Leanpub Header

Skip to main content

CCSP - Certified Cloud Security Professional: The Complete Study Guide

Mastering Cloud Security Across All Six Domains

This book is 100% completeLast updated on 2026-07-03

Master cloud security with confidence using this comprehensive CCSP study guide. Covering all six CCSP domains, it combines clear explanations, real-world examples, and exam-focused practice to help you succeed on the certification exam while building practical cloud security skills for your career.

Minimum price

$19.00

$29.00

You pay

Author earns

$

Also available for 1 book credit with a Reader Membership

PDF
EPUB
About

About

About the Book

This comprehensive study guide provides complete coverage of the (ISC)2 Certified Cloud Security Professional certification, aligned with the latest Common Body of Knowledge. Designed for IT and cybersecurity professionals at all levels, it combines foundational cloud security concepts with advanced principles, practical implementation guidance across AWS, Azure, and Google Cloud, governance frameworks, risk management, compliance requirements, and exam-focused content including practice questions, scenarios, and a glossary. The goal is not merely rote memorization but genuine mastery of cloud security thinking that serves you both in the exam and throughout your career.

Share this book

Author

About the Author

Steve T. Publications

Steve T. is a cybersecurity leader, researcher, and engineer with more than 20 years of experience across application security, infrastructure security, vulnerability management, software development, and secure engineering practices. Having built his career alongside the growth of the modern internet, he has worked through multiple generations of technology, evolving security threats, and changing development methodologies.

He is currently part of the advanced research organization at a leading cybersecurity company, where he focuses on emerging threats, security innovation, and the practical application of research. His work involves investigating new attack techniques, evaluating emerging technologies, conducting deep technical analysis, and helping organizations better understand and manage complex security risks.

In addition to his research responsibilities, Steve leads a team of senior engineers and subject matter experts who create technical books, training programs, and educational resources for security professionals. Through this work, he helps engineers, developers, architects, and security practitioners strengthen their skills and build more secure systems.

Steve's technical expertise spans software development, reverse engineering, web application security, penetration testing, security architecture, incident response, vulnerability research, operating system internals, and secure software development. His ability to analyze systems at both the source code and binary levels enables him to bridge the worlds of software engineering, security research, and practical defense.

Over the course of his career, Steve has worked with organizations across a wide range of industries, helping them identify, assess, and remediate security weaknesses in critical applications and infrastructure. He is recognized for combining deep technical expertise with a pragmatic approach to security, focusing on solutions that are effective, sustainable, and aligned with business goals.

Through his work in research, engineering, leadership, and education, Steve continues to contribute to the advancement of cybersecurity and the development of secure, resilient technology systems.

Contents

Table of Contents

Mastering Cloud Security Across All Six Domains

Introduction: Your Journey to CCSP Certification

  1. What Is CCSP and Why It Matters
  2. The CCSP Exam Landscape
  3. How to Use This Book
  4. A Note on Cloud Security Thinking

Chapter 1: Cloud Computing Foundations

  1. Defining Cloud Computing and the NIST Model
  2. Essential Characteristics of Cloud Services
  3. Service Models: IaaS, PaaS, SaaS, and Beyond
  4. Deployment Models: Public, Private, Community, Hybrid
  5. The Cloud Ecosystem and Key Roles
  6. Emerging Technologies: AI, IoT, Containers, and Edge Computing
  7. Chapter 1 Summary and Key Takeaways
  8. Review Questions for Chapter 1

Chapter 2: Domain 1 - Cloud Concepts, Architecture, and Design (17%)

  1. Cloud Reference Architecture and ISO/IEC 17789
  2. Security Concepts in Cloud Environments
  3. The Shared Responsibility Model
  4. Secure Cloud Design Principles
  5. Evaluating Cloud Service Providers
  6. Governance Frameworks and Standards
  7. Chapter 2 Summary and Key Takeaways
  8. Review Questions for Chapter 2

Chapter 3: Domain 2 - Cloud Data Security (20%)

  1. The Cloud Data Lifecycle
  2. Data Dispersion and Data Flows
  3. Storage Architectures and Threats
  4. Encryption and Key Management
  5. Hashing, Obfuscation, and Tokenization
  6. Data Loss Prevention
  7. Data Discovery, Classification, and Rights Management
  8. Data Retention, Deletion, and Archiving
  9. Auditability and Traceability
  10. Chapter 3 Summary and Key Takeaways
  11. Review Questions for Chapter 3

Chapter 4: Domain 3 - Cloud Platform and Infrastructure Security (17%)

  1. Cloud Infrastructure Components
  2. Secure Data Center Design
  3. Risk Assessment for Cloud Infrastructure
  4. Security Controls Implementation
  5. Business Continuity and Disaster Recovery Planning
  6. Chapter 4 Summary and Key Takeaways
  7. Review Questions for Chapter 4

Chapter 5: Domain 4 - Cloud Application Security (17%)

