Pass ISC CCSP Exam in First Attempt Easily

Introduction

1. Introduction

Hello guys. Good morning. My name is Mukish Singh, and in this video series we are going to learn about clot security. So I'm including this video in the preview so you can understand what "clot security" is. Who qualify lify it? So clot security That is called CCSP here. Let's talk about it. The CCSP is a global credential that represents the highest standard for clot security expertise. It was co-created by ISC Square and ClotSecurity Alliance, which is also called CSA. Claude Security Alliance is a nonprofit organization. So they are here with the mission to promote the use of best practices for providing security or assurance within cloud computing. Security is a challenge in terms of technology. So these are the ones here. CSA Claudius, security alliance As a result, CCSP is being reviewed by ANSI to ensure compliance with the stringent requirements of ANSI ISO IEC standard 17 00:24. So who qualifies for this? That's the important question here. Who would qualify this for qualifying this? a minimum of five years' cumulative full-time work experience in information technology. So if you don't have this, then, out of the three years, you should have experience in information security. If you have five years of experience, five years of experience, you have a three years in Information security experience and one year experience in one or more of the six domain of the CCSP common body knowledge. So there are six domains, which we are going to discuss, or I will be keeping those domains on the course hotline as well. From there, you should have knowledge of one or more domains. So with three years of experience and knowledge in one or more domains, you qualify. So earning CSA can substitute for one year of experience in one or more of the six domains of the CCSP and CBK. You can go for it even if you don't have any experience. If you don't have the necessary experience, you can take and pass the CCSP exam to earn an associate ISC 2 designation. So now again examination is the one length of exam will be the four hour number of questions will be 125 multiple choice questions. A passing grade will be 700 to 1000 points. An exam will be available in English, and the testing center will be the PSN v. E testing center. So these are the following domains that need to be covered: number one here, if you look, is architectural concept and designing requirements. 19% here will be covered in the examination data security. The remaining 20% will be covered in the examination. Platform Infrastructure and Security 19 percentage will be in the examination cloud Application Security 15 percentage will be covered in examination operations 15% will be there and Legal and Compliance 12%. So these are the percentage ratios that are going to be covered in the examination here. So if you have experience in one or more domains, this course is for you. So an IST definition of Claude, understand first, Claude. Claude is a model for enabling ubiquitous, convenient, on-demand network access to a shared pool of configurable computing resources that can be rapidly provisioned and released within the minimum management effort or service provider integrations. So let's understand about the Claudehere, let's talk about the Claude. So, when we talk about the Claude, we usually have a mental image of the Claude that looks like Zach Fill. Claude in a painting usually says "the claw," but Claude is there, okay? Now you understand the clot. There is infrastructure within the Claude: large racks, large servers, and networking infrastructure are present in the cloud. And who owns this? The Claudes understand it. So there's an infrastructure, okay, a platform, inside it. So there are three types of Claude does provide the service, three type of services. The terms "infrastructure as a service," "platform as a service," and "software as a service" all refer to this. So cloud provide you these three type infrastructure, platform and software as a service. So what type of Claudes are they? Again, because Claude is what he is, the infrastructure inside it is there, and on demand, you can access it. But again there are types of the Claude. So what are the types of clots? The one type here is called private clot. The other type here is called public clot, and the third one is called hybrid Claude. So basically, there are three types of clots that are there. "Private Claude," "Private Claude is owned by some company, okay?" For example, if this is a private cloud, it is owned by a company and is used for their own personal purposes, as opposed to a public cloud like Azure or Amazon, or many others that provide public services. You can access it; you simply need to use your debit card or credit card, a payment method, and you can access it on demand as per your requirements, which we will discuss later. Hybrid Claude is a combination of private and public. So, in some organizations, they use private cloud and, in addition, they use public cloud for some of their requirements. So that kind of Claude model is called a hybrid Claude. So we will start now with the types of Clots and Claude, what it is, and then Claude security, and we will discuss all six domains in the following slide. So this is the preview video. Thank you. Thank you very much.

