When will I have access to the lectures and assignments?

To access the course materials, assignments and to earn a Certificate, you will need to purchase the Certificate experience when you enroll in a course. You can try a Free Trial instead, or apply for Financial Aid. The course may offer 'Full Course, No Certificate' instead. This option lets you see all course materials, submit required assessments, and get a final grade. This also means that you will not be able to purchase a Certificate experience.

What will I get if I subscribe to this Certificate?

When you enroll in the course, you get access to all of the courses in the Certificate, and you earn a certificate when you complete the work. Your electronic Certificate will be added to your Accomplishments page - from there, you can print your Certificate or add it to your LinkedIn profile.

Strategies for Cloud Security Risk Management

4 days left! Save on skills that make you shine with 40% off 3 months of Coursera Plus. Save now

Strategies for Cloud Security Risk Management

This course is part of Google Cloud Cybersecurity Professional Certificate

Instructor: Google Cloud Training

8,620 already enrolled

Included with

Learn more

4 modules

Gain insight into a topic and learn the fundamentals.

79 reviews

Beginner level

No prior experience required

Flexible schedule

2 weeks at 10 hours a week

Learn at your own pace

96%

Most learners liked this course

4 modules

Gain insight into a topic and learn the fundamentals.

79 reviews

Beginner level

No prior experience required

Flexible schedule

2 weeks at 10 hours a week

Learn at your own pace

96%

Most learners liked this course

What you'll learn

Analyze the key components and objects of the risk management process.
Explore cloud security risk frameworks.

Skills you'll gain

Details to know

Shareable certificate

Add to your LinkedIn profile

Assessments

23 assignments

Taught in English

91% of learners achieved a positive career outcome

See how employees at top companies are mastering in-demand skills

Learn more about Coursera for Business

logos of Petrobras, TATA, Danone, Capgemini, P&G and L'Oreal

Build your Cloud Computing expertise

This course is part of the Google Cloud Cybersecurity Professional Certificate

When you enroll in this course, you'll also be enrolled in this Professional Certificate.

Learn new concepts from industry experts
Gain a foundational understanding of a subject or tool
Develop job-relevant skills with hands-on projects
Earn a shareable career certificate from Google Cloud

There are 4 modules in this course

Ready for more?! This is the second course of the Google Cloud Cybersecurity Certificate. Crack the code of security and compliance! ️ This course is your decoder ring to unlock the world of security domains, frameworks, and data privacy. Discover the secret language of risk, controls, and the trio of compliance: people, process, and tech!

Module details

In this module, you’ll dive into the essential concepts of security domains, compliance frameworks, data privacy fundamentals, risk and security controls. You'll discover the key differences between security and compliance, and learn about controls and frameworks within the three pivotal areas of compliance: people, process, and technology. Explore risk and security controls in depth, giving you a clear view of how these controls are effectively implemented.

What's included

13 videos10 readings5 assignments

13 videosTotal 34 minutes

Introduction to Course 23 minutes
Preston: Continuous growth in cloud security1 minute
Welcome to module 11 minute
Introduction to cloud security domains5 minutes
Explore compliance and security4 minutes
Phil: A day in the life of a Chief Information Security Officer3 minutes
Security controls and compliance2 minutes
Risk and compliance4 minutes
The three areas of compliance: People, process, and technology3 minutes
Overview of the Google Cloud Security Command Center2 minutes
Cloud security controls3 minutes
Explore steps to implement security controls3 minutes
Wrap-up1 minute

10 readingsTotal 100 minutes

Course 2 overview10 minutes
Helpful resources and tips10 minutes
Lab technical tips10 minutes
Explore your course 2 scenario: Cymbal Bank10 minutes
Learn more about security and compliance with Google whitepapers10 minutes
Learn more about security controls10 minutes
Use existing frameworks to demonstrate compliance10 minutes
Control mapping for risk management10 minutes
Security control implementation10 minutes
Glossary terms from module 110 minutes

5 assignmentsTotal 82 minutes

Test your knowledge: Security domains and compliance8 minutes
Test your knowledge: Risk, security controls, and compliance8 minutes
Test your knowledge: Compliance and risk management8 minutes
Test your knowledge: Security control mapping and implementation8 minutes
Module 1 challenge50 minutes

Get ready to level up your risk management game! In this module, you'll crack the code on popular frameworks like NIST CSF, SOC 2, FedRAMP, HIPAA, and ISO 27001. You'll compare and contrast these frameworks like superheroes in a face-off, so you can pick the perfect one for any situation. Plus, you'll learn how to use them to build your own fortress of security, keeping your data safe and sound. So, buckle up and get ready for an epic adventure in risk management proficiency.

