Cloud Security

This course provides a hands-on foundation in securing cloud environments across AWS, Azure, and GCP. Students learn to design, implement, and assess secure architectures aligned with industry standards. Through lectures, labs, and case studies, students gain experience in IAM, data protection, network segmentation, and secure DevOps. Advanced topics include Kubernetes and container security, infrastructure as code, AI-driven threat detection, and ethical cloud penetration testing. Students analyze real-world incidents, build automated security workflows, and apply frameworks such as NIST, SOC 2, GDPR, and FedRAMP. A team project challenges students to architect and present a secure cloud solution with risk assessment.

Student Learning Outcomes

1. Design secure cloud architectures using services from AWS, Azure, and GCP.
2. Specify identity, access, and network controls aligned with zero trust principles.
3. Apply security best practices for cloud-native development, including containers, serverless, and infrastructure-as-code.
4. Identify and mitigate common cloud misconfigurations through hands-on security assessments.
5. Evaluate cloud compliance requirements (e.g., SOC 2, FedRAMP, GDPR) and perform risk assessments.
6. Use automation and monitoring tools to detect threats and respond to security incidents in cloud environments. 

Previously offered as CYBER 290. Cloud Security.