Security Best Practices in Google Cloud en Français from Coursera

What's inside

Syllabus

Bienvenue dans le cours "Security Best Practices in Google Cloud"

Bienvenue dans le cours "Security Best Practices in Google Cloud". Dans ce cours, nous allons nous appuyer sur les bases établies dans le cours précédent de cette série, "Managing Security in Google Cloud". Dans cette section, vous allez approfondir la mise en œuvre de "bonnes pratiques" de sécurité visant à réduire le risque d'attaque malveillante sur vos systèmes, vos logiciels et vos données.

Sécuriser Compute Engine : techniques et bonnes pratiques

Dans ce module, nous commencerons par aborder les comptes de service, les rôles IAM et les niveaux d'accès aux API qui concernent Compute Engine. Nous nous intéresserons également à la gestion des connexions aux VM, ainsi qu'à l'utilisation de règles d'administration pour définir des contraintes qui s'appliquent à toutes les ressources de la hiérarchie de votre organisation. Ensuite, nous passerons en revue les bonnes pratiques et des conseils pour sécuriser Compute Engine. Enfin, nous aborderons le chiffrement des disques persistants à l'aide de clés de chiffrement fournies par le client.

Sécuriser les données cloud : techniques et bonnes pratiques

Dans ce module, nous aborderons le contrôle des autorisations IAM et des listes de contrôle d'accès appliquées sur les buckets Cloud Storage, l'audit des données cloud, y compris la recherche des données définies comme publiquement accessibles et les corrections afférentes, l'utilisation d'URL Cloud Storage signées et de documents de stratégie signés, ainsi que le chiffrement des données au repos. Par ailleurs, nous aborderons les rôles IAM et les vues autorisées BigQuery pour vous familiariser avec la gestion des accès aux ensembles de données et aux tables. Ce module se terminera par une présentation des bonnes pratiques en termes de stockage.

Sécurité des applications : techniques et bonnes pratiques

Ce module traite des techniques et des bonnes pratiques liées à la sécurité des applications. Nous verrons comment utiliser Web Security Scanner pour identifier les failles de vos applications, puis nous nous pencherons sur le sujet de l'hameçonnage visant Oauth et les identités. Enfin, vous apprendrez à utiliser Identity-Aware Proxy (ou IAP) pour contrôler l'accès à vos applications cloud.

Sécuriser Google Kubernetes Engine : techniques et bonnes pratiques

La protection des charges de travail dans Google Kubernetes Engine implique de nombreuses couches de la pile, y compris le contenu de votre image de conteneur, son environnement d'exécution, le réseau du cluster et l'accès au serveur d'API du cluster. Dans ce module, vous apprendrez à configurer l'authentification et les autorisations de manière sécurisée, ainsi qu'à renforcer vos clusters, sécuriser vos charges de travail et surveiller tous les éléments pour vous assurer qu'ils restent opérationnels.

Good to know

Know what's good

, what to watch for

, and possible dealbreakers

Ce cours s'appuie sur les connaissances acquises dans le cours précédent, "Gestion de la sécurité dans Google Cloud"

Il aborde en profondeur les contrôles et techniques de sécurité sur Google Cloud

Il est dispensé par Google Cloud Training, ce qui garantit la qualité et la pertinence des enseignements

Il aborde des sujets essentiels pour renforcer la sécurité des infrastructures cloud, tels que le contrôle des accès, le chiffrement et la sécurisation des environnements Kubernetes

Il propose des présentations, des démonstrations et des ateliers pratiques, ce qui permet aux participants d'acquérir des connaissances théoriques et pratiques

Il est particulièrement adapté aux professionnels de l'informatique, aux administrateurs système et aux développeurs souhaitant renforcer la sécurité de leurs applications et infrastructures cloud

Activities

Be better prepared before your course. Deepen your understanding during and after it. Supplement your coursework and achieve mastery of the topics covered in Security Best Practices in Google Cloud en Français with these activities:

Review the basics of Linux

Show steps

Improve retention by reviewing Linux basics and refreshing your familiarity with the CLI.

