{"product_id":"security-in-google-cloud","title":"Security in Google Cloud","description":"\u003cdiv\u003e\u003cp\u003eThis training course gives you a broad study of security controls and techniques in Google Cloud. Through lectures, demonstrations, and labs, you explore and deploy the components of a secure Google Cloud solution. You use services including Cloud Identity, Identity and Access Management (IAM), Cloud Load Balancing, Cloud IDS, Web Security Scanner, BeyondCorp Enterprise, and Cloud DNS.\u003c\/p\u003e\u003c\/div\u003e\u003cdiv\u003e\n\u003ch3\u003eSecurity in Google Cloud Benefits\u003c\/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eIn this course, you will:\u003c\/strong\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eIdentify the foundations of Google Cloud security.\u003c\/li\u003e\n\u003cli\u003eManage administration identities with Google Cloud.\u003c\/li\u003e\n\u003cli\u003eImplement user administration with Identity and Access Management (IAM).\u003c\/li\u003e\n\u003cli\u003eConfigure Virtual Private Clouds (VPCs) for isolation, security, and logging.\u003c\/li\u003e\n\u003cli\u003eApply techniques and best practices for securely managing Compute Engine.\u003c\/li\u003e\n\u003cli\u003eApply techniques and best practices for securely managing Google Cloud data.\u003c\/li\u003e\n\u003cli\u003eApply techniques and best practices for securing Google Cloud applications.\u003c\/li\u003e\n\u003cli\u003eApply techniques and best practices for securing Google Kubernetes Engine (GKE) resources.\u003c\/li\u003e\n\u003cli\u003eManage protection against distributed denial-of-service attacks (DDoS).\u003c\/li\u003e\n\u003cli\u003eManage content-related vulnerabilities.\u003c\/li\u003e\n\u003cli\u003eImplement Google Cloud monitoring, logging, auditing, and scanning solutions.\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003c\/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cb\u003ePrerequisites\u003c\/b\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003ePrior completion of the Google Cloud Fundamentals: Core Infrastructure course or equivalent experience.\u003c\/li\u003e\n\u003cli\u003ePrior completion of the Networking in Google Cloud course or equivalent experience.\u003c\/li\u003e\n\u003cli\u003eKnowledge of foundational concepts in information security\u003c\/li\u003e\n\u003cli\u003eBasic proficiency with command-line tools and Linux operating system environments.\u003c\/li\u003e\n\u003cli\u003eSystems Operations experience, including deploying and managing applications, either on-premises or in a public cloud environment.\u003c\/li\u003e\n\u003cli\u003eReading comprehension of code in Python or Javascript.\u003c\/li\u003e\n\u003cli\u003eBasic understanding of Kubernetes terminology (preferred but not required).\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003c\/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eExam Information\u003c\/strong\u003e\u003c\/p\u003e\n\u003cp\u003eNone.\u003c\/p\u003e\n\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003c\/div\u003e\u003cdiv\u003e\u003ch3\u003eSecurity in Google Cloud Course Outline\u003c\/h3\u003e\u003c\/div\u003e\u003cdiv\u003e\n\u003ch4\u003eLearning Objectives\u003c\/h4\u003e\n\u003cp\u003eModule 1) Foundations of Google Cloud Security\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eIntroduction to Google Cloud Operations Suite\u003c\/li\u003e\n\u003cli\u003eExplain the shared security responsibility model of Google Cloud.\u003c\/li\u003e\n\u003cli\u003eDescribe how Google Cloud approaches security.\u003c\/li\u003e\n\u003cli\u003eRecognize threats mitigated by Google and Google Cloud.\u003c\/li\u003e\n\u003cli\u003eIdentify Google Cloud’s commitments to regulatory compliance.\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003eModule 2) Securing Access to Google Cloud\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eDescribe what Cloud Identity is and what it does.\u003c\/li\u003e\n\u003cli\u003eExplain how Google Cloud Directory Sync securely syncs users and permissions between your on-premises LDAP or AD server and the cloud.\u003c\/li\u003e\n\u003cli\u003eExplore and apply best practices for managing groups, permissions, domains, and administrators with Cloud Identity\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003eModule 3) Identity and Access Management (IAM)\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eIdentify IAM roles and permissions that can be used to organize resources in Google Cloud.\u003c\/li\u003e\n\u003cli\u003eExplain the management-related features of Google Cloud projects.\u003c\/li\u003e\n\u003cli\u003eDefine IAM policies, including organization policies.\u003c\/li\u003e\n\u003cli\u003eImplement access control with IAM.\u003c\/li\u003e\n\u003cli\u003eProvide access to Google Cloud resources by using predefined and custom IAM roles.\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003eModule 4) Configuring Virtual Private Cloud for Isolation and Security\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eDescribe the function of VPC networks.