Leanpub Header

Skip to main content

CCSP: The Last Mile

Your guide to the finish line

This book is 100% completeLast updated on 2026-07-01

The book covers every topic in the latest CCSP exam syllabus, with more than 400 pages organized in a format that makes it easy to drill down on specific exam domains and concepts at-a-glance, making it an essential exam resource for anyone who aims to prepare for the exam without wasting time or money.

Minimum price

$9.99

$14.99

You pay

Author earns

$

Also available for 1 book credit with a Reader Membership

PDF
EPUB
WEB
APP
About

About

About the Book

Like his popular CCSP exam prep series on YouTube, "CCSP: The Last Mile" is designed as a consolidated reference that makes advanced exam topics accessible, bringing focus to important exam topics, revealing the "what and why" of key exam concepts without wasting time or space.

Share this book

Author

About the Author

Contents

Table of Contents

Preface (Read this first!)

  1. Legend
  2. What’s New in the August 2026 Exam
  3. Exam Prep Strategy
  4. Exam Mindset
  5. Time management
  6. Evaluating Exam Answers (The READ Strategy)
  7. Recommended Study Materials
  8. Books
  9. Practice Questions
  10. Video Training
  11. Flashcards

Domain 1: Cloud Concepts, Architecture and Design

  1. 1.1 Understand Cloud Computing Concepts
  2. 1.1.1 Cloud Computing Definitions
  3. 1.1.2 Cloud Computing Roles
  4. 1.1.3 Essential Cloud Computing Characteristics
  5. 1.1.4 Building Block Technologies
  6. 1.2 Describe Cloud Reference Architecture
  7. 1.2.1 Cloud Computing Activities
  8. 1.2.2 Cloud Service Capabilities
  9. 1.2.3 Cloud Service Categories
  10. 1.2.4 Cloud Deployment Models
  11. 1.2.5 Cloud Shared Considerations
  12. 1.2.6 Impact of Related Technologies
  13. 1.3 Understand Security Concepts Relevant to Cloud Computing
  14. 1.3.1 Cryptography and Key Management
  15. 1.3.2 Identity and Access Control
  16. 1.3.3 Data and Media Sanitization
  17. 1.3.4 Network Security
  18. 1.3.5 Virtualization Security
  19. 1.3.6 Common Cloud Threats
  20. 1.3.7 Security hygiene
  21. 1.4 Understand Design Principles of Secure Cloud Computing
  22. 1.4.1 Cloud Secure Data Lifecycle
  23. 1.4.2 Cloud-based Disaster Recovery (DR) and Business Continuity (BC)
  24. 1.4.3 Cost Benefit Analysis
  25. 1.4.4 Functional Security Requirements
  26. 1.4.5 Security Considerations for Different Cloud Categories
  27. 1.4.6 Cloud Design Patterns
  28. 1.4.7 DevOps Security
  29. 1.5 Evaluate Cloud Service Providers
  30. 1.5.1 Verification Against Criteria
  31. 1.5.2 System/Subsystem Product Certifications
  32. Vendor Management and Assessment
  33. Security Governance
  34. 1.6 Comprehend Artificial Intelligence (AI)/Machine Learning (ML)
  35. 1.6.1 Cloud Threat Detection and Analysis
  36. 1.6.2 Data Source Validation and Verification
  37. 1.6.3 Security Orchestration, Automation And Response (SOAR)
  38. 1.6.4 Ethical Concerns
  39. 1.6.5 Regulatory Requirements