Browse courses on Linux Basics

Show steps

Review Linux commands
Practice using the Linux command line

Organize course materials

Show steps

Improve retention and understanding by consolidating course materials into a single, structured format.

Show steps

Review course notes and assignments
Organize materials by topic
Create a digital or physical study guide

Practice cloud security configuration in a lab environment

Show steps

Deepen understanding and practical skills by applying security configurations in a simulated environment.

Show steps

Set up a lab environment
Configure security settings for Compute Engine
Configure IAM roles and permissions
Configure security for Cloud Storage
Implement security measures for Kubernetes

Four other activities

Expand to see all activities and additional details

Show all seven activities

Review and analyze security audit logs

Show steps

Enhance understanding of security events and improve detection skills by analyzing audit logs.

Show steps

Locate and access audit logs
Review logs for security-related events
Analyze logs to identify potential vulnerabilities

Create a blog post or article on a specific aspect of cloud security

Show steps

Solidify understanding by teaching others through writing and sharing knowledge on a specific topic.

Show steps

Identify a specific cloud security topic
Research and gather information on the topic
Write a blog post or article
Share the blog post or article with peers or industry professionals

Participate in a Capture The Flag (CTF) competition focused on cloud security

Show steps

Develop practical skills and teamwork by solving complex security challenges in a gamified environment.

Show steps

Find a relevant CTF competition
Form or join a team
Analyze and solve security challenges
Collaborate with team members and strategize

Join a study group or discussion forum for cloud security

Show steps

Enhance understanding and stay updated by engaging with peers and discussing security topics.

Show steps

Identify a suitable study group or discussion forum
Participate in discussions and Q&A sessions
Share knowledge and experiences with peers

Career center

Learners who complete Security Best Practices in Google Cloud en Français will develop knowledge and skills that may be useful to these careers:

Cloud Architect

A Cloud Architect designs, builds, and maintains cloud computing solutions. They work with clients to determine their business needs and then design and implement a cloud solution that meets those needs. This course may be useful for a burgeoning Cloud Architect, as they would gain hands-on experience with access management, encryption, and Kubernetes security. These are all important concepts for a Cloud Architect to have a solid understanding of.

See salaries and explore the career path for Cloud Architect

Chief Information Security Officer (CISO)

A CISO is responsible for developing and implementing an organization's information security strategy. They work with other IT staff to ensure that the organization's computer systems and networks are secure from outside threats. This course may be useful for a CISO who wants to specialize in cloud security. The course covers topics such as access management, encryption, and Kubernetes security. These are all important concepts for a CISO to have a solid understanding of.

See salaries and explore the career path for Chief Information Security Officer (CISO)

Security Engineer

A Security Engineer designs, implements, and maintains security measures to protect an organization's computer systems and networks from outside threats. They also work to identify and mitigate security risks. This course may be useful for a Security Engineer who wants to specialize in cloud security. The course covers topics such as access management, encryption, and Kubernetes security. These are all important concepts for a Security Engineer to have a solid understanding of.

See salaries and explore the career path for Security Engineer

Information Security Manager

An Information Security Manager is responsible for developing and implementing an organization's information security program. They work with other IT staff to ensure that the organization's computer systems and networks are secure from outside threats. This course may be useful for an Information Security Manager who wants to specialize in cloud security. The course covers topics such as access management, encryption, and Kubernetes security. These are all important concepts for an Information Security Manager to have a solid understanding of.

See salaries and explore the career path for Information Security Manager

Compliance Officer

A Compliance Officer ensures that an organization complies with all applicable laws and regulations. They work with other staff to develop and implement policies and procedures to ensure compliance. This course may be useful for a Compliance Officer who wants to specialize in cloud security. The course covers topics such as access management, encryption, and Kubernetes security. These are all important concepts for a Compliance Officer to have a solid understanding of.

