I am certified as a Certified Cloud Security Professional (CCSP) after clearing the exam by ISC2 on 3rd Dec. In this episode, I shared my final sprint, till a day before the exam by sharing books I referred to during this period. For resources, refer to the show notes at https://technokofe.com/2024/12/05/get-certified-together-episode-51/ Support t…

In this episode, I discussed Understanding the Implications of the Cloud to Enterprise Risk Management, and Understand Outsourcing and Cloud Contract Design. This brings the end of the season for CompTia and CCSP. We will come again in Season 2 of this series, with amazing content. Support this podcast at — https://redcircle.com/get-certified-toget…

In this episode, I discussed the recent gap in our podcast and what lies ahead for us after finishing CCSP. In the next episode, I will cover Understanding the Implications of the Cloud to Enterprise Risk Management, and Understand Outsourcing and Cloud Contract Design. Twitter (X) - @dev_lops Support this podcast at — https://redcircle.com/get-cer…

In this episode, I discussed the sub-topics of Domain 6, Understanding Privacy Issues & Audit Processes. I discussed Audit Planning, ISMS, Policies, Distributed IT, Identification and Involvement of Relevant Stakeholders, etc. In the next episode, I will cover Understanding the Implications of the Cloud to Enterprise Risk Management, and Understand…

In this episode, I discussed the sub-topics of Domain 6, Understanding Privacy Issues & Audit Processes. I discussed the contractual and Regulated Private Data, Standard Privacy Requirements, Internal and External Audit Controls, Gap Analysis, etc. Next week, I will cover Internal Information Security Management Systems, Policies (e.g., organizatio…

In this episode, I discussed the first topic of Domain 6, Legal, Risk and Compliance I discussed about the Legal Risks with Cloud, Framework & Guidelines, E-Discovery Next week, I will cover Understanding of Privacy Issues. Twitter (X) - @dev_lops ISC2 Thames Valley Chapter Event - https://www.eventbrite.co.uk/e/leveraging-docker-for-security-ticke…

In this episode, I discussed various topics of Cloud Security operations. I discussed about the Digital Forensics, and Communication strategies respective to different stakeholders. Next week, I will start the last domain of CCSP, Legal, Risk & Compliance. Twitter (X) - @dev_lops Disclaimer - Because of slightly more background noise in the main ep…

In this episode, I discussed various topics of Cloud Security operations. I discussed about Configuration Management, ISM, Release Management, Business Continuity, and Service Level Agreements. Next week, I will cover the next topic of Domain 5, Digital Forensics, SIEM, IDS, IPS, etc. Support this podcast at — https://redcircle.com/get-certified-to…

In this episode, I discussed various topics of Cloud Security operations. I discussed about IDS, IPS, Patch management, and Backup and restore, Management & Orchestration. Next week, I will cover the next topic of Domain 5, Change Management, Compliances, etc. GCT Slack Channel - https://join.slack.com/t/getcertifiedtogether/shared_invite/zt-29zd73…

In this episode, I discussed various topics of Cloud Security operations. I discussed about DHCP, Stand-Alone and Clustered Hosts, Dynamic Resource Sharing, Security Hardening, and Optimisation. Next week, I will cover the next topic of Domain 5, Cloud Security operations, IDS, IPS, Backup, Restore Strategies, etc. Support this podcast at — https:/…

In this episode, I discussed various topics of Cloud Security operations. I discussed about Virtualisation Management tools, Network segmentation, Remote and local access via console, TLS, IPSEC, etc. Next week, I will cover the next topic of Domain 5, Cloud Security operations, Configuration Management, Security Hardening, Patching, etc. Support t…

In this episode, I discussed about my experience with the Certified in Cyber Security Exam and some more topics of Cloud Security Operations. I discussed Network and Storage Controllers, TPM, OOB Networks, and TPM. Next week, I will cover the next topic of Domain 5, Cloud Security operations, Virtualisation Management Tools, Configuration managemen…

In this episode, I covered sub-topics from Domain 4 and started Domain 5 of the CCSP exam. I discussed IAM, Federated Identity, SSO, and HVAC, different tiers of Data centers. Next week, I will cover the next topic of Domain 5, Cloud Security operations. Support this podcast at — https://redcircle.com/get-certified-together-comptia-security-sy-601/…

