Post

Cloud Security Learning Roadmap (AWS, Azure, GCP))

A 12-month structured roadmap for learning multi-cloud security, covering fundamentals, IAM, networking, data protection, and advanced topics for AWS, Azure, and GCP.

Posted
By Sudhir Dubey
4 min read
Cloud Security Learning Roadmap (AWS, Azure, GCP))

Month 1–2: Cloud Basics

Topics and Skills:

  • Cloud models (IaaS/PaaS/SaaS), virtualization, containers
  • Shared Responsibility Model
  • Basic CLI/console navigation
  • Free-tier account setup (AWS, Azure, GCP)

Resources and Labs:

  • AWS: Cloud Practitioner Essentials, AWS Security Fundamentals (Skill Builder)
  • Azure: Microsoft Learn Azure Fundamentals modules
  • GCP: Google Cloud Digital Leader modules, Skills Boost trial
  • Hands-on: Launch simple VMs, storage buckets, databases

Certifications / Projects:

  • AWS Cloud Practitioner, Microsoft AZ-900, Google Cloud Digital Leader
  • Capstone: Deploy a static website or simple app on one cloud

Month 3–4: Identity & Access Management (IAM) and Network Security

Topics and Skills:

  • IAM basics: users, groups, roles, policies, MFA
  • AWS IAM, Azure AD/Entra ID, GCP IAM
  • Networking basics: VPC/VNet, subnets, security groups, routing
  • Least-privilege access principles

Resources and Labs:

  • IAM and VPC setup tutorials (AWS, Azure, GCP)
  • Create IAM users, configure MFA, build network rules

Certifications / Projects:

  • Practice exams
  • Build a secure networking lab

Month 5–6: Data Protection & Logging

Topics and Skills:

  • Data encryption: AWS KMS, Azure Key Vault, GCP KMS
  • Secure storage and backup
  • Logging and monitoring: CloudTrail, CloudWatch, Azure Monitor, GCP Logging
  • Compliance basics: CIS benchmarks, GDPR/HIPAA

Resources and Labs:

  • Enable encryption and logging on storage and databases
  • Monitor cloud services with dashboards and audit logs

Certifications / Projects:

  • Capstone: Deploy a multi-tier app with encrypted DB and centralized logging

Month 7–8: Threat Detection and Incident Response

Topics and Skills:

  • Threat detection tools: GuardDuty, Security Center, Security Command Center
  • Incident response basics and cloud forensics
  • Vulnerability scanning
  • SIEM concepts and alerting

Resources and Labs:

  • Enable threat detection services (GuardDuty, Sentinel, GCP SCC)
  • Simulate alerts and test IR workflows

Certifications / Projects:

  • Write an incident response plan for a simulated breach

Month 9–10: Advanced Topics and Multi-Cloud Security

Topics and Skills:

  • Containers and serverless security (EKS, AKS, Lambda, Functions)
  • Infrastructure as Code (Terraform, CloudFormation) and scanning (tfsec)
  • Zero Trust networking
  • Multi-cloud CSPM/CIEM strategies
  • Compliance frameworks (CIS, NIST)

Resources and Labs:

  • Deploy Terraform IaC with security policies
  • Harden Kubernetes environments
  • Compare alerting across AWS and Azure

Certifications / Projects:

  • Capstone: Design a secure multi-cloud environment

Month 11–12: Review, Certification Prep, and Capstone

Topics and Skills:

  • Review key concepts
  • Advanced threat modeling, DevSecOps, CI/CD pipeline security
  • Risk assessments and architecture review

Resources and Labs:

  • Official study guides for AWS Security Specialty, AZ-500, GCP Security Engineer
  • Cloud CTFs and security challenges

Certifications / Projects:

  • Finalize certifications (Security Specialty level)
  • Showcase labs on GitHub or write blog posts

Cloud Computing Diagram

Figure: Simplified cloud computing diagram showing users accessing shared apps and data in the cloud. Early on, focus on core cloud concepts (IaaS/PaaS/SaaS, virtualization, shared responsibility) before diving into security details.

This roadmap builds from cloud basics to advanced security in a structured timeline. Leverage free resources, practice hands-on skills, and pursue certifications. By Month 12, you will have a cloud security portfolio and multi-cloud experience.

Sources: AWS, Azure, and GCP official training and documentation.

Free Cloud Security Learning Resources

Topic/Skill: Cloud Computing Basics
Resource: Introduction to Cloud Computing
Platform: Coursera
Notes: Beginner-friendly

Topic/Skill: Cloud Computing Basics
Resource: Free Cloud Computing Courses and Tutorials
Platform: Udemy
Notes: Wide variety of courses

Topic/Skill: Cloud Computing Basics
Resource: Introduction to Cloud Computing Basics SkillUp
Platform: Simplilearn
Notes: Includes certificate

Topic/Skill: Cloud Computing Basics
Resource: Free Courses in Cloud Computing
Platform: Great Learning
Notes: Covers various cloud topics

Topic/Skill: AWS Security Fundamentals
Resource: AWS Security Fundamentals
Platform: AWS Training
Notes: Self-paced course

Topic/Skill: AWS IAM
Resource: AWS: Identity and Access Management
Platform: Coursera
Notes: Focuses on IAM

Topic/Skill: Cloud Identity
Resource: Introduction to Cloud Identity
Platform: Google Cloud Skills Boost
Notes: Google Cloud specific

Topic/Skill: Network Security
Resource: Fundamentals of Network Security
Platform: Palo Alto Networks
Notes: Part of free cybersecurity courses

Topic/Skill: Cloud Security Operations
Resource: Introducing Modern Security Operations Free Course
Platform: Google Cloud Community
Notes: Focuses on SecOps

Topic/Skill: Cloud Security
Resource: Free Cloud Security Training With Certificate
Platform: Simplilearn
Notes: Covers various cloud security domains

Topic/Skill: Cloud Security
Resource: Introduction to Cloud Security
Platform: Great Learning
Notes: Beginner level

Topic/Skill: Cloud Security
Resource: EC-Council’s Essentials Series
Platform: EC-Council
Notes: Includes Network Defense Essentials

Topic/Skill: Cloud Security
Resource: CSA Research and Guidance
Platform: Cloud Security Alliance
Notes: Whitepapers and best practices

Topic/Skill: Cloud Security
Resource: CSA Education Resources
Platform: Cloud Security Alliance
Notes: Training materials and FAQs

Topic/Skill: NIST Cloud Security
Resource: NIST Cloud Computing Related Publications
Platform: NIST
Notes: Official NIST publications

Topic/Skill: NIST Cloud Security
Resource: Small Business Cybersecurity Corner - Cloud Security
Platform: NIST
Notes: Guidance for small businesses

Topic/Skill: Cloud Security
Resource: Free Cybersecurity Education Courses
Platform: Palo Alto Networks
Notes: Includes Fundamentals of Cloud Security

Topic/Skill: Cloud Security
Resource: SANS Free Resources
Platform: SANS Institute
Notes: Webcasts, white papers, and more

Topic/Skill: Cloud Security
Resource: SANS Cyber Aces
Platform: SANS Institute
Notes: Free foundational cybersecurity training

Topic/Skill: Cloud Security
Resource: Google Cloud Security Resources Hub
Platform: Google Cloud
Notes: Insights from Google Cloud experts

Topic/Skill: Cloud Security
Resource: Cloud Security Fundamentals: Cloud Application Security
Platform: Skillsoft
Notes: Covers application security in the cloud

Certification, Security
Certification CloudSec
This post is licensed under CC BY 4.0 by the author.