Cloud Architecture Design
Use of AWS for HMG Official
Use of Openstack
Multi-Cloud Integration into a single Enterprise Architecture
Integration with Azure
Integration with Homomorphic encryption
Orchestration using Kubernetes @ Home Office
Docker on VMWare
Other aspects as per CCSP Certification and training :-
1.1 Understand Cloud Computing Concepts
»» Cloud Computing Definitions (ISO/IEC 17788)
»» Cloud Computing Roles (i.e., Cloud Service Customer, Cloud Service Provider, and Cloud Service Partner)
»» Key Cloud Computing Characteristics (e.g., on-demand self-service, broad network access, multi-tenancy, rapid elasticity and scalability, resource pooling, measured service)
»» Building Block Technologies (e.g., virtualization, storage, networking, databases)
1.2 Describe Cloud Reference Architecture
»» Cloud Computing Activities (ISO/IEC 17789, Clause 9)
»» Cloud Service Capabilities (i.e., application capability type, platform capability type,infrastructure capability types)
»» Cloud Service Categories (e.g., SaaS, IaaS,PaaS, NaaS, CompaaS, DSaaS)
»» Cloud Deployment Models (e.g., public,private, hybrid, community)
»» Cloud Cross-Cutting Aspects (e.g.,interoperability, portability, reversibility,availability, security, privacy, resiliency,performance, governance, maintenance and versioning, service levels and service level agreement, auditability, and regulatory)
1.3 Understand Security Concepts Relevant to Cloud Computing
»» Cryptography (e.g. encryption, in motion, at rest,key management)
»» Access Control
»» Data and Media Sanitization (e.g., overwriting, cryptographic erase)
»» Network security
»» Virtualization Security (e.g., hypervisor security)
»» Common Threats
»» Security Considerations for different Cloud Categories (e.g., SaaS, PaaS, *aaS)
1.4 Understand Design Principles of Secure Cloud Computing
»» Cloud Secure Data Lifecycle
»» Cloud Based Business Continuity/Disaster Recovery Planning
»» Cost Benefit Analysis
»» Functional Security Requirements (e.g., portability, interoperability, vendor lock-in)
1.5 Identify Trusted Cloud Services
»» Certification Against Criteria
»» System/Subsystem Product Certifications (e.g., common criteria, FIPS 140-2)