What's included

9 videos7 readings5 assignments

9 videosTotal 24 minutes

Welcome to module 21 minute
MK: Risk management in a cloud-first world2 minutes
Introduction to risk management frameworks3 minutes
Data protection and privacy3 minutes
Data protection and privacy scenarios4 minutes
Industry-specific regulations and standards3 minutes
Apply industry-specific requirements2 minutes
Risk management industry standards4 minutes
Wrap-up1 minute

7 readingsTotal 62 minutes

Risk management and security frameworks10 minutes
Compare and contrast risk management frameworks10 minutes
Google’s Secure AI Framework10 minutes
Learn more about data protection and privacy regulations10 minutes
Security frameworks, regulations, laws, and standards10 minutes
What is Google Cloud Risk Manager?10 minutes
Glossary terms from module 22 minutes

5 assignmentsTotal 82 minutes

Test your knowledge: Risk management frameworks10 minutes
Test your knowledge: Data protection and privacy regulations8 minutes
Test your knowledge: Differences between and applications of industry regulations8 minutes
Test your knowledge: Industry standards6 minutes
Module 2 challenge50 minutes

In this module, you'll unlock the secrets of the compliance lifecycle. Imagine it as a labyrinth of rules and regulations – you'll learn how to map your path through controls, dodge the pitfalls of non-compliance, and perform audits like a seasoned adventurer. Discover how Policy-as-Code (PaC) can weave powerful safeguards directly into your Infrastructure-as-Code (IaC), transforming it into a self-defending fortress.

What's included

12 videos9 readings7 assignments

12 videosTotal 36 minutes

Welcome to module 31 minute
Bill: Use a security mindset3 minutes
Overview of compliance lifecycle3 minutes
Cloud security controls4 minutes
Control mapping3 minutes
Cloud security audits3 minutes
Prepare for an audit5 minutes
Cloud security control inheritance4 minutes
Cloud resource hierarchy and security controls2 minutes
Negative organizational impacts of non-compliance3 minutes
Policy as code and infrastructure as code3 minutes
Wrap-up1 minute

9 readingsTotal 90 minutes

Learn more about controls for workloads and services10 minutes
Activity: Review a compliance report10 minutes
Activity Exemplar: Review a compliance report10 minutes
Audits and security assessments10 minutes
Best practices for Google Cloud resource hierarchy10 minutes
Key considerations when writing policy as code10 minutes
Activity: Review and update a risk management policy10 minutes
Activity Exemplar: Review and update a risk management policy10 minutes
Glossary terms from module 310 minutes

7 assignmentsTotal 104 minutes

Activity Quiz: Review a compliance report10 minutes
Test your knowledge: Control mapping10 minutes
Test your knowledge: Assessments and auditing10 minutes
Test your knowledge: Control inheritance and resource hierarchy10 minutes
Activity Quiz: Review and update a risk management policy8 minutes
Test your knowledge: Compliance, policy as code, and infrastructure as code6 minutes
Module 3 challenge50 minutes

Prepare for a thrilling expedition into the cloud! In this module, you'll skillfully wield the powers of Google's Security Command Center, Risk Manager, and Policy Analyzer – your trusty toolbox for conquering compliance challenges. Discover how these tools, combined with cloud security posture management (CSPM), form your ultimate defense system. You'll chart a course through the landscapes of CIS, NIST, ISO, and MITRE, learning to use their wisdom as your compass for risk management and security excellence.

What's included

12 videos10 readings6 assignments1 app item1 plugin

12 videosTotal 40 minutes

Welcome to module 42 minutes
Vulnerability management frameworks2 minutes
Introduction to multicloud CSPMs4 minutes
Security Command Center4 minutes
Security Command Center, Risk Manager, Policy Analyzer, Assured Workloads4 minutes
Understand Google Cloud’s Risk Protection Program3 minutes
The value of shared fate in cloud risk protection programs4 minutes
Organizational policies in the cloud4 minutes
Organization Policy Service4 minutes
Wrap-up1 minute
Patrick and Danielle: Interview role play6 minutes
Course wrap-up2 minutes

10 readingsTotal 120 minutes

Vulnerability management10 minutes
Cloud security management (CSPM) resources20 minutes
Cloud tools for risk management20 minutes
Guide to risk assessment and compliance management with Security Command Center10 minutes
Digital sovereignty and sovereign clouds10 minutes
Organizational policy constraints, inheritance and violation10 minutes
Interview tip: provide examples10 minutes
Glossary terms from module 410 minutes
Course 2 resources and citations10 minutes
Glossary terms from course 210 minutes