In this episode, I covered sub-topics from Domain 4 of the CCSP exam. I discussed Sandboxing, Supplement services for Cloud App Security, and Open source. Next week, I will end Domain 4 with IAM, and begin Domain 5, Cloud Security operations. Support this podcast at — https://redcircle.com/get-certified-together-comptia-security-sy-601/donations Ad…

In this episode, I covered sub-topics from Domain 4 of the CCSP exam. I discussed the Secure Software Development Lifecycle, Cloud Specific Risks, Quality Assurance, and Threat Modeling. Next week, I will continue with Domain 4, covering topics for Specifics of Cloud App Framework, OpenSource SW, and Secure Supply Chain. YouTube - https://www.youtu…

In this episode, I covered sub-topics from Domain 4 of the CCSP exam. I discussed the building blocks of Cloud Application deployment, Software Delivery Life Cycle, and Cloud Application pitfalls, with OWASP's Top 10 web app vulnerabilities. Next week, I will continue with Domain 4, covering topics for Cloud Specific risks with application, Strateg…

In this episode, I covered sub-topics from Domain 3 of the CCSP exam. I discussed the Strategies for Cloud Infra Security, Risk Audit Mechanism, BC DR, and KCNA Certification result. Next week, I will start Domain 4, Cloud Application Security. Support this podcast at — https://redcircle.com/get-certified-together-comptia-security-sy-601/donations …

In this episode, I covered sub-topics from Domain 3 of the CCSP exam. I discussed the Strategies for Cloud Infra Security and ISC2 membership. Next week, I will continue the Strategies for Cloud Security Control. My Meetup group - https://www.meetup.com/just-another-group-of-tech/ ISC2 - https://www.isc2.org/ (Sign if for a new account and Register…

In this episode, I covered sub-topics from Domain 3 of the CCSP exam. I discussed the Risk Analysis of Cloud Infrastructure. Next week, I will cover the Design and Plan for Cloud Security Control. Support this podcast at — https://redcircle.com/get-certified-together-comptia-security-sy-601/donations Advertising Inquiries: https://redcircle.com/bra…

In this episode, I covered sub-topics from Domain 3 of the CCSP exam. I discussed Different Cloud Infrastructure Components. Next week, I will cover the Risk Analysis of Cloud Infrastructure. Support this podcast at — https://redcircle.com/get-certified-together-comptia-security-sy-601/donations Advertising Inquiries: https://redcircle.com/brands P…

In this episode, I covered sub-topics from Domain 2 of the CCSP exam. I discussed the Event Management system for Secure Data Lifecycle. Next week, I will cover the first topic of Domain 3, Cloud Infra Security. Support this podcast at — https://redcircle.com/get-certified-together-comptia-security-sy-601/donations Advertising Inquiries: https://re…

In this episode, I covered sub-topics from Domain 2 of the CCSP exam. I discussed Data Classification and Data Deletion In the next week, I will cover the last topic of Domain 2, Data Events and Auditability. Support this podcast at — https://redcircle.com/get-certified-together-comptia-security-sy-601/donations Advertising Inquiries: https://redci…

In this episode, I covered sub-topics from Domain 2 of the CCSP exam. I discussed Data Masking, Tokenization, and Data Discovery. In the next week, I will cover the next topic of Secure Data Lifecycle: Data Classification. Support this podcast at — https://redcircle.com/get-certified-together-comptia-security-sy-601/donations Advertising Inquiries:…

In this episode, I covered sub-topics from Domain 2 of the CCSP exam. I discussed Data Loss Prevention (DLP) and Encryption in the Cloud. In the next week, I will cover various other Security strategies for data storage like Data Tokenization, Masking, etc. Support this podcast at — https://redcircle.com/get-certified-together-comptia-security-sy-6…

In this episode, I covered sub-topics from Domain 2 of the CCSP exam. I discussed Data Storage Types and Threats to the Storage. In the next week, I will cover various Security strategies for the data storage like DLP (Data Loss Prevention) Visit technokofe.com to read about them and prepare for next week's episode. Support this podcast at — https:…