Domain 2: Cloud Data Security

  1. 2.1 Describe Cloud Data Concepts
  2. Security Fundamentals: CIA Triad and Beyond
  3. Data Security Roles
  4. 2.1.1 Cloud Data Life Cycle Phases
  5. 2.1.2 Data Dispersion
  6. 2.1.3 Data Flows
  7. 2.2 Design and Implement Cloud Data Storage Architectures
  8. 2.2.1 Storage Types
  9. 2.2.2 Threats to Storage Types
  10. 2.3 Design and Apply Data Security Technologies and Strategies
  11. 2.3.1 Encryption and Key Management
  12. 2.3.2 Hashing
  13. 2.3.3 Data Obfuscation
  14. 2.3.4 Tokenization
  15. 2.3.5 Data Loss Prevention (DLP)
  16. 2.3.6 Keys, Secrets, and Certificates Management
  17. 2.4 Implement Data Discovery
  18. Data Storage and Analytics Concepts
  19. Data Types and Discovery Challenges
  20. 2.4.1 Structured Data
  21. 2.4.2 Unstructured Data
  22. 2.4.3 Semi-Structured Data
  23. 2.4.4 Data Location
  24. 2.5 Implement Data Classification
  25. 2.5.1 Data Classification Policies
  26. 2.5.2 Data Mapping
  27. 2.5.3 Data Labeling and Tagging
  28. 2.6 Design and Implement Information Rights Management (IRM)
  29. 2.6.1 Objectives
  30. 2.6.2 Appropriate Tools
  31. 2.7 Plan and Implement Data Retention, Deletion, and Archiving Policies
  32. 2.7.1 Data Retention Policies
  33. 2.7.2 Data Deletion Procedures and Mechanisms
  34. 2.7.3 Data Archiving Procedures and Mechanisms
  35. 2.7.4 Legal Hold
  36. 2.8 Design and Implement Auditability, Traceability, and Accountability of Data Events
  37. 2.8.1 Definition of Event Sources and Requirement of Identity Attribution
  38. 2.8.2 Logging, Storage and Analysis of Data Events
  39. 2.8.3 Chain of Custody and Non-Repudiation
  40. 2.9 Comprehend Data Protection of Artificial Intelligence (AI) and Machine Learning (ML) Data
  41. 2.9.1 Data Set and Model Privacy
  42. 2.9.2 Data Set and Model Security

Domain 3: Cloud Platform and Infrastructure Security

  1. 3.1 Comprehend Cloud Infrastructure Components
  2. 3.1.1 Physical Environment
  3. 3.1.2 Network and Communications
  4. 3.1.3 Compute
  5. 3.1.4 Virtualization
  6. 3.1.5 Storage
  7. 3.1.6 Management Plane
  8. 3.2 Design a Secure Data Center
  9. 3.2.1 Logical Design
  10. 3.2.2 Physical Design
  11. 3.2.3 Environmental Design
  12. 3.2.4 Design Resilience
  13. 3.3 Analyze Risks Associated with Cloud Infrastructure
  14. 3.3.1 Risk Assessment and Analysis
  15. 3.3.2 Cloud Vulnerabilities, Threats and Attacks
  16. 3.3.3 Risk Treatment Strategies
  17. 3.4 Design and Plan Security Controls
  18. 3.4.1 Physical and Environmental Protection
  19. 3.4.2 System and Communication Protection
  20. 3.4.3 Identification, Authentication and Authorization in Cloud Infrastructure
  21. 3.4.4 Audit Mechanisms
  22. 3.5 Plan Disaster Recovery (DR) and Business Continuity (BC)
  23. BC and DR Definitions
  24. 3.5.1 Business Continuity/Disaster Recovery Strategy
  25. 3.5.2 Business Requirements
  26. 3.5.3 Creation, Implementation and Testing of Plan

Domain 4: Cloud Application Security

  1. 4.1 Advocate Training and Awareness for Application Security
  2. 4.1.1 Cloud Development Basics
  3. 4.1.2 Common Pitfalls
  4. 4.1.3 Common Cloud Vulnerabilities
  5. 4.2 Describe the Secure Software Development Life Cycle (SDLC) Process
  6. 4.2.1 Business Requirements
  7. 4.2.2 Phases and Methodologies
  8. 4.3 Apply the Secure Software Development Life Cycle (SDLC)
  9. 4.3.1 Cloud-specific Risks
  10. 4.3.2 Threat Modeling
  11. 4.3.3 Avoid Common Vulnerabilities During Development
  12. 4.3.5 Software Configuration Management and Versioning
  13. 4.4 Apply Cloud Software Assurance and Validation
  14. 4.4.1 Functional Testing
  15. 4.4.2 Security Testing Methodologies
  16. 4.4.3 Quality Assurance (QA)
  17. 4.4.4 Abuse Case Testing
  18. 4.5 Use Verified Secure Software
  19. 4.5.1 Approved Application Programming Interfaces (API)
  20. 4.5.2 Supply-chain Management
  21. 4.5.3 Third-party Software Management
  22. 4.5.4 Validated Open Source Software
  23. 4.6 Comprehend and Apply the Specifics of Cloud Application Architecture
  24. 4.6.1 Supplemental Security Components
  25. 4.6.2 Cryptography
  26. 4.6.3 Sandboxing
  27. 4.6.4 Application Virtualization and Orchestration
  28. 4.7 Design Appropriate Identity and Access Management (IAM) Solutions
  29. 4.7.1 Federated Identity
  30. 4.7.2 Identity Providers (IdP)
  31. 4.7.3 Single Sign-On (SSO)
  32. 4.7.4 Multifactor Authentication (MFA)
  33. 4.7.5 Cloud Access Security Broker (CASB)
  34. 4.7.6 Secrets, Key, and Certificate Management

