This section explores how the cloud enables zero-trust for workforce, customer, and workload identities. Students learn to implement both identity-based and network-based security controls, creating a comprehensive identity perimeter that protects cloud assets regardless of network location.
For deeper technical analysis, you can browse the SANS Cyber Security White Papers database for cloud architecture research.
This approach was designed to prevent common pitfalls like "identity sprawl" and technical debt, which often result from uncoordinated cloud migrations. sans sec 549 2021
, a SANS Fellow and co-author, noted:
In 2021, the SANS Institute addressed this critical architectural gap by introducing . This advanced course was specifically engineered to move organizations past basic security checklists and toward resilient, multi-cloud enterprise architectures. The Core Philosophy of SEC549 This section explores how the cloud enables zero-trust
SEC549: Cloud Security Architecture is an advanced-level course that teaches security professionals how to design enterprise-ready, scalable cloud solutions. The course uses a representative case study—the fictional company Delos International Management—to guide students through a phased cloud migration journey.
Instructor Eric Johnson receives high praise from students. Reviews describe him as "clearly experienced in the subject matter with a long history of work in the subject area, with plenty of real-world examples". Another student called him the "best instructor I've ever had, in anything". This approach was designed to prevent common pitfalls
is an advanced 5-day course designed to equip security professionals with the skills to design secure, enterprise-grade cloud infrastructure. In 2021, the course was part of a major expansion in the SANS Institute Cloud Security Curriculum to address the rapid enterprise shift from on-premises to multi-cloud environments.
Upon completing the SANS SEC 549 2021 course, students can expect to gain the following skills and knowledge:
SEC549 shifts the mindset of security teams from gatekeepers to enablers. The 2021 curriculum reinforces three core operational changes: