We can lie, we can hide, but no organization is immune.
According to the latest 2nd Watch survey, 64% of companies in USA will spend at least 15% more on public cloud infrastructure in 2015.
I was working on several public cloud projects last year and I know one thing. Companies around the world don’t know too much about public cloud security. They learn about AWS, Azure, GCE, Rackspace, but forget about the most important thing… security.
I saw companies that have all machines in one single subnet in AWS, don’t use IAM and security groups. They think cloud is secure… Don’t get me wrong, public cloud is very secure, but new rules and old concepts are mixed together and not too many people understand that.
Public Cloud Security Expert will be needed in many companies around the world. These people should have standard security skills and new public cloud skills.
Today I’ll show you how certifications can help you to become a Cloud Security Expert. Don’t forget that certifications in the cloud industry are extremely important.
Certifications for Public Cloud Security Expert – Foundations
Here’s the list of certifications what will help you with your new goal.
AWS Certified Solutions Architect – Associate Level
Amazon Web Services is the biggest public cloud. AWS has more than 1000000 clients. If you want to find clients it’s good to achieve the AWS Certified Solutions Architect – Associate Level certification. This certification will help you to understand AWS and prove your architectural skills.
Microsoft Certified Solutions Expert (MCSE) Private Cloud
You’ve probably heard about Microsoft’s public cloud – Azure. It’s good to have knowledge about it, but you should also remeber about private clouds. Companies build private clouds based on Microsoft solutions. You need to prove your Microsoft skills and then add some security sauce on that. MCSE Private Cloud is the best way to start.
Red Hat Certified System Administrator in Red Hat OpenStack
There are not too many certifications for OpenStack architects and engineers, but there is one really great. If you want to secure private clouds on OpenStack you should become a Red Hat Certified System Administrator in Red Hat OpenStack to prove your employer that you know how to operate, administrate and secure OpenStack environment.
Certifications for Public Cloud Security Expert – Real Stuff
At this moment you should be one of the best cloud experts in the industry. You have knowledge about Amazon Web Services, Microsoft Private Cloud and OpenStack. Now it’s time to build security skills.
Certified Cloud Security Specialist
To achieve the Certified Cloud Security Specialist certification you need to pass few exams. When you achieve this certifications you should have great knowledge about security threats and other security aspects. You should know how to use this knowledge to secure cloud solutions for your clients or your employer.
Certificate of Cloud Security Knowledge (CCSK)
It is the king of all cloud computing security certifications. During preparation to Certificate of Cloud Seurity Knowledge you will learn about cloud architecture, governance and enterprise risk, legal and electronic discovery, compliance and audit, information lifecycle management, traditional security, BCM, D/R and much more.
Professional Cloud Security Manager
The Professional Cloud Security Manager certification is a well-known standard for security and governance professionals who work with cloud solutions on daily basis. Each team should have a person with this certification.
Certified Information Systems Auditor (CISA)
Certified Information Systems Auditor (CISA) isn’t only for cloud experts, but it’s a great certification for all auditors. Being CISA-certified showcases your audit experience and demonstrates you are capable to assess vulnerabilities for cloud and non-cloud solutions.
Certified Information Security Manager (CISM)
Certified Information Security Manager (CISM) is one of the most required certifications for security management professionals. For cloud security experts like you this certification is a must. It validates your technical and business skills for security operations.
Certified Information Systems Security Professional (CISSP)
Certified Information Systems Security Professional (CISSP) is probably the most valuable security certifications on the world. Even in the cloud you need to understand access control, cryptography, operations security, security architecture and design, business continuity and disaster recovery planning.
Certified Disaster Recovery Engineer (C)DRE)
It doesn’t matter if you use Azure, AWS, GCE or SoftLayer. Disaster Recovery is one of the hottest topics for companies around the world. Do you want to prove your knowledge and acquire new skills? It’s time for Certified Disaster Recovery Engineer (C)DRE).
Certified Ethical Hacker (CEH)
Certified Ethical Hacker (CEH) is a certification you should have to start working with real security problems in the cloud. This certification will prepare you to think as a hacker. Clouds are great targets for hackers. Companies need you to protect their assets.
GIAC Certified Incident Handler (GCIH)
People with this certification know how to protect resources in the cloud. Your company need a person with the GIAC Certified Incident Handler (GCIH) certification to protect your systems from backdoors, trojan horses, buffer overflows, denial of service attacks and much more. IT Pros with GCIH know how to react when real problems occur.
GIAC Penetration Tester (GPEN)
It’s extremely important to test your secure cloud solutions. To acquire great skills about penetration testing and prove your skills you should achieve the GIAC Penetration Tester (GPEN) certification.
Offensive Security Certified Professional (OSCP)
Offensive Security Certified Professional (OSCP) is one of the hardest certifications to achieve. During the preparation process you will learn how to hack any system and how to secure a system to compromise attacks.
Certifications for Public Cloud Security Expert – Icing On The Cake
At this moment you should be one of the best security and cloud experts in the industry. Even if you have 10-20% of these certifications. Now it’s time to add something special. These certifications will help you with many projects.
Splunk Certified Admin
Splunk is one the most popular software for collecting and processing logs from cloud systems. Splunk itself is hosted on Amazon Web Services. There is no better place to acquire and prove your Splunk skills than the Splunk Certified Admin program.
ITIL V3 Foundation
No one likes ITIL, but everyone in large corporations needs to understand it. The same rules from your local Data Center will be used in the cloud. It’s good to prove your ITIL knowledge with the fondation level certification – ITIL V3 Foundation.
Question To You
What’s the next certification on your list?