vcc.ca
CYBR 2301: Cloud Security Principles
Effective date
September 2025
Department
Cybersecurity PDD
School
Continuing Studies
Description
From understanding the basics of cloud computing to navigating its unique security challenges, this course covers it all. Students will learn about different cloud models, such as infrastructure-as-a-service (IaaS), platform-as-a-service (PaaS), and software-as-a-service (SaaS), and the GRC/security intricacies of each. Through practical exercises or assignments, students will learn to work with globally recognized security standards and frameworks, and gain proficiency in the essential shared responsibility model. This course will introduce students to key topics, such as identity management, data privacy, network security, and more.
Credits
3.0
Year of study
2nd Year Post-secondary
Prerequisites
CYBR 1204.
Corequisites
None
Course Learning Outcomes
Upon successful completion of this course, students will be able to:
- Analyze the unique GRC and security challenges posed by various cloud computing models including IaaS, PaaS, and SaaS
- Distinguish between different cloud architectures such as public, private, and hybrid, and identify their specific security considerations
- Apply internationally recognized cloud security standards, like CSA CCM and ISO/IEC 27017, to real-world scenarios
- Implement robust cloud security frameworks, leveraging tools like CSPM or CASB, to enhance organizational defense mechanisms
- Collaborate effectively with cloud providers by clarifying roles and responsibilities under the shared responsibility model in cloud security
- Design secure cloud-based identity and access management systems, incorporating advanced technologies like MFA and SSO
Prior Learning Assessment & Recognition (PLAR)
None
Hours
Lecture, Online, Seminar, Tutorial: 30
Clinical, Lab, Rehearsal, Shop, Kitchen, Simulation, Studio: 25
Total Hours: 55
Clinical, Lab, Rehearsal, Shop, Kitchen, Simulation, Studio: 25
Total Hours: 55
Instructional Strategies
Instructional strategies include lectures, simulations/labs, group discussions, case studies, and problem-based learning.
Grading System
Letter Grade (A-F)
Passing grade
C
Evaluation Plan
|
Type |
Percentage |
Assessment activity |
|
Participation |
10 |
Discussions |
|
Quizzes/Tests |
20-25 |
Multiple quizzes |
|
Midterm Exam |
20-25 |
Midterm exam |
|
Assignments |
30-40 |
A series of assignments applying cloud security lessons, culminating in a final report. |
|
Assignments |
10 |
Presentation |
Course topics
- Introduction to Cloud Security
- Cloud Computing Models and Architectures
- Cloud Security Standards and Frameworks
- Shared Responsibility Model
- Identity and Access Management in the Cloud
- Data Security and Privacy in the Cloud
- Network Security in the Cloud
- Cloud Security Incident Response and Management
- Cloud Security Monitoring and Auditing
Notes:
- Course contents and descriptions, offerings and schedules are subject to change without notice.
- Students are required to follow all College policies including ones that govern their educational experience at VCC. Policies are available on the VCC website at:
https://www.vcc.ca/about/governance--policies/policies/. - To find out if there are existing transfer agreements for this course, visit the BC Transfer Guide at https://www.bctransferguide.ca.