Google Cloud Platform (GCP) Professional Cloud Security Engineer Certification Companion
Learn and Apply Security Design Concepts to Ace the Exam
Seiten
2024
|
1st ed.
Apress (Verlag)
979-8-8688-0235-5 (ISBN)
Apress (Verlag)
979-8-8688-0235-5 (ISBN)
Written in a simple and developer-focused style, this book gives you the tools and knowledge you need to ace the GCP Professional Cloud Security Engineer certification exam. The approach is two-fold: introducing and implementing all GCP cloud security concepts and controls based on the certification exam objectives, and demonstrating how these concepts can be applied to real-world scenarios.
Your study begins with cloud identities in GCP and different identity types (user accounts, service accounts, groups, and domains) and how separation of duties is implemented with access controls and Identity and Access Management (IAM). Emphasis is placed on the unique GCP approach to managing resources, with its clear distinction between resource ownership and resource billing. Following the defense in depth principle, the book shifts focus to network security and introduces different types of constructs that enable micro-segmentation, as they are implemented in a software-defined network. A chapter devoted to data protection is included. You will learn how to leverage the Data Loss Prevention (DLP) application programming interface (API) to prevent access to your workloads’ sensitive data from unauthorized use. Examples on how to use the DLP API are provided using the Go language, which is becoming widely adopted in the developer community due to its simplicity, and high-performance networking and multi-processing capabilities. Encryption at rest, in use, and in transit is covered with an overview on how GCP implements confidential computing. The book concludes with an examination of the GCP services you need to know to monitor, audit, and ensure compliance with the laws and regulations where your workloads and infrastructure operate.
By the end of the book, you will have acquired the knowledge and confidence to pass the GCP Professional Cloud Security Engineer certification exam and to successfully design, architect, and engineer security solutions with the Google Cloud Platform.
Bonus Material: IAM deny policies
What You Will Learn
Understand the five security principles and how to use them to drive the development of modern security architectures in Google Cloud
Secure identities with Cloud Identity and Identity & Access Management (IAM)
Secure the network with segmentation and private connectivity
Protect sensitive data with the Data Loss Prevention (DLP) API and encryption
Monitor, log, audit, and troubleshoot security incidents with the Google Cloud Operations Suite
Ensure compliance and address regulatory concerns
Who This Book Is For
Software engineers specializing in DevOps, SecOps, and DataOps, who possess expertise in the Software Development Life Cycle (SDLC) methodologies within Agile teams. It also targets software architects with proficiency in various domains such as security, network, solution, data, infrastructure, cloud, and enterprise architecture.
Your study begins with cloud identities in GCP and different identity types (user accounts, service accounts, groups, and domains) and how separation of duties is implemented with access controls and Identity and Access Management (IAM). Emphasis is placed on the unique GCP approach to managing resources, with its clear distinction between resource ownership and resource billing. Following the defense in depth principle, the book shifts focus to network security and introduces different types of constructs that enable micro-segmentation, as they are implemented in a software-defined network. A chapter devoted to data protection is included. You will learn how to leverage the Data Loss Prevention (DLP) application programming interface (API) to prevent access to your workloads’ sensitive data from unauthorized use. Examples on how to use the DLP API are provided using the Go language, which is becoming widely adopted in the developer community due to its simplicity, and high-performance networking and multi-processing capabilities. Encryption at rest, in use, and in transit is covered with an overview on how GCP implements confidential computing. The book concludes with an examination of the GCP services you need to know to monitor, audit, and ensure compliance with the laws and regulations where your workloads and infrastructure operate.
By the end of the book, you will have acquired the knowledge and confidence to pass the GCP Professional Cloud Security Engineer certification exam and to successfully design, architect, and engineer security solutions with the Google Cloud Platform.
Bonus Material: IAM deny policies
What You Will Learn
Understand the five security principles and how to use them to drive the development of modern security architectures in Google Cloud
Secure identities with Cloud Identity and Identity & Access Management (IAM)
Secure the network with segmentation and private connectivity
Protect sensitive data with the Data Loss Prevention (DLP) API and encryption
Monitor, log, audit, and troubleshoot security incidents with the Google Cloud Operations Suite
Ensure compliance and address regulatory concerns
Who This Book Is For
Software engineers specializing in DevOps, SecOps, and DataOps, who possess expertise in the Software Development Life Cycle (SDLC) methodologies within Agile teams. It also targets software architects with proficiency in various domains such as security, network, solution, data, infrastructure, cloud, and enterprise architecture.
Dario Cabianca is a computer scientist (PhD, University of Milan), published author, and Cloud Architect. He has worked with a variety of global enterprises for more than two decades, and possesses 10 cloud certifications with GCP, AWS, Microsoft Azure, and ISC2. He used his own fail-proof techniques to prepare and pass GCP, AWS, Microsoft Azure, and ISC2 exams. He is excited to share his knowledge to help readers of his study companion book prepare for the GCP Professional Cloud Security Engineer certification exam, and also come away equipped with the necessary tools and knowledge to be confident and successful on the job.
1: Exam Overview.- 2: Configuring Access.- 3: Configuring Perimeter and Boundary Security.- 4: Ensuring Data Protection.- 5: Managing Security Operations.- 6: Supporting Compliance Requirements.
| Erscheinungsdatum | 04.07.2024 |
|---|---|
| Reihe/Serie | Certification Study Companion Series |
| Zusatzinfo | 369 Illustrations, color; 6 Illustrations, black and white; X, 390 p. |
| Verlagsort | Berlin |
| Sprache | englisch |
| Maße | 155 x 235 mm |
| Themenwelt | Mathematik / Informatik ► Informatik ► Netzwerke |
| Schlagworte | Cloud Security • ContainerSecurity • DevSecOps • Google Cloud Platform • Network Security • Tokenization • Zerotrust |
| ISBN-13 | 979-8-8688-0235-5 / 9798868802355 |
| Zustand | Neuware |
| Haben Sie eine Frage zum Produkt? |
Mehr entdecken
aus dem Bereich
aus dem Bereich
das umfassende Handbuch für den Einstieg in die Netzwerktechnik
Buch | Hardcover (2023)
Rheinwerk (Verlag)
29,90 €
Dateiformate, Übertragungsprotokolle und ihre Nutzung in …
Buch | Softcover (2024)
Springer Vieweg (Verlag)
19,99 €
