Oracle Cloud Infrastructure Security Professional (2024): Hands-on Workshop

This course is targeted at Cloud Architects, Cloud Security Administrators, and Security Operations Managers. You will learn how to master Oracle Cloud Infrastructure (OCI) Security Services and ensure the protection of your cloud workloads, data, and applications. Through hands-on practice, you will gain valuable insights into the OCI core security services that will help you enhance your knowledge of resource configuration, activity monitoring, secure compartment design, and security automation. Some of the services covered in the course include Identity and access management, key management, Data Safe, Web Application Firewall, Cloud Guard, Security Zone, Certificates, Vulnerability Scanning, etc. After completing the course, you will have the knowledge and skills to effectively protect your organization’s critical assets in the OCI environment.

STUDENTS WILL LEARN TO

  • Understand the OCI security-first architecture that minimizes risk and attack.
  • Learn and implement IAM to improve security and enhance user experience.
  • Discover how to monitor and patch cloud instances for new vulnerabilities and open ports.
  • Explore and Leverage Data Safe for security assessments, user risk assessments, activity auditing, sensitive data discovery, and data masking.
  • Identify misconfigured resources and insecure activity across tenancy.
Phone
Phone
Product
Oracle
Code
D1108030GC10
Duration
4 Days
Price (baht)
58,600

About the course

COURSE OUTLINE

MODULE 01: Course Overview

  • Course Overview: OCI Security Professional

MODULE 02: OCI Security Introduction

  • Shared Security Responsibility Model
  • Zero Trust Security
  • OCI Security Services Overview
  • Case-study: Architectural reference for Security Services
  • Security Design and Controls
  • Skill Check: OCI Security Introduction

MODULE 03: Identity and Access Management – Basics

  • Introduction to OCI IAM
  • Overview of Identity Domains
  • OCI IAM Identity Domain Types
  • Default Domain
  • Creating Identity Domains
  • Demo: Creating Identity Domain
  • Managing Groups
  • Demo: Managing Groups
  • Managing Users
  • Demo: Managing Users
  • Understanding Administrator Role
  • Demo: Understanding Administrator Role
  • Policies
  • Demo: Policies
  • Compartments
  • Demo: Compartments
  • Compartment Quotas
  • Demo: Compartment Quotas
  • Skill Check: Identity and Access Management – Basics

MODULE 04: Identity and Access Management – Advanced

  • Policy Inheritance and Attachment for Compartments
  • Demo: Policy Attachment and Inheritance
  • Conditional Policies
  • Demo: Conditional Policies
  • Advanced Policies
  • Network Sources
  • Demo: Network Sources
  • Tag Based Access Control
  • Demo: Tag Based Access Control
  • Dynamic Groups
  • Demo: Dynamic Groups
  • Organization Management
  • Skill Check: Identity and Access Management – Advanced

MODULE 05: Identity and Access Management – Operations

  • Securing Access Using IAM
  • Setting Password Policies
  • Demo: Password Policies
  • Multifactor Authentication
  • Demo: MFA Configuration
  • Adaptive Security
  • Password-less Authentication
  • Network Perimeter
  • Reporting
  • Notification Branding
  • Skill Check: Identity and Access Management – Operations

MODULE 06: Oracle Access Governance – Introduction & Architecture

  • Introduction to Oracle Access Governance
  • Introduction to Identity Governance and Administration
  • Access Governance Architecture
  • Access Governance Roles
  • Demo: Creating Access Governance Service Instance
  • Demo: Configuring Access Governance Roles
  • Skill Check: Oracle Access Governance – Introduction & Architecture

MODULE 07: Oracle Access Governance – Orchestration & Administration

  • Identity Orchestration
  • Connected Systems
  • Codeless Integration
  • Demo: Connected System Integration – Oracle Identity Governance
  • Custom Identity Attributes
  • Identity Marking
  • Access Control Concepts
  • Access Requests and Approval Workflows
  • Identity Collections
  • Demo: Creating Identity Collection
  • Access Bundles
  • Demo: Creating Access Bundle
  • Role-Based Access Control (RBAC)
  • Demo: Role Based Access Control
  • Policy-Based Access Control (PBAC)
  • Demo: Policy Based Access Control
  • Skill Check: Oracle Access Governance – Orchestration & Administration

MODULE 08: Oracle Access Governance – Governance & Identity Intelligence

  • Governance and Compliance
  • Campaigns and Access Reviews
  • Policy Reviews
  • Event-Based Reviews
  • Delegation
  • Demo: Creating Review Campaigns
  • Identity Intelligence
  • Prescriptive Analytics and Insights
  • Identity Correlation
  • Recommendations and Remediation
  • Demo: Reviews and Identity Insights
  • Skill Check: Oracle Access Governance – Governance & Identity Intelligence

MODULE 09: Network Security

  • VCN Introduction
  • IAM Policies for Admins/Users
  • Demo: Public and Private Subnets
  • Security Lists and NSG
  • Demo: Security List
  • Demo: Network Security Group
  • VCN Connectivity
  • Site-to-Site VPN
  • FastConnect
  • Skill Check: Infrastructure Protection – Network Security