In this episode, I covered sub-topics from Domain 2 of the CCSP exam. I discussed Cloud Secure Data Life Cycle. In the next week, I will cover various storage techniques and security threats to them. Visit technokofe.com to read about them and prepare for next week's episode. Reach me on Twitter - @sociotech_dev Reach me on Mastodon - @dmagnate@hac…

In this episode, I covered sub-topics from Domain 1 of the CCSP exam. I discussed various Compliances and Certifications for CSPs. With it we finished Domain 1, next week we will have a crisp revision and proceed to Domain 2, Cloud Data Security. Visit technokofe.com to read about them and prepare for next week's episode. Reach me on Twitter - @soc…

In this episode, I covered sub-topics from Domain 1 of the CCSP exam. I discussed Security considerations for PaaS and SaaS Also, we talked about Platform Engineering. In the next episode, I will discuss topics like Compliance Standards & Certifications. Visit technokofe.com to read about them and prepare for next week's episode. Reach me on Twitte…

In this episode, I covered sub-topics from Domain 1 of the CCSP exam. I discussed Business Continuity Planning, Disaster Recovery & IaaS Security. Also, we talked about Platform Engineering. In the next episode, I will discuss topics like PaaS Security, SaaS Security, and Compliance Standards & Certifications. Visit technokofe.com to read about the…

In this episode, I covered sub-topics from Domain 1 of the CCSP exam. I discussed Common Threats to the Cloud and Secure Data Lifecycle. In the next episode, I will discuss topics like Business Continuity Planning, Disaster Recovery, and Cost-benefit analysis. Visit technokofe.com to read about them and prepare for next week's episode. Reach me on …

In this episode, I covered sub-topics from Domain 1 of the CCSP exam. I discussed Cryptography & Key Management Systems, Data & Media Sanitization, and Virtualization Security. In the next episode, I will discuss topics like Common Threats to Cloud, Secure Data lifecycle, etc. Visit technokofe.com to read about them and prepare for next week's epis…

In this episode, I gave a quick sneak peek of the Get Certified Together series journey. What we achieved last year and what is ahead of us. In the next episode, I will discuss common threats to the Cloud, KMS, Data sanitization, etc. Visit technokofe.com to read about them and prepare for next week's episode. Support this podcast at — https://redc…

In this episode, I covered sub-topics from Domain 1 of the CCSP exam. I discussed Cloud Reference Architecture, Key Considerations for Cloud-based deployments, and Security concepts relevant to cloud computing, viz. Network Security and Identity & Access management. In the next episode, I will discuss topics like Common threats to the Cloud, Cloud …

In this episode, I covered sub-topics from Domain 1 of the CCSP exam. I discussed Cloud Computing characteristics, Cloud Service Models, Cloud Deployment Models, and Various roles in Cloud Services. In the next episode, I will discuss remaining topics like Cloud Reference Architecture, Cloud Data Security, etc. Visit technokofe.com to read about th…

In this episode, I talked to Mr. Zhou Zhi Hao to get insights on the journey to become a CCSP professional, the role of Information Security in our life, and the Idea behind ISC2. He is one of the top Info Sec professionals in Singapore, with immense experience in IT. He is also serving as Secretary and Chief Technology Officer for the ISC2 Singapo…

In this episode, I covered all domains in detail from the syllabus of the CCSP Exam including subtopics. I discussed the format of the Exam, passing criteria, and how to keep your credentials updated once you get certified. From the next episode, we start domain 1 of the exam with the first 3 subtopics. Visit technokofe.com to read about the first …

In this episode, I will be discussing, where we are headed in the current Get Certified Together series, with an announcement for the CCSP program. Also, in collaboration with my friend with the Open-Source community, Techbeast, based out in Singapore, we are launching a new Podcast series, Life in Tech (Cloud.Data.Code.). The first episode is drop…

In this episode, I will be sharing my experience with the exams and What is next in this series. All this finally recorded in my own voice. Hope you enjoyed it. Support this podcast at — https://redcircle.com/get-certified-together-comptia-security-sy-601/donations Advertising Inquiries: https://redcircle.com/brands Privacy & Opt-Out: https://redci…