Domain 5: Cloud Security Operations

  1. 5.1 Build and Implement Physical and Logical Infrastructure for Cloud Environment
  2. 5.1.1 Hardware Specific Security Configuration Requirements
  3. 5.1.2 Secure by Default
  4. 5.1.3 Installation and Configuration of Management Plane Tools
  5. 5.1.4 Virtual Hardware Specific Security Configuration Requirements
  6. 5.1.5 Installation of Guest Operating System Virtualization Toolsets
  7. 5.2 Operate and Maintain Physical and Logical Infrastructure for Cloud Environment
  8. 5.2.1 Access Controls for Local and Remote Access
  9. 5.2.2 Secure Network Configuration
  10. 5.2.3 Network Security Controls
  11. 5.2.4 Operating System (OS) Hardening
  12. 5.2.5 Patch Management
  13. 5.2.6 Availability of Clustered Hosts
  14. 5.2.7 Availability of Guest Operating System (OS)
  15. 5.2.8 Performance and Capacity Monitoring
  16. 5.2.9 Hardware Monitoring
  17. 5.2.10 Configuration of Host and Guest OS Backup and Restore Functions
  18. 5.2.11 Management Plane
  19. 5.3 Implement Operational Controls and Standards
  20. 5.3.1 Change Management
  21. 5.3.2 Continuity Management
  22. 5.3.3 Information Security Management
  23. 5.3.4 Continual Service Improvement Management
  24. 5.3.5 Incident Management
  25. 5.3.6 Problem Management
  26. 5.3.7 Release Management
  27. 5.3.8 Deployment Management
  28. 5.3.9 Configuration Management
  29. 5.3.10 Service-Level Management
  30. 5.3.11 Availability Management
  31. 5.3.12 Capacity Management
  32. 5.4 Support Digital Forensics
  33. 5.4.1 Forensic Data Collection Methodologies
  34. 5.4.2 Evidence Management
  35. 5.4.3 Collecting, Acquiring, and Preserving Digital Evidence
  36. 5.5 Manage Communication with Relevant Parties
  37. 5.5.1 Vendors
  38. 5.5.2 Customers
  39. 5.5.3 Partners
  40. 5.5.4 Regulators
  41. 5.5.5 Other Stakeholders
  42. 5.6 Manage Security Operations
  43. 5.6.1 Security Operations Center (SOC)
  44. 5.6.2 Intelligent Monitoring of Security Controls
  45. 5.6.3 Log Capture and Analysis
  46. 5.6.4 Incident Response (IR)
  47. 5.6.5 Vulnerability Assessments
  48. 5.6.6 Penetration Testing
  49. Vulnerability Assessment vs Penetration Testing