MODULE 10: Load Balancer & Certificates

  • Load Balancer Concepts
  • Public and Private Load Balancer
  • Load Balancer Policies, Health Checks
  • Load Balancer – SSL Handling
  • Demo: SSL Certificate
  • Certificates Overview
  • OCI Certificates Service
  • Certificates – Use Cases
  • Demo: OCI Certificates Service
  • Skill Check: Infrastructure Protection – Load Balancer & Certificates

MODULE 11: Network Firewalls

  • OCI Network Firewall Service
  • OCI Network Firewall – Use Cases
  • OCI Network Firewall Policy
  • OCI Network Firewall – Part 1
  • OCI Network Firewall – Part 2
  • OCI Network Firewall – URL Filtering
  • Skill Check: Infrastructure Protection – Network Firewalls

MODULE 12: Web Application Firewall (WAF)

  • OCI WAF
  • WAF Concepts
  • Load Balancer and WAF Policy
  • Demo: Creating a WAF Policy
  • Demo: Enabling Protection Rules and XSS
  • Demo: Creating a WAF
  • Bot Management
  • Demo: Adding Access Control Rule
  • Skill Check: Infrastructure Protection – WAF

MODULE 13: Compute, Bastion, and OSMS

  • Compute Security Best Practices
  • Shielded Instances
  • OCI Bastion Service
  • Demo: Manage Bastion
  • Demo: Bastion Port Forwarding
  • OS Management Introduction
  • Demo: OS Management
  • Dedicated VM Hosts
  • Skill Check: OS and Workload Protection – Compute, Bastion, and OSMS

MODULE 14: Vulnerability Scanning Service

  • OCI Vulnerability Scanning Service
  • Demo: OCI Vulnerability Scanning
  • Demo: Cloud Guard Integration with Vulnerability Scanning
  • Demo: Scan Container Image for Vulnerabilities
  • Demo: Sign and Verify Container Image for Security
  • Skill Check: OS and Workload Protection – VSS
  • Expert Tips – Exploring OCI Security Landing Zone – A Quick Overview

MODULE 15: OCI Key Management Service

  • OCI KMS Overview
  • Encryption Basics
  • OCI Vault Service
  • OCI Vault
  • Import and Export Keys
  • OCI Service Integration with Vault
  • Backup and Replicate Vaults and Keys
  • Vault Secrets
  • Automate Secret Generation and Rotation
  • Retrieve Secret from Vault using Instance Principal
  • Dedicated KMS
  • Dedicated KMS – Use Cases and Benefits
  • External KMS
  • External KMS – Onboarding
  • Skill Check: Data Protection – OCI KMS

MODULE 16: Data Safe

  • Introduction to Data Safe
  • Oracle Data Safe in OCI
  • Oracle Data Safe – Security Assessment
  • Oracle Data Safe – User Assessment
  • Oracle Data Safe – Activity Auditing
  • Oracle Data Safe – Data Discovery
  • Oracle Data Safe – Data Masking
  • Oracle Data Safe Architecture
  • Oracle Data Safe – Target Database Connectivity
  • Skill Check: Data Protection – Data Safe
  • Expert Tips – Securing Your Tenancy: A High-Level Roadmap

MODULE 17: Cloud Guard

  • What is CSPM?
  • Cloud Guard Introduction
  • Demo: Enable Cloud Guard
  • Cloud Guard Concepts
  • Cloud Guard Problems
  • Cloud Guard Detector Recipes
  • Cloud Guard Responder Recipes
  • Cloud Guard Notifications
  • Demo: Cloud Guard
  • Demo: Cloud Guard Notifications
  • Skill Check: Detection and Remediation – Cloud Guard

MODULE 18: Threat Intelligence & Security Zones

  • OCI Threat Intelligence Service
  • Demo: Threat Indicator Database
  • Cloud Guard Threat Detector
  • Demo: Cloud Guard Threat Detector
  • Security Zones and Security Advisor
  • Demo: Security Zones and Advisor
  • Demo: Custom Security Zones
  • Skill Check: Detection and Remediation – Threat Intelligence & Security Zones

MODULE 19: Security Operations

  • Managing Security Operations
  • Monitoring Service Overview
  • Demo: Monitoring
  • Logging Service Overview
  • Demo: Logging Service and Audit Events
  • Ingesting Logs for Analytics
  • Insights with Logging Analytics
  • Audit
  • Demo: Logging Analytics with Management Agent Log Ingestion
  • Monitoring – Introduction to Notification Service
  • Events Service
  • Demo: Notifications and Events Service
  • Skill Check: Detection and Remediation – Security Operations
  • Expert Tips – Security Certification Exam Prep

Register for Training

Schedule

Start DateEnd DateDuration (days)PriceRegisterCourseCodeProduct

เราใช้คุกกี้เพื่อพัฒนาประสิทธิภาพ และประสบการณ์ที่ดีในการใช้เว็บไซต์ของคุณ คุณสามารถศึกษารายละเอียดได้ที่ นโยบายความเป็นส่วนตัว และสามารถจัดการความเป็นส่วนตัวเองได้ของคุณได้เองโดยคลิกที่ ตั้งค่า

Privacy Preferences

คุณสามารถเลือกการตั้งค่าคุกกี้โดยเปิด/ปิด คุกกี้ในแต่ละประเภทได้ตามความต้องการ ยกเว้น คุกกี้ที่จำเป็น

Allow All
Manage Consent Preferences
  • Always Active

Save