homepage
Open menu
CS_Images_for_new_webpage3.jpg

SANS Cloud Security - Securing Thin Air

The most trusted source of cloud security training, certification, and research
Courses & Certifications Resources & Tools
News & UpdatesCoursesInstructorsReviewsFree ResourcesAbout

Latest Cloud Security News & Updates

Cloud Security + CyberTalent
Assessment
SANS CyberTalent Cloud Security Assessment
Measuring aptitude and skills of cybersecurity professionals, this assessment allows employers to create professional development and retention programs, as well as to rank the skill sets of candidates to fill open positions.
Learn More
CS_Images_for_new_webpage16.jpg CS_Images_for_new_webpage16.jpg
Whitepaper
Firebase: Google Cloud's Evil Twin
Firebase is the most popular developer tool that security has never heard of. Brandon Evans bring its numerous flaws to light in this brand new whitepaper.
Download Now

Featured Cloud Security Courses & Certifications

new
Cloud Security
SEC488: Cloud Security Essentials
Welcome to SANS SEC488: Cloud Security Essentials. This course covers Amazon Web Services, Azure, Google Cloud, and other cloud service providers (CSPs). Like foreign languages, cloud environments have similarities and differences. Upon completion of this course, you will be able to advise and...
Course Details
beta
Cloud Security
SEC510: Public Cloud Security: AWS, Azure, and GCP
SEC510: Public Cloud Security: AWS, Azure, and GCP is an in-depth analysis of the security of managed services for the Big 3 cloud providers: Amazon Web Services, Azure, and Google Cloud Platform. Students will leave the course confident that they have the knowledge they need when adopting services...
Course Details
Cloud Security
SEC540: Cloud Security and DevOps Automation
SEC540 provides security professionals with a methodology for securing modern Cloud and DevOps environments. Students learn how to implement over 20 DevSecOps Security Controls for building, testing, deploying, and monitoring cloud infrastructure and services. Immersive hand-on labs ensure students...
Certification:

  • GCSA

Course Details
beta
Cloud Security
SEC541: Cloud Security Monitoring and Threat Hunting
SEC541 will take you on a deep dive into Amazon Web Services (AWS) in order to search out and identify threats in your cloud environment. We will look at the most common threat techniques used against AWS environments, what their characteristics are, and how to detect them. Then we'll explore ways...
Course Details
beta
Cloud Security
SEC584: Cloud Native Security: Defending Containers and Kubernetes
SEC584 will perform a deep dive into defending key infrastructure deployment components, focusing on containerization and orchestration exploits. Students will be thrust directly into detailed issues related to misconfiguration and known attack patterns and will learn how to properly harden and...
Course Details
new
Security Management, Legal, and Audit, Cloud Security
MGT516: Managing Security Vulnerabilities: Enterprise and Cloud
MGT516 helps you think strategically about vulnerability management in order to mature your organization's program, but it also provides tactical guidance to help you overcome common challenges. By understanding and discussing solutions to typical issues that many organizations face across both...
Course Details
    See All Cloud Security Courses & Certifications

    To be a Cloud Ace, You Must Learn From One

    The exceptionally qualified people who author and teach SANS courses, and contribute to the GIAC Certification exams aligned with those courses, are the leaders in the field. Meet some of our instructors.
    Frank Kim is a SANS Senior Instructor in the Security Mangement curriculum

    Frank Kim

    Fellow
    Frank Kim is the Founder of ThinkSec, a security consulting and CISO advisory firm. He leads the Security Management and Cloud Security curricula at SANS, as well as authors and instructs multiple SANS courses.
    Learn More
    View All Instructors Become an Instructor
    CS_Images_for_new_webpage17.jpg
    Job Role Flight Plan
    SANS Cloud Security Curriculum has myriad courses that map to various job roles. Whether you're just starting on your flight into cloud or have been in the clouds for decades, this flight plan will help you find your runway and heading to progress your cloud security career.
    Download PDF
    CS_Images_for_new_webpage7.jpg
    Challenge Coins
    The ultimate recognition to elite cybersecurity professionals. Hundreds of SANS Institute students have stepped up to the challenge and conquered. They've mastered the concepts and skills, beat out their classmates, and proven their prowess. These are the elite, the recipients of the SANS Challenge Coins, an award given to a select portion of the thousands of students that have taken SANS courses.
    Read Blog

    Become a SANS Cloud Ace

    Focus on where the cloud is going, not where it is today. Your organization is going to need someone with hands-on technical experience and cloud security-specific knowledge. You will be prepared not only for your current role, but also for a cutting-edge future in cloud security.

    Learn More

    Reviews

    I likely will be assessing environments that use multiple CSPs and services for one system, so this training is better for me than being certified in only AWS or only Azure.
    Margaret Ray
    - Federal Reserve Board of Dallas
    Labs were detailed and thought-provoking. Gave great thought to existing implementation and real-world examples.
    Collin Huber
    - Allstate Insurance
    I learned so much in 5 days – wish I had this a year ago when we first started getting into the Cloud!
    Thomas Buergi
    - Pacific Life Insurance Co.

      About Cloud Security

      SANS Cloud Security focuses the deep resources of SANS on the growing threats to The Cloud by providing training, certification, research, and community initiatives to help security professionals build, deploy and manage secure cloud infrastructure, platforms, and applications.

      Our curriculum provides intensive, immersion training designed to help you and your staff master the practical steps necessary for defending systems and applications in the cloud against the most dangerous threats. The courses are full of important and immediately useful techniques that you can put to work as soon as you return to your office. The curriculum has been developed through a consensus process involving industry leading engineers, architects, administrators, developers, security managers, and information security professionals, and address public cloud, multicloud, and hybrid-cloud scenarios for the enterprise and developing organizations alike.