When will I have access to the lectures and assignments?

To access the course materials, assignments and to earn a Certificate, you will need to purchase the Certificate experience when you enroll in a course. You can try a Free Trial instead, or apply for Financial Aid. The course may offer 'Full Course, No Certificate' instead. This option lets you see all course materials, submit required assessments, and get a final grade. This also means that you will not be able to purchase a Certificate experience.

What will I get if I subscribe to this Certificate?

When you enroll in the course, you get access to all of the courses in the Certificate, and you earn a certificate when you complete the work. Your electronic Certificate will be added to your Accomplishments page - from there, you can print your Certificate or add it to your LinkedIn profile.

Cloud Security Risks: Identify and Protect Against Threats

Ends tomorrow! Save on skills that make you shine with 40% off 3 months of Coursera Plus. Save now

Cloud Security Risks: Identify and Protect Against Threats

This course is part of Google Cloud Cybersecurity Professional Certificate

Instructor: Google Cloud Training

5,944 already enrolled

Included with

Learn more

4 modules

Gain insight into a topic and learn the fundamentals.

47 reviews

Beginner level

No prior experience required

Flexible schedule

3 weeks at 10 hours a week

Learn at your own pace

90%

Most learners liked this course

4 modules

Gain insight into a topic and learn the fundamentals.

47 reviews

Beginner level

No prior experience required

Flexible schedule

3 weeks at 10 hours a week

Learn at your own pace

90%

Most learners liked this course

What you'll learn

Describe fundamental identity and access management concepts specific to the cloud.
Identify key components of AAA (Authentication, Authorization, Auditing) for strengthened cloud security.
Explain capabilities and best practices for efficient asset and resource management in the cloud.
Explore common security vulnerabilities and evaluate their impact and risk mitigation strategies.

Skills you'll gain

Details to know

Shareable certificate

Add to your LinkedIn profile

Assessments

22 assignments

Taught in English

91%

of learners achieved a positive career outcome

See how employees at top companies are mastering in-demand skills

Learn more about Coursera for Business

logos of Petrobras, TATA, Danone, Capgemini, P&G and L'Oreal

Build your Software Development expertise

This course is part of the Google Cloud Cybersecurity Professional Certificate

When you enroll in this course, you'll also be enrolled in this Professional Certificate.

Learn new concepts from industry experts
Gain a foundational understanding of a subject or tool
Develop job-relevant skills with hands-on projects
Earn a shareable career certificate from Google Cloud

There are 4 modules in this course

Two courses down, three to go – you’re well on your way! This is the third course of the Google Cloud Cybersecurity Certificate. You’ll delve into the key aspects of identity management and access control in cloud computing, including security principles like least-privilege and separation-of-duties, and the crucial elements of AAA: authentication, authorization, and auditing. AAAnd…let’s go to it! ← See what we did there?!

Module details

In this module, you’ll deep dive into the crucial aspects of identity management and access control in cloud computing, covering security principles like least-privilege and separation-of-duties, and the crucial elements of AAA: authentication, authorization, and auditing. You'll explore various access control methods, credential management, and certificate handling, key to securing cloud applications.

What's included

11 videos10 readings5 assignments2 app items1 plugin

11 videosTotal 45 minutes

Introduction to Course 35 minutes
Manny: A day in the life of a red team security engineer2 minutes
Welcome to module 11 minute
Core principles of identity management4 minutes
Authentication, authorization and auditing (AAA)5 minutes
Credential handling and service accounts5 minutes
Access controls in the cloud5 minutes
Perimeter protection6 minutes
Common attack vectors3 minutes
Zero trust7 minutes
Wrap-up2 minutes

10 readingsTotal 130 minutes

Course 3 overview10 minutes
Helpful resources and tips10 minutes
Lab technical tips10 minutes
Explore your course 3 scenario: Cymbal Bank10 minutes
Uses for identity management measures10 minutes
Cloud access control in action20 minutes
Trust boundaries20 minutes
Guide to firewall rules20 minutes
Zero trust policies and complementary controls10 minutes
Glossary terms from module 110 minutes

5 assignmentsTotal 84 minutes

Module 1 challenge50 minutes
Test your knowledge: Access management10 minutes
Test your knowledge: Types of access controls8 minutes
Test your knowledge: Perimeter protection8 minutes
Test your knowledge: Zero trust8 minutes

2 app itemsTotal 180 minutes

Create a role in Google Cloud IAM90 minutes
Access a firewall and create a rule90 minutes

1 pluginTotal 15 minutes

Accessing and completing labs15 minutes

Get ready for another action-packed adventure! In this module, you'll transform into a threat-hunting detective. Uncover hidden vulnerabilities, pinpoint risks with precision, and deploy cunning mitigation strategies. You'll unlock the secrets of asset management, discovering tools and techniques for safeguarding your resources like a seasoned pro. And get ready to crack the code on secure configuration, building an impenetrable fortress within the cloud.

