CSA-Aligned · HRDC Claimable

CCSK Cloud Security Knowledge Training Malaysia

2-day intensive on the Cloud Security Alliance's vendor-neutral cloud security baseline. Built for Malaysian cloud architects, DevSecOps engineers and GRC analysts working across AWS, Azure and Google Cloud.

Reserve a Seat Talk to an Expert

Why CCSK

Malaysia's public cloud adoption is accelerating: AWS opened its Malaysia region in 2024, Microsoft and Google have local regions in build-out, and Bank Negara's 2023 RMiT revision normalised cloud usage by financial institutions subject to outsourcing controls. The result is a cohort of Malaysian engineers who are operating production workloads on cloud daily but who learned security in an on-premise model — and now have to defend a shared-responsibility, API-driven, infinitely-mutable estate.

CCSK closes that gap with a deliberately vendor-neutral curriculum. Two days walks you through the full CSA Security Guidance v4 — architecture, governance, legal, compliance, risk management, IAM, virtualisation, IR, application security, encryption, security as a service. The framework binds it all to the Cloud Controls Matrix (CCM) v4 and the ENISA cloud risk model so you leave with a control set you can map directly into a Malaysian PDPA / ISO 27001 / RMiT control library.

For practitioners who will run the offensive side of cloud assurance, the natural follow-on is cloud penetration testing engagements — where this CCM-aligned vocabulary becomes the basis for scoping and remediation.

Course structure — 2 days

Day 1 (AM)

Architecture, governance, legal

Cloud computing concepts and architecture, governance and enterprise risk management, legal issues and electronic discovery, compliance and audit management.

Day 1 (PM)

Information governance, IR, application security

Information governance, incident response readiness in cloud, application security in CI/CD pipelines, data security and encryption fundamentals.

Day 2 (AM)

IAM, virtualisation, security-as-a-service

Identity, entitlement and access management (IAM), virtualisation and containers, security as a service (SECaaS), related technologies (BCDR, IoT, mobile).

Day 2 (PM)

CCM walk-through, exam prep, exam

Cloud Controls Matrix v4 walk-through, ENISA risk method, exam technique, online proctored exam (60 minutes, 60 questions, 80% pass mark).

Who should attend

• Cloud architects responsible for AWS / Azure / GCP landing zones
• DevSecOps engineers integrating security into CI/CD pipelines
• Security engineers operating cloud-native SIEM / CSPM / CWPP tooling
• GRC analysts mapping cloud risk into ISO 27001, PDPA and RMiT controls
• Internal auditors building a first cloud audit programme
• Consultants advising Malaysian clients on cloud migration security

Schedule

Format: 2 consecutive days, in-person Kuala Lumpur or virtual instructor-led

Class size: capped at 18 participants

Trainer: Cloud security architect with multi-cloud production experience and CCSK + CCSP credentials

Includes: Official CSA Security Guidance v4, CCM v4 reference pack, exam token, lunch & refreshments

HRDC: SBL-Khas claimable

In-house: Available on demand for cohorts of 8+ — we tailor case studies to your live cloud estate

Frequently asked questions

What is the CCSK?

The Certificate of Cloud Security Knowledge (CCSK) is a vendor-neutral cloud security credential issued by the Cloud Security Alliance (CSA). It tests against the CSA Security Guidance v4, the Cloud Controls Matrix (CCM) v4, and the ENISA Cloud Computing Risk Assessment. CCSK is widely regarded as the foundational cloud security credential — it sits underneath provider-specific certs (AWS Security Specialty, Azure SC-100, Google Professional Cloud Security Engineer) and underneath the practitioner-grade CCSP from (ISC)².

Who should attend?

Cloud architects and platform engineers, DevSecOps practitioners, security engineers responsible for AWS / Azure / GCP environments, GRC analysts mapping cloud risk, internal auditors building a cloud audit programme, and consultants advising clients on cloud migration security.

Are there prerequisites?

No formal prerequisite. We recommend at least 12 months of hands-on cloud exposure (IaaS, PaaS or SaaS administration) and prior security fundamentals (Security+, CISSP Domain 1, or equivalent). Without that, the pace of two days will feel compressed.

Is the exam included?

The CCSK exam is delivered online by CSA on a separate token. We include the exam token in our package by default — confirm at enrolment if you would like the exam-excluded option (lower fee).

How does CCSK relate to provider-specific certifications?

CCSK is the vendor-neutral foundation. It teaches you the discipline (shared responsibility, encryption, IAM, incident response, virtualisation security) without binding you to any one provider's console. It is the right credential before — or alongside — provider-specific certifications, and it is what lets a security architect speak credibly across a multi-cloud or hybrid estate.

Get the CSA cloud security baseline

Two days, vendor-neutral, exam included. Ready to put the framework into action? See cloud penetration testing →

Reserve a Seat