Domain 6: Legal, Risk, and Compliance

  1. 6.1 Articulate Legal Requirements and Unique Risks within the Cloud Environment
  2. 6.1.1 Conflicting International Legislation
  3. 6.1.2 Evaluation of Legal Risks Specific to Cloud Computing
  4. 6.1.3 Legal and Regulatory Frameworks and Guidelines
  5. 6.1.4 eDiscovery
  6. 6.1.5 Forensics Requirements
  7. 6.2 Understand Privacy Requirements
  8. 6.2.1 Difference Between Contractual and Regulated Private Data
  9. 6.2.2 Country-Specific Legislation Related to Private Data
  10. 6.2.3 Jurisdictional Differences in Data Privacy
  11. 6.2.4 Standard Privacy Requirements
  12. 6.2.5 Privacy Impact Assessments (PIA)
  13. 6.3 Understand Audit Processes, Methodologies, and Required Adaptations for a Cloud Environment
  14. 6.3.1 Internal and External Audit Controls
  15. 6.3.2 Impact of Audit Requirements
  16. 6.3.3 Identify Assurance Challenges of Virtualization and Cloud
  17. 6.3.4 Types of Audit Reports
  18. 6.3.5 Restrictions of Audit Scope Statements
  19. 6.3.6 Gap Analysis
  20. 6.3.7 Audit Planning
  21. 6.3.8 Internal Information Security Management System (ISMS)
  22. 6.3.9 Internal Information Security Controls System
  23. 6.3.10 Policies
  24. 6.3.11 Identification and Involvement of Relevant Stakeholders
  25. 6.3.12 Specialized Compliance Requirements for Highly-Regulated Industries
  26. 6.3.13 Impact of Distributed Information Technology (IT) Model
  27. 6.4 Understand Implications of Cloud to Enterprise Risk Management
  28. 6.4.1 Assess Providers Risk Management Programs
  29. 6.4.2 Difference Between Data Roles
  30. 6.4.3 Regulatory Transparency Requirements
  31. 6.4.4 Risk Treatment
  32. 6.4.5 Different Risk Frameworks
  33. 6.4.6 Metrics for Risk Management
  34. 6.4.7 Assessment of Risk Environment
  35. 6.5 Understand Outsourcing and Cloud Contract Design
  36. 6.5.1 Business Requirements
  37. 6.5.2 Vendor Management
  38. 6.5.3 Contract Management
  39. 6.5.4 Supply-Chain Management
  40. Government Cloud Standards

Addendum A - Standards and Frameworks

  1. Cloud definitions and reference architectures
  2. Descriptions
  3. Audit, assurance, and product evaluation
  4. Descriptions
  5. Information security and cloud-specific ISO/IEC standards
  6. Descriptions
  7. Digital forensics and eDiscovery
  8. Descriptions
  9. Risk management and governance
  10. Descriptions
  11. Architecture and operations frameworks
  12. Descriptions
  13. Incident response and log management
  14. Descriptions
  15. Privacy laws, frameworks, and impact assessment
  16. Descriptions
  17. Application security, OWASP, SANS, MITRE
  18. Descriptions

The Leanpub 60 Day 100% Happiness Guarantee

Within 60 days of purchase you can get a 100% refund on any Leanpub purchase, in two clicks.

See full terms...

Earn $8 on a $10 Purchase, and $16 on a $20 Purchase

We pay 80% royalties on purchases of $7.99 or more, and 80% royalties minus a 50 cent flat fee on purchases between $0.99 and $7.98. You earn $8 on a $10 sale, and $16 on a $20 sale. So, if we sell 5000 non-refunded copies of your book for $20, you'll earn $80,000.

(Yes, some authors have already earned much more than that on Leanpub.)

In fact, authors have earned over $15 million writing, publishing and selling on Leanpub.

Learn more about writing on Leanpub

Free Updates. DRM Free.

If you buy a Leanpub book, you get free updates for as long as the author updates the book! Many authors use Leanpub to publish their books in-progress, while they are writing them. All readers get free updates, regardless of when they bought the book or how much they paid (including free).

Most Leanpub books are available in PDF (for computers) and EPUB (for phones, tablets and Kindle). The formats that a book includes are shown at the top right corner of this page.

Finally, Leanpub books don't have any DRM copy-protection nonsense, so you can easily read them on any supported device.

Learn more about Leanpub's ebook formats and where to read them

Write and Publish on Leanpub

You can use Leanpub to easily write, publish and sell in-progress and completed ebooks and online courses!

Leanpub is a powerful platform for serious authors, combining a simple, elegant writing and publishing workflow with a store focused on selling in-progress ebooks.

Leanpub is a magical typewriter for authors: just write in plain text, and to publish your ebook, just click a button. (Or, if you are producing your ebook your own way, you can even upload your own PDF and/or EPUB files and then publish with one click!) It really is that easy.

Learn more about writing on Leanpub