CCAK – CERTIFICATE OF CLOUD AUDITING KNOWLEDGE (ISACA - CCAK - CERTIFICATE OF CLOUD AUDITING KNOWLEDGE)

The CCAK course is a collaboration between ISACA and the Cloud Security Alliance® (CSA) to provide an in-depth overview of cloud security assessment methods and techniques. The course provides technical and practical skills in cloud management for auditing and security, as well as a thorough understanding of cloud computing terminology, strategies for addressing the unique challenges of the cloud, and for addressing transparency, encryption, scalability, and reach issues in the cloud environment.
In the ISACA CCAK course, organized by the AIEA (ISACA Milan Chapter) , students will apply the knowledge they have learned to establish vendor-neutral guidelines and considerations for cloud implementation, adopt a well-planned, risk-based approach to cloud migration and audit management, and manage or verify the lifecycle and use of cloud services.

Google 4.8/5 Average Rating
3,220+ Learners
Industry Recognized
Certification Body ISACA
Delivery Profice
Lowest price guaranteed
Remote Instructor Led Live Classroom
€2150
Excl. VAT
  • Exam voucher
  • Hands-on labs
  • Certificate
  • Lifetime support
  • Official courseware

Flexible payment — invoice, card or PayPal

Course Information

Course Code ISACA - CCAK - CERTIFICATE OF CLOUD AUDITING KNOWLEDGE
Duration 20 Hours
Delivery Online Live
Exam Voucher Included

What You Will Learn

The course, designed to guide participants toward the ISACA CCAK certification, will combine theory with numerous sessions dedicated to practical applications and exercises. The CCAK course will address the following topics: - Creating and executing a Cloud Audit Plan and applying auditing as an assurance tool; - The impact of Cloud automation, native development, and integration models on auditing and compliance; - Ensuring appropriate controls for Confidentiality, Integrity, and Accessibility; - Key Cloud Governance and Risk Management Concepts and Tools; - Designing and implementing a Cloud Compliance Program; - Compliance requirements, objectives, and frameworks for control, certification, attestation, and authorization.

Course Curriculum

– Describe cloud governance concepts
– Explain cloud trust, transparency and assurance
– Identify cloud governance frameworks and requirements
– Discuss cloud risk management and cloud compliance considerations
– Distinguish cloud governance tools and uses

– Explain the fundamental criteria for cloud compliance programs
– Build and design a cloud compliance program
– Describe legal and regulatory requirements and standards and security frameworks
– Define controls and identify technical and process controls
– Recall CSA certification, attestation and validation

– Identify the CSA Cloud Controls Matrix (CCM) and CCM domains
– Explain the Consensus Assessment Initiative Questionnaire (CAIQ)
– Outline CCM and CAIQ structures
– Recall CCM relationship with other frameworks (mapping and gap analysis)
– Compare transition changes from CCM V3.0.1 to CCM V4

– Describe threat analysis essentials
– Use the Top Threat Analysis Methodology to analyze attack details
– Document attack impacts based on the Top Threat Analysis Methodology
– Apply Threat Analysis Methodology for cloud using CCM
– Evaluate a Top Threats method use case

– Describe the compliance program evaluation approach
– Recall the governance perspective
– Outline the perspectives of laws, regulations and standards
– Define service changes
– Explain the need for continuous assurance and continuous appliance

– Outline audit characteristics, criteria and principles
– Describe auditing standards for cloud computing
– Define auditing an on-premises environment vs cloud
– Recall differences in cloud services and cloud delivery models
– Explain audit building/planning and execution

– Detail CCM Auditing Guidelines
– Define the CCM Audit Scoping Guide
– Explain the approach taken in the CCM Risk Evaluation Guide
– Evaluate the CCM Audit Workbook
– Apply the CCM Auditing Guide

– Explain continuous assurance and compliance
– Define DevOps and DevSecOps
– Apply DevOps and DevSecOps to security
– Outline auditing deployment/CI/CD pipelines
– Describe DevSecOps automation and maturity

– Outline the components of the STAR program
– Explain the security and privacy implications of STAR
– Describe the Open Certification Framework
– Recall CSA STAR attestation and certification
– Detail STAR continuous auditing

Get the Full Syllabus as a PDF

Curriculum, exam format & everything included — sent straight to your inbox.

All You Need to Know

Who Should Attend

IT Auditors, Compliance Managers, Security Professionals, CISOs, Audit/Assurance Professionals, IT Risk Professionals, and IT Risk Managers. The course is also aimed at Managers, Professionals, and Students who wish to acquire specialized knowledge and skills in managing governance, compliance, audit, and risk management activities related to the Cloud.

Prerequisites

There are no prerequisites to access the course.

Course Materials

The course fee includes all the electronic documentation supporting the lessons (course slides), exam voucher and the study materials described below:

– Practice exercises and exam simulations
– CCAK Official Study Guide

Examination

The final certification exam can be purchased as an optional service when registering for the course and can be booked independently at the end of the course by accessing the ISACA certification body’s online exam platform.
The exam consists of the following:
– Type: online exam proctored by an ISACA supervisor
– Exam validity: 12 months from the course date, on a date of each participant’s choosing
– Number of questions: 76, multiple-choice
– Duration: 120 minutes
– Language: English
– Renewal/Maintenance: The certification does not require renewal or maintenance.
Upon passing the exam, you can download your certificate and earn the Credly badge.

Premium training, now at the lowest price.

Remote Instructor Led Live Classroom €2150 excl. VAT
4.8/5 Official ISACA partner Exam included 3,220+ alumni
Lowest price guaranteed Ready to enrol?

No payment now — reserve your seat and we'll send the invoice.

Under a minute · invoice, card or PayPal
How it works: 1 Submit your details 2 Receive your invoice 3 Pay & get access