-
Cloud Fundamentals
-
The CSA & CCM
-
The CCM & Maturity Modeling
-
How to Audit Using Maturity Modeling: Part 1
-
How to Audit Using Maturity and Modeling: Part 2
-
Key Concepts & Review
-
Cirrus Cloud Case Study Scenario
-
Summary & Review
-
Practice Exam
STAR Lead Auditor Training
Self-paced course. Learn the skills and knowledge required to audit cloud service providers against the STAR Certification standard. Auditing techniques, maturity modeling, and Cloud Controls Matrix control areas will also be covered.
In order to purchase this course, you must purchase the training & exam bundle here.
Click here for a more detailed description of this course package
Purchase of your Knowledge Center course ensures access to the material for up to one year from the date of purchase. This course is estimated to take about 6 hours to complete, and the exam is estimated to take approximately 2 hours. After completion, you will receive a certificate for 8 course hour(s) that may be submitted for possible Continuing Educational Credits.
This self-paced course, jointly developed by BSI and CSA, covers how to effectively conduct 2nd or 3rd-party audits of a cloud service provider (CSP) against the CSA STAR Certification standard, which is a rigorous, third-party independent assessment of the security of a CSP. Learners will gain an understanding of what actions a CSP must take to achieve CSA STAR certification, as well as the benefits of the STAR certification to a CSP and the customer. This course will also cover key topics such as auditing principles and techniques, maturity modeling, and Cloud Controls Matrix (CCM) control areas. Diagrams, explanations, and references are provided to facilitate the learning process.
Following completion of the course, participants will receive a certificate of completion and there is an optional exam. This exam tests the student’s knowledge and comprehension, which is demonstrated with an exam certificate. Upon completion of the course and exam, participants will be prepared to take the assessment needed for STAR certification*.
*Note: This credentialing course allows you to obtain the skills to become a STAR Lead Auditor. Obtaining STAR certification for an organization requires a separate process.
After completing this course, learners will be able to:
- Define the specific control areas of the CCM and differentiate between them
- Apply the maturity model when auditing a provider's security controls
- Calculate a maturity score for each CCM control area
- Derive a provider's maturity level from the maturity scores
- Recommend STAR certification
- Explain what maturity is and how the CSA certification maturity model works
This course is a great fit for users in any of the following roles:
- ISO/IEC 27001 audit qualification or equivalent experience
- Network Security Managers
- Information Security Consultants
- Cybersecurity Principles
- IT Risk and Security Managers
Prerequisites:
- ISO/IEC 27001 audit qualification or equivalent experience
- Basic knowledge of cloud computing and associated services (SaaS, IaaS, PaaS)
For more information regarding the calculation of course length and Continuing Educational Credits, please refer to our FAQ.