Legal, and Audit
SEC557: Continuous Automation for Enterprise and Cloud Compliance
SEC557 teaches professionals tasked with ensuring security and compliance how to stop being a roadblock and work at the speed of the modern enterprise. You'll learn how to measure and visualize security data using the same tools that developers and engineers are using, as well as how to extract,...
Course Details
new
Cloud Security
SEC510: Public Cloud Security: AWS, Azure, and GCP
SEC510: Public Cloud Security: AWS, Azure, and GCP is an in-depth analysis of the security of managed services for the Big 3 cloud providers: Amazon Web Services, Azure, and Google Cloud Platform. Students will leave the course confident that they have the knowledge they need when adopting services...
Certification:

  • GPCS

Course Details
new
Cloud Security
SEC541: Cloud Security Monitoring and Threat Detection
SEC541 is a cloud security course that examines how attackers are attacking the Amazon Web Services (AWS) and Microsoft Azure environments, the characteristics of those attackers, and how to detect them and investigate suspicious activity in your cloud infrastructure. Every course section, the...
Course Details
    See All Cloud Security Courses & Certifications
    2340x500_CS_GIAC_Cert_Callout.jpg

    NEW GIAC Cloud Security Certifications

    Recently released GIAC Cloud Security Essentials (GCLD) affiliated with SEC488 and GIAC Public Cloud Security (GPCS) affiliated with SEC510.
    Learn More
    Landing_Page_Cert.jpg

    Cloud Security Certifications

    Securing the cloud is now essential across our global infrastructure. GIAC's cloud security certifications are designed to help you master the practical steps necessary for defending systems and applications in the cloud against the most dangerous threats. From web application security and DevOps automation to cloud-specific penetration testing - across public cloud, multi-cloud, and hybrid-cloud scenarios - we've got the credentials both professionals and organizations need to ensure cloud security at any enterprise.

    Learn More

    To be a Cloud Ace, You Must Learn From One

    The exceptionally qualified people who author and teach SANS courses, and contribute to the GIAC Certification exams aligned with those courses, are the leaders in the field. Meet some of our instructors.
    Frank Kim is a SANS Fellow in the Cyberseurity Leadership and Cloud Security curricula.

    Frank Kim

    Fellow
    Frank Kim is the Founder of ThinkSec, a security consulting and CISO advisory firm. He leads the Cybersecurity Leadership and Cloud Security curricula at SANS, as well as authors and instructs multiple SANS courses.
    Learn Why
    View All Instructors Become an Instructor
    CS_Images_for_new_webpage17.jpg
    Job Role Flight Plan
    SANS Cloud Security Curriculum has myriad courses that map to various job roles. Whether you're just starting on your flight into cloud or have been in the clouds for decades, this flight plan will help you find your runway and heading to progress your cloud security career.
    Download PDF
    CS_Images_for_new_webpage7.jpg
    Challenge Coins
    The ultimate recognition to elite cybersecurity professionals. Hundreds of SANS Institute students have stepped up to the challenge and conquered. They've mastered the concepts and skills, beat out their classmates, and proven their prowess. These are the elite, the recipients of the SANS Challenge Coins, an award given to a select portion of the thousands of students that have taken SANS courses.
    Read Blog

    Become a SANS Cloud Ace

    Focus on where the cloud is going, not where it is today. Your organization is going to need someone with hands-on technical experience and cloud security-specific knowledge. You will be prepared not only for your current role, but also for a cutting-edge future in cloud security. 

    Learn More

    Reviews

    I likely will be assessing environments that use multiple CSPs and services for one system, so this training is better for me than being certified in only AWS or only Azure.
    Margaret Ray
    - Federal Reserve Board of Dallas
    Labs were detailed and thought-provoking. Gave great thought to existing implementation and real-world examples.
    Collin Huber
    - Allstate Insurance
    I learned so much in 5 days – wish I had this a year ago when we first started getting into the Cloud!
    Thomas Buergi
    - Pacific Life Insurance Co.

      More Free Cloud Resources

      About Cloud Security

      SANS Cloud Security focuses the deep resources of SANS on the growing threats to The Cloud by providing training, GIAC certification, research, and community initiatives to help security professionals build, deploy and manage secure cloud infrastructure, platforms, and applications.

      Our curriculum provides intensive, immersion training designed to help you and your staff master the practical steps necessary for defending systems and applications in the cloud against the most dangerous threats. The courses are full of important and immediately useful techniques that you can put to work as soon as you return to your office. The curriculum has been developed through a consensus process involving industry leading engineers, architects, administrators, developers, security managers, and information security professionals, and address public cloud, multicloud, and hybrid-cloud scenarios for the enterprise and developing organizations alike.

      GIAC's cloud security certifications are designed to help you master the practical steps necessary for defending systems and applications in the cloud against the most dangerous threats. From web application security and DevOps automation to cloud-specific penetration testing - across public cloud, multi-cloud, and hybrid-cloud scenarios - we've got the credentials both professionals and organizations need to ensure cloud security at any enterprise.