In this episode, I will be covering topics from Domain 5 of CompTIA Security+ Sy 601. Topics covered in the episode are, Security Frameworks Supply Chain Security ISO27001 and ISO27002 SOC Reports NIST Support this podcast at — https://redcircle.com/get-certified-together-comptia-security-sy-601/donations Advertising Inquiries: https://redcircle.co…

In this episode, I will be covering topics from Domain 5 of CompTIA Security+ Sy 601. Topics covered in the episode are, Security Controls Risk Management Risk Assessment Support this podcast at — https://redcircle.com/get-certified-together-comptia-security-sy-601/donations Advertising Inquiries: https://redcircle.com/brands Privacy & Opt-Out: htt…

In this episode, I will be covering topics from Domain 4 of CompTIA Security+ Sy 601. Topics covered in the episode are, Investigation Types Type of SOC Reports Digital Forensics MITRE Framework Cyber Kill Chain Support this podcast at — https://redcircle.com/get-certified-together-comptia-security-sy-601/donations Advertising Inquiries: https://re…

In this episode, I will be covering topics from Domain 4 of CompTIA Security+ Sy 601. Topics covered in the episode are, Incident Response Planning Containment Mitigation Eradication and Recovery Incident Closure Support this podcast at — https://redcircle.com/get-certified-together-comptia-security-sy-601/donations Advertising Inquiries: https://r…

In this episode, I will be covering topics from Domain 3 of CompTIA Security+ Sy 601. Topics covered in the episode are, Firewalls Reverse and Forward Proxies Load balancers and VPN DDoS and Flooding Attacks Wireless Security Command line Tools like netstat and ping Support this podcast at — https://redcircle.com/get-certified-together-comptia-secu…

In this episode, I will be covering topics from Domain 3 of CompTIA Security+ Sy 601. Topics covered in the episode are, Network Security Switches and Routers ACL Ports and Protocols Support this podcast at — https://redcircle.com/get-certified-together-comptia-security-sy-601/donations Advertising Inquiries: https://redcircle.com/brands Privacy & …

In this episode, I will be covering topics from Domain 3 of CompTIA Security+ Sy 601. Topics covered in the episode are, Operating System Security Patching Hardware Security Asset Management Trusted Platform Modules Support this podcast at — https://redcircle.com/get-certified-together-comptia-security-sy-601/donations Advertising Inquiries: https:…

In this episode, I will be covering topics from Domain 3 of CompTIA Security+ Sy 601. Topics covered in the episode are, Identity and Access Management Authentication, Authorization, and Accounting Role-Based Access Controls Multi-Factor Authentication Radius, LDAP, SAML, and OpenID Support this podcast at — https://redcircle.com/get-certified-toge…

In this episode, I will be covering topics from Domain 2 of CompTIA Security+ Sy 601. Topics covered in the episode are, Cloud Security Virtualization and Hypervisors Shared Responsibility Model Support this podcast at — https://redcircle.com/get-certified-together-comptia-security-sy-601/donations Advertising Inquiries: https://redcircle.com/brand…

In this episode, I will be covering topics from Domain 2 of CompTIA Security+ Sy 601. Topics covered in the episode are, Cryptography Symmetric, Asymmetric Encryption PKI Digital Certificates Digital Signatures Hashing Algorithms TLS Handshakes Support this podcast at — https://redcircle.com/get-certified-together-comptia-security-sy-601/donations …

In this episode, I will be covering topics from Domain 2 of CompTIA Security+ Sy 601. Topics covered in the episode are, Physical Security Data Sanitization Secure Code Design, and DevSecOps Application Attacks like SQL Injection, Buffer Overflow, Cross-Site Scripting, etc. Input Validation and Code Reviews. Support this podcast at — https://redcir…

In this episode, I will be covering Domain 1 of CompTIA Security+ Sy 601. Topics covered in the episode are, Threats, Attack Vectors, Social Engineering Attacks like Phishing, Pharming, etc. Password Attacks, CVE, CVSS, Zero-Day Vulnerabilities, Pen Testing Support this podcast at — https://redcircle.com/get-certified-together-comptia-security-sy-6…