Hide

Domain 1 (Architectural Concepts & Design Requirements)

1. Virtualization

So, in the previous session, we talked about the Claude, what it is, and the different types of clots. Let's start with the virtualization defined here. Okay, so in virtualization, "virtual" means it is not physical. So here you can see this is a server physical server hardware, hardware. On the top of the server hardware the software has been installed and the software name is written here, VMware ESXi. This ESXi is a host. We also called it "host," and that is basically a hypervisor. We will discuss in an upcoming slide what Hypervisor is and what this host is. But on top of the hypervisor we are using here, we are installing operating systems. So there's one operating system, another operating system, and another one. This hypervisor allows us to run multiple operating systems on the same physical hardware. On top of the hardware, we are using the applications. So this is virtualization. So virtualization is basically for server consolidation. Server consolidation. Let's discuss here. This is your server. Now this is a server, and on one server you need multiple operating systems. For example, you need five different machines—five different servers. So buying five different servers could be expensive. So what we will do is you will buy a high endserver which can handle the load for all the five servers. So what user will do is user will install a hypervisor which is HyperV product from the Microsoft or which is VMware ESXi. So that will allow you to allocate virtual RAM, virtual hard drives, and virtual processors for each individual operating system. So the benefit of this is that it is very simple and easy to manage for system administrators. Okay? Second is saving of power and administration is easy. The third user, whoever is accessing these all servers, will have no idea whether they are on a single machine or on multiple machines. So you are saving your resources. So, in this context, "virtualization" is defined as an abstraction layer that abstracts your hardware and operating systems. So the OS is abstracted from the hardware. So right now, if you look here, this is an operating system. Here an operating system is obstructed from hardware like we are not installing directly here the OS. So on top of the hardware, we are installing a hypervisor. That hypervisor helps us manage, control, and allocate virtual RAM, microserv, and hard drives to those machines. Okay? So the most common form of virtualization is called server virtualization. There are numerous virtualizations present. So OS no longer has to be bond to the server or PC that runs on it. So let's talk about this, the benefit of this like what we will be benefit we will be getting with this. For example, this is your server. If you bind your operating system, for example, you are installing Windows Server 2016 directly on this server. So in future you need a server upgrade or there is another crash could happen or multiple things to be there. But if you are using this another method like for example if you are using this one and you are using two different servers for example and you are using here multiple OS, you are using VMware on it, Hypervisor on it. So these machines are here, and VMware machines are just like a file. Okay? We will allow you to backup and replicate your files. You can transfer them to another machine at any time. So this is your Windows Server 2012. It's for Linux, and it's your web server. So this is your physical server. You can have backups and replication. You can move them to another machine as well as quickly. The second thing is that it's easy to manage, easy to administer, and in case you need a hardware change, your machines are not directly installed on the hardware. So, if there is a power outage or a crash of this entire hardware, and you are using backup and auto application mode, the user will remain connected to the server. Instead of going here, they will be connecting to another server, and then they will keep getting their services. So there are very good plus points for using virtualization here. Okay, so virtualization is defined here. Let's see, one is a physical server. What does our physical server have? The physical server is having amicrocessor Ram and input output device. Okay. And there is a motherboard as well. So on top of the physical server, as we have discussed earlier as well, what we will do is, on top of the physical server, install VMware SXI, which is called Hypervisor. That is called a hypervisor. So, what does a hypervisor do? Does it provide a virtual? He will make a virtual CPU, a virtual RAM, and a virtual input/output device. He will make a virtual machine, or virtual hardware. On top of that hardware you can install your own operating system which could be either Linux platform or either Windows or anything. And on top of that, you can install applications on the other side, also saying this VMware ASEX Icreated one machine, this machine is having a virtualCPU, virtual Ram, input output device, OS and application. But where this virtual CPU is coming? This virtual CPU is coming from here only. RAM is coming from here only, and input and output devices are here only. But who manages all that? That is called VMware ESXi. Okay? So server virtualization understand it server virtualization makes it possible for operating system of a physical server OS of a physical server to run on virtual layer that is called Hypervisor. This allows you to run multiple virtual machines, also called "virtual machines," each with their own operating system on the same physical server. So if you have the same physical server and you want to run multiple operating systems, each operating system could be its own. One is a Linux server, another is an Exchange server, another is a web server, another is MS SQL, and yet another is Oracle. You can do that. But for that, you need a hypervisor. You need server virtualization, and server virtualization does that. So, with a virtual machine, each guest operating system running on the host virtual machine is a physical server with virtualization. So this is called a virtual host, a physical server with a virtualization layer. So, the definition of a hypervisor Now, hypervisor is create the virtualization layer that makes virtualization possible. Okay? So if you are able to install multiple operating systems on a machine, that is possible because of the hypervisor; it contains the virtual machine monitor (VM). So you can monitor all the virtual machines, the load, the usage, and everything. So, there are two types of hypervisors. These are the two companies right now here: one is called VMware ESXi, the company name is VMware, and virtualization is ESXi. And another one is going, called HyperVand, that is a Microsoft company. So we will talk about the types of virtualization and all that in the upcoming slide. Thank you very much for watching this session.