See salaries and explore the career path for Compliance Officer

Security Consultant

Security Consultants protect their client's data and computer systems from unauthorized access. They identify vulnerabilities in a system's software, hardware, or network. Security Consultants also develop security policies and procedures and provide training to employees on security awareness. This course may be useful for a budding Security Consultant, as it delves into the specifics of Cloud Storage controls, API access controls, and encryption. These are all important aspects of security that a Security Consultant should be familiar with.

See salaries and explore the career path for Security Consultant

IT Manager

An IT Manager plans, implements, and manages an organization's IT infrastructure. They work with other IT staff to ensure that the organization's computer systems and networks are running smoothly. This course may be useful for an IT Manager who wants to specialize in cloud security. The course covers topics such as access management, encryption, and Kubernetes security. These are all important concepts for an IT Manager to have a solid understanding of.

See salaries and explore the career path for IT Manager

Risk Manager

A Risk Manager identifies and assesses risks to an organization's computer systems and networks. They work with other IT staff to develop and implement measures to mitigate these risks. This course may be useful for a Risk Manager who wants to specialize in cloud security. The course covers topics such as access management, encryption, and Kubernetes security. These are all important concepts for a Risk Manager to have a solid understanding of.

See salaries and explore the career path for Risk Manager

Information Security Analyst

An Information Security Analyst safeguards an organization's computer systems and networks from outside threats. They monitor networks for suspicious activity, investigate security breaches, and develop and implement security measures. This course may be useful for an aspiring Information Security Analyst, as they would gain insights into encryption, access management, and assessing a system's security posture in a Google Cloud environment.

See salaries and explore the career path for Information Security Analyst

Software Developer

Software Developers design, develop, and test software applications. They work with clients to determine their needs and then design and implement a software solution that meets those needs. This course may be useful for a Software Developer who wants to specialize in cloud security. The course covers topics such as access management, encryption, and Kubernetes security. These are all important concepts for a Software Developer to have a solid understanding of.

See salaries and explore the career path for Software Developer

Forensic Accountant

A Forensic Accountant investigates financial crimes, such as fraud and embezzlement. They use their accounting skills to analyze financial records and identify evidence of wrongdoing. This course may be useful for a Forensic Accountant who wants to specialize in cloud security. The course covers topics such as access management, encryption, and Kubernetes security. These are all important concepts for a Forensic Accountant to have a solid understanding of.

See salaries and explore the career path for Forensic Accountant

Auditor

An Auditor reviews an organization's financial records and other documents to ensure that they are accurate and comply with all applicable laws and regulations. This course may be useful for an Auditor who wants to specialize in cloud security. The course covers topics such as access management, encryption, and Kubernetes security. These are all important concepts for an Auditor to have a solid understanding of.

See salaries and explore the career path for Auditor

DevOps Engineer

A DevOps Engineer works with software developers and IT staff to ensure that software is developed and deployed efficiently. They also work to automate and streamline the software development process. This course may be useful for a DevOps Engineer, as it covers topics such as access management, encryption, and Kubernetes security. These are all important aspects of DevOps that can help an engineer improve their skills and knowledge.

See salaries and explore the career path for DevOps Engineer

Data Scientist

A Data Scientist collects, analyzes, and interprets data to help organizations make better decisions. They use statistical and machine learning techniques to identify trends and patterns in data. This course may be useful for a Data Scientist who wants to specialize in cloud security. The course covers topics such as access management, encryption, and Kubernetes security. These are all important concepts for a Data Scientist to have a solid understanding of.

See salaries and explore the career path for Data Scientist

Quality Assurance Analyst

A Quality Assurance Analyst tests software applications to ensure that they meet the requirements of the client. They also work to identify and fix bugs in software. This course may be useful for a Quality Assurance Analyst who wants to specialize in cloud security. The course covers topics such as access management, encryption, and Kubernetes security. These are all important concepts for a Quality Assurance Analyst to have a solid understanding of.

See salaries and explore the career path for Quality Assurance Analyst