\u003c\/li\u003e\n\u003cli\u003eRecognize and implement best practices for configuring VPC firewalls (both ingress and egress rules).\u003c\/li\u003e\n\u003cli\u003eSecure projects with VPC Service Controls.\u003c\/li\u003e\n\u003cli\u003eApply SSL policies to load balancers.\u003c\/li\u003e\n\u003cli\u003eEnable VPC flow logging, and then use Cloud Logging to access logs.\u003c\/li\u003e\n\u003cli\u003e Deploy Cloud IDS, and view threat details in the Google Cloud console.\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003eModule 5) Securing Compute Engine: Techniques and Best Practices\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eCreate and manage service accounts for Compute Engine instances (default and customer-defined).\u003c\/li\u003e\n\u003cli\u003eDetail IAM roles and scopes for VMs.\u003c\/li\u003e\n\u003cli\u003eExplore and apply best practices for Compute Engine instances.\u003c\/li\u003e\n\u003cli\u003eExplain the function of the Organization Policy Service.\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003eModule 6) Securing Cloud Data: Techniques and Best Practices\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eUse IAM permissions and roles to secure cloud resources.\u003c\/li\u003e\n\u003cli\u003eCreate and wrap encryption keys using the Compute Engine RSA public key certificate.\u003c\/li\u003e\n\u003cli\u003eEncrypt and attach persistent disks to Compute Engine instances.\u003c\/li\u003e\n\u003cli\u003eManage keys and encrypted data by using Cloud Key Management Service (Cloud KMS) and Cloud HSM.\u003c\/li\u003e\n\u003cli\u003eCreate BigQuery authorized views.\u003c\/li\u003e\n\u003cli\u003eRecognize and implement best practices for configuring storage options.\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003eModule 7) Securing Applications: Techniques and Best Practices\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eRecall various types of application security vulnerabilities.\u003c\/li\u003e\n\u003cli\u003eDetect vulnerabilities in App Engine applications by using Web Security Scanner.\u003c\/li\u003e\n\u003cli\u003eSecure Compute Engine Applications by using BeyondCorp Enterprise.\u003c\/li\u003e\n\u003cli\u003eSecure application credentials by using Secret Manager.\u003c\/li\u003e\n\u003cli\u003eIdentify the threats of OAuth and Identity Phishing.\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003eModule 8) Securing Google Kubernetes Engine: Techniques and Best Practices\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eExplain the differences between Kubernetes service accounts and Google service accounts.\u003c\/li\u003e\n\u003cli\u003eRecognize and implement best practices for securely configuring GKE.\u003c\/li\u003e\n\u003cli\u003eExplain logging and monitoring options in Google Kubernetes Engine\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003eModule 9) Protecting against Distributed Denial-of-Service Attacks (DDoS)\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eIdentify the four layers of DDoS Mitigation.\u003c\/li\u003e\n\u003cli\u003eIdentify methods Google Cloud uses to mitigate the risk of DDoS for its customers.\u003c\/li\u003e\n\u003cli\u003eUse Google Cloud Armor to blocklist an IP address and restrict access to an HTTP Load Balancer\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003eModule 10: Content-Related Vulnerabilities: Techniques and Best Practices\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eDiscuss the threat of ransomware.\u003c\/li\u003e\n\u003cli\u003eExplain ransomware mitigations strategies (backups, IAM, Cloud Data Loss Prevention API).\u003c\/li\u003e\n\u003cli\u003eHighlight common threats to content (data misuse; privacy violations; sensitive, restricted, or unacceptable content).\u003c\/li\u003e\n\u003cli\u003eIdentify solutions for threats to content (classification, scanning, and redacting).\u003c\/li\u003e\n\u003cli\u003eDetect and redact sensitive data by using the Cloud DLP API.\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003eModule 11: Monitoring, Logging, Auditing, and Scanning\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eExplain and use the Security Command Center.\u003c\/li\u003e\n\u003cli\u003eApply Cloud Monitoring and Cloud Logging to a project.\u003c\/li\u003e\n\u003cli\u003eApply Cloud Audit Logs to a project.\u003c\/li\u003e\n\u003cli\u003eIdentify methods for automating security in Google Cloud environments.\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003c\/div\u003e","brand":"Learning Tree","offers":[{"title":"269B17US \/ 2026-09-09T09:00:00 \/ Online","offer_id":47572780974299,"sku":"US-1470-IL","price":2228.0,"currency_code":"USD","in_stock":true},{"title":"26CB68US \/ 2026-12-02T09:00:00 \/ Herndon, VA","offer_id":48216575410395,"sku":"US-1470-IL","price":2228.0,"currency_code":"USD","in_stock":true},{"title":"276C07US \/ 2027-06-02T09:00:00 \/ Herndon, VA","offer_id":48825890701531,"sku":"US-1470-IL","price":2228.0,"currency_code":"USD","in_stock":true}],"url":"https:\/\/learningtreeinternational-dirinfosec-hhs.myshopify.com\/products\/security-in-google-cloud","provider":"Learning Tree International","version":"1.0","type":"link"}