2. Hypervisior & types

Hello guys. Good morning. My name is Muki Singh, and we are learning CCSP Website Security. In the last presentation and video, we learned about the type of hypervisor. Here I'm explaining the types of hypervisor. Basically, there are two types of hypervisor. The number one is type one. Another one is a type II hypervisor. So, if you ask me right now which is the best hypervisor, I would say that the type 1 hypervisor is superior to the type 2. I won't recommend it, but they have their own advantages and disadvantages. Type one hypervisor is basically like assuming this is your server, okay? So this is server hardware on top of your server and hardware. This is your server hardware. On top of that, if you are installing on top of your server, if you are installing directly—like HyperV, VMware, Es Xi, or Linux KVM—if you're installing these directly on the hardware, that means this is a type I hypervisor. It is the best and most secure option when compared to others. Let's talk about the type-two hypervisor. In a type-two hypervisor, this is your server. On top of your server, you install the OS (operating system). For example, you can take the example of Windows 10, or you can take the example of Windows Server 2016, or you can take the example of Linux—any operating system you install—on top of the operating system you are installing a hypervisor on. So a hypervisor is a VMware workstation? Is there a workstation? Is there a virtual box? Is there an Oracle? Is there like parallel and fusions are there? So on top of this hypervisor, you install the OS for multiple virtual multiple OS. So what happened here is that your machine has a base machine that has an operating system. On top of that, you are installing Hypervisor. And then again, on top of the hypervisor, you are installing the operating system. So it's not secure. Maybe there's a virus attack on this operating system, or there may be multiple issues with that. Or maybe if somebody attacked your machine, like if somebody attacked this machine, he could get all the operating systems because operating systems and virtual machines are just files that are stored somewhere, maybe here, so he could get them as well. So basically, there are two types of hypervisors, one and two. I hope it's clear. So again here, if you look to this one, type one diagram has been given, hardware is there. like your server is there. You have a hypervisor on top of the server, and an operating system on top of the hypervisor. It's on you if you are using multiple OSes or one, two, or many. So that's the type one. But in type two, again, what we have discussed in the last one, hardware is there. On the hardware there is an operating system, and on top of the operating system there is a hypervisor, okay? The hypervisor then contains an operating system once more. So if you're talking about the data center environment or company environment as the best, or if you're talking about a home or learning environment, you can use that too. So, how do I administer enterprise virtualization? Look at this one again, graphics here, physical server, your physical server here, RAM memory servers, and so on. And on top of it, there's an infrastructure service, okay? Then there's VMware vSand application service on top of that. V center is present; v center is present. And then on top of the V center there are application virtualization. As a result, V Center can also be used as a service for desktop dashboards. But we are not talking about it more deeply right now. Let's move to the next slide. So other types of virtualization exist—desktop, network, storage, and application. So here's storage virtualization. Application virtualization like VMware also provide and Cedric also provide citrics an . So here'Network virtualization is there. In VMware, you can create your own switch and connect it to the multiple virtual machines' input and output devices, okay? Storage virtualization is there. You can divide one physical hard drive into the multiple disk two, disk three similar way extra virtualization is there. It's very successful for client-server models where you have hundreds of clients who are thin clients. Okay, you're connected with the switch here and you're reusing a server; maybe you're using multiple servers. You can say "es six I host and another server here is what does it do? Is it creating multiple desktops as a service that is called "dash desktop" as a service? How many machine I have right now? 12345 six. So it will create six different machines here, 12345 six, and they can connect and access the particular machine. So individual machines do have their own desktop service, which is called desktop as a service. So, that's enough. We will discuss it in the next video.

