The CCSP domains are drawn from various information security and cloud security topics within the (ISC)2 CBK. The CCSP CBK consists of the following 6 domains:
Domain 1: Cloud Concepts, Architectural Design.
• Cloud computing concepts
• Cloud reference architecture
• Security concepts related to cloud computing
• Secure design principles of cloud computing
• Identification of trusted cloud services
Domain 2: Cloud Data Security.
• Cloud Data Lifecycle
• Design and Implementation of Cloud Data Storage Architectures
• Design and Application of Data Security Strategies
• Knowledge and Implementation of Data Discovery and
Classification Technologies
• Design and Implementation of related Jurisdictional Data Security
for Personally Identifiable Information (PII)
• Design and Implementation of Data Rights Management
• Planning and Implementation of Data Retention, Removal,
and Archiving Policies
• Design and Implementation of Auditability, Detection
and Accountability of Data Events
Domain 3: Cloud Platform Infrastructure Security.
• Cloud Infrastructure components
• Cloud infrastructure risk assessment
• Designing and planning of security controls
• Disaster Recovery and Business Continuity Management Plans
Domain 4: Cloud Application Security.
• Application security training and awareness
• Cloud software validation and assurance
• Usage of verified software
• Understanding of Software Development Life Cycle (SDLS)
• Application of Security Software Development Lifecycle
• Cloud application architecture
• Designing of IAM (Identity and Access Management) solutions
The CCSP domains are drawn from various information security and cloud security topics within the (ISC)2 CBK. The CCSP CBK consists of the following 6 domains:
Domain 1: Cloud Concepts, Architectural Design.
• Cloud computing concepts
• Cloud reference architecture
• Security concepts related to cloud computing
• Secure design principles of cloud computing
• Identification of trusted cloud services
Domain 2: Cloud Data Security.
• Cloud Data Lifecycle
• Design and Implementation of Cloud Data Storage Architectures
• Design and Application of Data Security Strategies
• Knowledge and Implementation of Data Discovery and
Classification Technologies
• Design and Implementation of related Jurisdictional Data Security
for Personally Identifiable Information (PII)
• Design and Implementation of Data Rights Management
• Planning and Implementation of Data Retention, Removal,
and Archiving Policies
• Design and Implementation of Auditability, Detection
and Accountability of Data Events
Domain 3: Cloud Platform Infrastructure Security.
• Cloud Infrastructure components
• Cloud infrastructure risk assessment
• Designing and planning of security controls
• Disaster Recovery and Business Continuity Management Plans
Domain 4: Cloud Application Security.
• Application security training and awareness
• Cloud software validation and assurance
• Usage of verified software
• Understanding of Software Development Life Cycle (SDLS)
• Application of Security Software Development Lifecycle
• Cloud application architecture
• Designing of IAM (Identity and Access Management) solutions
