Description
Duration: 3 days
Security decisions in Google Cloud Platform (GCP) have far-reaching consequences, affecting threat resistance, compliance, and operational efficiency across your entire environment. This course focuses on core security domains including Identity and Access Management (IAM), VPC configuration, and workload protection, helping you move from a reactive to a proactive security approach. Through hands-on labs and real-world scenarios, you will learn to architect and deploy secure cloud solutions. Topics range from defending against DDoS attacks to managing content-related vulnerabilities.
Target Audience
- Cloud information security analysts, architects, and engineers
- Information security and cybersecurity specialists
- Cloud infrastructure architects
- Developers working on cloud-based applications
Prerequisites
What’s included?
- Authorized Courseware
- Intensive Hands on Skills Development with an Experienced Subject Matter Expert
- Hands on practice on real Servers and extended lab support 1.800.482.3172
- Examination Vouchers & Onsite Certification Testing – (excluding Adobe and PMP Boot Camps)
- Academy Code of Honor: Test Pass Guarantee
- Optional: Package for Hotel Accommodations, Lunch and Transportation
With several convenient training delivery methods offered, The Code Academy makes getting the training you need easy. Whether you prefer to learn in a classroom or an online live learning virtual environment, training videos hosted online, and private group classes hosted at your site. We offer expert instruction to individuals, government agencies, non-profits, and corporations. Our live classes, on-sites, and online training videos all feature certified instructors who teach a detailed curriculum and share their expertise and insights with trainees. No matter how you prefer to receive the training, you can count on The Code Academy for an engaging and effective learning experience.
Methods
- Instructor Led (the best training format we offer)
- Live Online Classroom – Online Instructor Led
- Self-Paced Video
Speak to an Admissions Representative for complete details
| Start | Finish | Public Price | Public Enroll | Private Price | Private Enroll |
|---|---|---|---|---|---|
| 5/25/2026 | 5/27/2026 | ||||
| 6/15/2026 | 6/17/2026 | ||||
| 7/6/2026 | 7/8/2026 | ||||
| 7/27/2026 | 7/29/2026 | ||||
| 8/17/2026 | 8/19/2026 | ||||
| 9/7/2026 | 9/9/2026 | ||||
| 9/28/2026 | 9/30/2026 | ||||
| 10/19/2026 | 10/21/2026 | ||||
| 11/9/2026 | 11/11/2026 | ||||
| 11/30/2026 | 12/2/2026 | ||||
| 12/21/2026 | 12/23/2026 | ||||
| 1/11/2027 | 1/13/2027 | ||||
| 2/1/2027 | 2/3/2027 | ||||
| 2/22/2027 | 2/24/2027 | ||||
| 3/15/2027 | 3/17/2027 | ||||
| 4/5/2027 | 4/7/2027 | ||||
| 4/26/2027 | 4/28/2027 |
Learning Objectives
- Understand the core principles underlying Google Cloud security
- Set up IAM roles and policies to enforce least-privilege access
- Apply security controls to Compute Engine, Cloud Storage, and Kubernetes workloads
- Build secure VPC networks and implement network-level controls
- Use built-in GCP tools to detect, monitor, and respond to security threats
- Address common vulnerabilities and reduce exposure to DDoS attacks
Course Outline
Module 1: Google Cloud Security Fundamentals
Introduces the shared responsibility model and provides an overview of the security controls and tools available within Google Cloud Platform.
Module 2: Managing Access to Google Cloud
Examines identity types and Cloud Identity, covering IAM fundamentals and advanced permission configurations for controlling access to GCP resources.
Module 3: Identity and Access Management (IAM)
Discusses IAM policies, roles, and service accounts, with guidance on applying least-privilege access control throughout the environment.
Module 4: Configuring Virtual Private Cloud for Isolation and Security
Covers subnet design, firewall rule configuration, and Private Google Access, as well as VPC flow logs and methods for securing communication between resources.
Module 5: Securing Compute Engine
Addresses instance identity, metadata management, OS patching strategies, and image management practices for protecting virtual machine workloads.
Module 6: Securing Cloud Data
Reviews Cloud Storage security configurations, encryption options in GCP, and how to use IAM to control and audit access to data.
Module 7: Securing Applications
Covers secure application design principles and the use of Web Security Scanner and content protection mechanisms to identify and remediate application-level vulnerabilities.
Module 8: Securing Google Kubernetes Engine (GKE)
Addresses workload identity, role-based access control (RBAC), and network policies in GKE, along with approaches for secure pod deployment in containerized environments.
Module 9: Protecting Against DDoS Attacks
Covers the use of Cloud Armor, load balancing, and autoscaling to build DDoS protection strategies for workloads running on GCP.
Module 10: Addressing Content-Related Vulnerabilities
Focuses on Cloud Data Loss Prevention (DLP), BeyondCorp Enterprise, and data classification to manage and reduce content-related security risks.
Module 11: Monitoring, Logging, Auditing, and Scanning
Covers Cloud Audit Logs, Security Command Center, and Cloud Monitoring as tools for threat detection, incident response, and maintaining security visibility across the GCP environment.