3. Cloud Computing & types

Hey guys, good morning. Let's discuss this server. Virtualization saves the admin. What does it say? Server virtualization is not something new these days, but it's very important for your server. But virtualization is useful in your enterprise network because it makes it very easy to add a new server to your network. Okay? Adding a new server is easy. It only takes a few clicks to create a new virtual machine and add a new server. Second, does it reduce the maintenance time? Maintenance is very easy. High availability (always available), virtual machine migration from one server to another, automatic load balancing, and disaster recovery So let's talk about how we can add a new server. For example, this is our physical server, okay? If you're using ESXi on a physical server, you've installed it here; this is connected to the switch, and we've connected multiple computers to the switch. Okay? So what happened is that to configure this ESXi host, you need to have a VSphere client installed, or you can use the web-based interface to configure this machine; you simply access this server. Okay? Here, in the box like access, you simply click. Start a new machine, give the RAM, microprocessor, and everything else to it, and you can start a Windows Server 2016 and an Exchange Server. You can add a Linux system in just a few clicks with the help of an ISO image, and it will be ready in minutes. So adding a new server is easy. reduce maintenance costs Maintaining is simple because you are only responsible for one server rather than multiple servers. So administration is easy, and maintenance is easy. High availability is always available, and you're moving VMs from one server to another, so what can you do? You can do one more thing; you can add one more server, okay? And you can do some sort of replication failover application on this machine while it is running for a VM. You can move all those VMs to another server, and later on you can format it or replace this server or do whatever you can do.So that's something very easy to do for moving the entire virtual machine. Load balancing and balancing are two machines that we can use here and there. The load is easy, or load balancing can also be done if you have multiple OS, and as per the usage, you can manage it from the VSP client, and it also gives you a disaster recovery plan. So what is Clawed Computing? Now? Let's get back to cloud computing after the virtualization concept is clear; there is a Claude here if you can see it. A Claude? Claude has a collection for everything. everything and the kitchen sink. Everything. Your database is there. Your application server is there. Your coding is there. Mobile access is there. PC is there. Kitchen: sync everything you want to access—you can get it from the clock. If you want SQL Server, instead of buying a server, getting a license, and installing it, you can directly access it by simply going to Microsoft.com Open it as you pay for a monthly subscription or pay as you go and access it. So Claude is the collector of everything. It is basically infrastructure as a service, platform as a service, and software as a service. The rest will be covered in subsequent slides. So let's see, last year we recognized that our processes were too complex. So, managing your network is not very easy. So it's very complex. Assume you have 100 servers within your organization, and who can access them, who grants permissions to whom, and multiple servers and multiple engineers are present but do not have a clot, so we place them in the clot. With a Clot, there's a Claude administrator who can give access to the clients who can access the Clot, and you can access the Clot from anywhere in the world. That's a good thing. And it offers you very good security and safety features as well, like where you want to access this or disaster recovery. Like for example, my Claude is in USAEast so there is a hurricane or there is a disaster like earthquake or a fire. In this case, you can have a backup somewhere in the West US that is also in the clock. So we will discuss those in the coming slides again. So, as we have already earlier discussed, cloud computing is some kind of hosted service, and there are three. First one is infrastructure as a service, platform as a service and software as a service. These are the three major parts of our clock. Recently, Microsoft stated that he wishes to provide this desktop as a service to VMware, which already provides this service under the name Horizon View. I think it's a seven or eight version these days. It's a seven-horizon view, and it has a service. So there are three. We will be talking in detail. So first, we'll later on go to those infrastructure platforms, software, and desktops and offer them as a service. There are three types of clients right now. If you see private cloud, private Claude is your own VMware or anything; your machines are there; your right infrastructure is there; it could be anything—an infrastructure platform, software, or whatever the public cloud is. Claudes, for Microsoft Claude of Azure Claude for Amazon Claude for Google, among many other acceptable and hybrid candidates Claudia, you may be using some of the private services and some of the public services. Suppose you're private, Claude, but you are also using public cloud services. So that is called a hybrid cloud. So let's see infrastructure as a service, which we'll discuss in the next slide. Thank you.