  1. Training and Awareness for Cloud Development
  2. The Secure Software Development Life Cycle
  3. Threat Modeling Methodologies
  4. Avoiding Common Vulnerabilities
  5. Software Assurance and Validation
  6. Cryptography and IAM Solutions
  7. Chapter 5 Summary and Key Takeaways
  8. Review Questions for Chapter 5

Chapter 6: Domain 5 - Cloud Security Operations (16%)

  1. Building Physical and Logical Infrastructure
  2. Operating and Maintaining Cloud Environments
  3. Operational Controls and Standards
  4. Digital Forensics in the Cloud
  5. Managing Security Operations Centers
  6. Chapter 6 Summary and Key Takeaways
  7. Review Questions for Chapter 6

Chapter 7: Domain 6 - Legal, Risk, and Compliance (13%)

  1. Legal Requirements and International Law
  2. Privacy Issues and Data Protection Regulations
  3. Audit Processes and Methodologies
  4. Enterprise Risk Management in Cloud Environments
  5. Outsourcing and Contract Design
  6. Chapter 7 Summary and Key Takeaways
  7. Review Questions for Chapter 7

Chapter 8: Identity and Access Management in the Cloud

  1. IAM Fundamentals for Cloud Security
  2. AWS Identity and Access Management
  3. Microsoft Azure Active Directory and Entra ID
  4. Google Cloud Identity Platform
  5. Federation, SSO, and Multi-Factor Authentication
  6. Privileged Access Management
  7. Chapter 8 Summary and Key Takeaways
  8. Review Questions for Chapter 8

Chapter 9: Cloud Security Architecture and Implementation

  1. Designing Secure Cloud Architectures
  2. AWS Security Services Deep Dive
  3. Azure Security Services Deep Dive
  4. Google Cloud Security Services Deep Dive
  5. Multi-Cloud and Hybrid Cloud Security
  6. Infrastructure as Code Security
  7. Chapter 9 Summary and Key Takeaways
  8. Review Questions for Chapter 9

Chapter 10: Incident Response and Digital Forensics in the Cloud

  1. The Incident Response Lifecycle in Cloud Environments
  2. Cloud-Specific Forensic Challenges
  3. Evidence Collection and Preservation
  4. SIEM and Log Management Strategies
  5. Tabletop Exercises and Scenario Planning
  6. Chapter 10 Summary and Key Takeaways
  7. Review Questions for Chapter 10

Chapter 11: Governance, Risk, and Compliance Frameworks

  1. Regulatory Landscape Overview
  2. ISO Standards for Cloud Security
  3. Industry-Specific Compliance Requirements
  4. Privacy Impact Assessments
  5. Third-Party Risk Management
  6. Audit Readiness and Continuous Compliance
  7. Chapter 11 Summary and Key Takeaways
  8. Review Questions for Chapter 11

Chapter 12: Exam Preparation and Practice

  1. Exam Strategy and Test-Taking Tips
  2. Domain-by-Domain Review Checklist
  3. Full-Length Practice Exam
  4. Practice Scenarios with Explanations
  5. Glossary of Key Terms

Conclusion: Beyond the Exam

  1. Delivering on the Promise
  2. The Evolving Cloud Security Landscape
  3. Maintaining Your Certification
  4. Final Thoughts

References

Get the free sample chapters

Click the buttons to get the free sample in PDF or EPUB, or read the sample online here

The Leanpub 60 Day 100% Happiness Guarantee

Within 60 days of purchase you can get a 100% refund on any Leanpub purchase, in two clicks.

See full terms...

Earn $8 on a $10 Purchase, and $16 on a $20 Purchase

We pay 80% royalties on purchases of $7.99 or more, and 80% royalties minus a 50 cent flat fee on purchases between $0.99 and $7.98. You earn $8 on a $10 sale, and $16 on a $20 sale. So, if we sell 5000 non-refunded copies of your book for $20, you'll earn $80,000.

(Yes, some authors have already earned much more than that on Leanpub.)

In fact, authors have earned over $15 million writing, publishing and selling on Leanpub.

Learn more about writing on Leanpub

Free Updates. DRM Free.

If you buy a Leanpub book, you get free updates for as long as the author updates the book! Many authors use Leanpub to publish their books in-progress, while they are writing them. All readers get free updates, regardless of when they bought the book or how much they paid (including free).

Most Leanpub books are available in PDF (for computers) and EPUB (for phones, tablets and Kindle). The formats that a book includes are shown at the top right corner of this page.

Finally, Leanpub books don't have any DRM copy-protection nonsense, so you can easily read them on any supported device.

Learn more about Leanpub's ebook formats and where to read them

Write and Publish on Leanpub

You can use Leanpub to easily write, publish and sell in-progress and completed ebooks and online courses!

Leanpub is a powerful platform for serious authors, combining a simple, elegant writing and publishing workflow with a store focused on selling in-progress ebooks.

Leanpub is a magical typewriter for authors: just write in plain text, and to publish your ebook, just click a button. (Or, if you are producing your ebook your own way, you can even upload your own PDF and/or EPUB files and then publish with one click!) It really is that easy.

Learn more about writing on Leanpub