What's included

13 videos8 readings6 assignments1 app item

13 videosTotal 61 minutes

Welcome to module 22 minutes
Introduction to threat management5 minutes
Eyre: Secure cloud assets2 minutes
Asset and resource management6 minutes
Steps for asset management7 minutes
Vulnerability remediation and posture management4 minutes
Vulnerability remediation and posture management in software development5 minutes
IT automation tools for posture management6 minutes
Patching and rehydration6 minutes
Compare and contrast: Patching and rehydration5 minutes
Trends in vulnerability and threat management7 minutes
Reports and assessments for threat and vulnerability management5 minutes
Wrap-up2 minutes

8 readingsTotal 150 minutes

Threat and vulnerability management assessments20 minutes
On-the-job asset management applications20 minutes
Posture management tools and techniques20 minutes
IT automation tools for security configuration management20 minutes
Guide to web application security scanning20 minutes
Rehydration keeps systems up-to-date20 minutes
Trends in security: Artificial Intelligence (AI), machine learning (ML), and Internet of things (IoT)20 minutes
Glossary terms from module 210 minutes

6 assignmentsTotal 96 minutes

Module 2 challenge50 minutes
Test your knowledge: Importance of threat and vulnerability management8 minutes
Test your knowledge: Asset management8 minutes
Test your knowledge: Vulnerability remediation and posture management10 minutes
Test your knowledge: Patching and rehydration for system maintenance10 minutes
Test your knowledge: Trends in threat management10 minutes

1 app itemTotal 90 minutes

Identify vulnerabilities and remediation techniques90 minutes

Ready to do some exploring? In this module, you'll discover cloud-native principles of ephemerality and immutability, focusing on proper credential handling that aligns with these concepts. You'll discover the automation of infrastructure provisioning and its impact on security, including key areas like containers, orchestration, and Infrastructure-as-Code (IaC).

What's included

14 videos13 readings6 assignments1 app item

14 videosTotal 47 minutes

Welcome to module 31 minute
Cloud-native design and architecture principles4 minutes
Cloud-native architecture for security3 minutes
Introduction to ephemerality and immutability4 minutes
Automation in cloud security3 minutes
Infrastructure as code, policy as code, and DevSecOps4 minutes
Benefits of policy as code3 minutes
Terraform for IaC management4 minutes
Containers vs. virtual machines3 minutes
Container benefits and considerations4 minutes
Techniques to secure containers4 minutes
Container drift4 minutes
Container orchestration4 minutes
Wrap-up1 minute

13 readingsTotal 245 minutes

TTL policies and expiration5 minutes
Automation to improve cloud security efficiency20 minutes
AI and automation in security20 minutes
Infrastructure as code and cloud-native security20 minutes
Terraform and cloud security20 minutes
Guide to automating deployment with Terraform20 minutes
A brief guide to containers20 minutes
Containers’ importance in the cloud20 minutes
Security in containers20 minutes
Serverless functions and security20 minutes
Activity: Analyze the security of a container30 minutes
Activity Exemplar: Analyze the security of a container20 minutes
Glossary terms from module 310 minutes

6 assignmentsTotal 92 minutes

Module 3 challenge50 minutes
Test your knowledge: Ephemerality and immutability8 minutes
Test your knowledge: Automation in cloud infrastructure8 minutes
Test your knowledge: Containers explained8 minutes
Activity Quiz: Analyze the security of a container8 minutes
Test your knowledge: Orchestrators and security of containers10 minutes

1 app itemTotal 90 minutes

Change firewall rules using Terraform and Cloud Shell90 minutes

In this module, you'll gain a comprehensive understanding of data protection and privacy in the cloud. We’ll guide you through the essentials of data loss prevention, data discovery, data processing, data treatment, and data classification, empowering you to understand and implement effective data governance and access strategies. You'll also explore the nuances of data retention levels and how compliance controls are applied, so you can explain and navigate governance in cloud security.