4. IAAS, PASS

Hey guys, this is infrastructure as service. Who offers this service? Amazon WebServices microsoft Windows Azure VMware V, Claude Hybrid Rackspace Claude and the Sky Tap. Those are the major vendors who offer infrastructure as a service. So let me explain it to you, such as what it is, and let's see if this is the server you're looking for: Windows Server 2016. Okay? First of all, for that, you need to buy hardware. You are looking to start a business; you need to buy hardware, but hardware costs money, and you are not sure if it's a good idea to invest in that business or not. Rather than buying it? Rather than buying it, what we do is go to any of the vendors like Microsoft Azure, okay? There, we use our card, and we buy a machine on the clot. Okay? So the machine is now on the cloth. They already have infrastructure inside Microsoft. We are just connected to the Internet service provider, and this is our company. This is our company's building. We're just using our laptop. We go to the Microsoft Store, and we buy a server. We decided on RAM; we need 32GB of RAM, a seven-microprocessor system, and two terabytes of memory; and we buy it. And the best thing about this is that you pay as you go. So rather than buying something for $5,000, we can buy it for maybe $100 or $200 a month. And that's what infrastructure as a service is. Similar way you can buy a Linux server and many but in the cloud security why we will discuss buying a server or renting a server is something we can deal with. Suppose you are using multiple servers, so you are keeping backups. So, in Microsoft Azure, this is supposed to be one physical server. So you should not buy all the servers here, or maybe you are using them. So backups should not be kept on the same server here. Backup could be on a different server within the infrastructure, or it could be on a different continent, such as in the east, with the backup in the west. So in case there's a disaster recovery, be there. But we're not talking about backup and recovery right now. We just learned about infrastructure as a service. Next is software as a service. and I think you are pretty much familiar with it. the Google Drive. Okay, Google Drive will give you, I think, five to 10 GB (15 GB) of free space. Google Drive is you can access it from your mobile, you can access it through your laptop, you can access it through your desktop computer. So if you save some file in your Google Drive, same file you can go home and access it from your mobile and access it from your laptop. It's icloud, it's a dropbox Gmail, the box salesforce. So those are the public clouds, and you can access them from anywhere. You can use them. For what? Storing your blic cloudOr that's the one for emailing and all that. Because Gmail is software as a service, there are five top benefits of server virtualization to discuss here: it saves you time and makes you more efficient. Maximize ROI on data center, Howard hardware, simplified Dr business, agility, faster server development and first step in the plot. Thank you.

5. Cloud Features

Hey guys, welcome to my session. We will be talking in this session is a Claude features. So Claude is nothing but a metaphor for the Internet. The feature of Claude is on demandself service, broad network access, resource pooling, rapid elasticity and measured service. So, for example, if you are using a server and require more computing power or storage in that server, you can do so without first consulting with the provider. Okay? So whatever you are looking for, if the provider is offering it, you can get it instantly. Okay. Second is a broad network access. Broad network access means you will not face a network bandwidth problem with the service. Provider are using multiple technologies like load balancers, use load balancers to balance your load load balancer or he's using multisite hosting he's hosting your software or a site or a platform on a multi site hosting multi site hosting Resource pooling is what he will look forward to for you; he can provide you multiple things, and his provider will try to provide you everything, whatever you are looking for. Okay? Rapid elasticity here means the server can quickly provision and decommission based on your needs. So let me give you one example for this: For example, server, okay? This is your server. This is the server of Amazon. For example, just take any website and see if it is connected to the load balancer or whatever. It is connected to the ISP. And here also, your multiple ISPs are Internet service providers, and somewhere you are somewhere So you are accessing it in your home, or it may be on your cell phone. You are accessing the website. So Amazon is offering the sale for two days. The sale lasts two days, similar to another shopping site called Flip Card. They offer "Big Billion Day," "One Day Sale," and "One Day Sale." That is called "Big Billion Day." Okay, so what happened is that they launched some sort of promotion or multiple things in one day. So what happened is that hundreds of thousands of users from all over the internet tried to take advantage of the sales and then tried to purchase items over the server. Because Amazon has been advertising that particular date. For example, on September 9, there is a sale day. So, if all users try to browse this site, it will be closed because a single server cannot handle all of the load. So if it is on a Claude, what they will do is create multiple instances here. They can create two servers, set a policy if the server load exceeds 70% or 60%, and then add four or eight more servers here. So the old user will not export whenever the other user is here, whenever they browse it, with the help of a load balancer here Some will be directed to this server, some will be directed to others, and some will be directed to others, so that way the user will not experience the site's dawn or other issues. But the advantage of this with Claude is after the sale day is over. When the big billion days are up, the servers are automatically deleted, and he only has to pay for one day for those four servers he's using, so that's the best feature. I think with the clots, I am only paying for a particular day, so that is their rapid elasticity, and my third service is there again, sorry. Meter service It's also known as the Myzard or Meter Service. It's the same in this one. This is a meter service or measured service, which simply means the customer is charged only for what they use and nothing more, and this is much like how a water or power company might charge you each month for the service used. So we've learned from rapid elasticity that whatever you've charged or whatever you're using will be charged for you. So that is a measured service. Thank you very much, guys.

Hide