Roadmap: Twelve Checkpoints- One Badge!

Thank you for joining the Learn to Earn Cloud Security Challenge! How many badges have you earned so far? Whether you’re a proud owner of all three game badges, or you’re just beginning your first lab, you deserve all the appreciation for getting hands-on practice with core concepts of Securing the Cloud!

To help you finish on top of the leaderboard, let’s find our way through Level 1 together!

To claim the Level 1 Badge you will have to familiarize yourself with basic security concepts and tools with twelve labs which will help you get started with the challenge:

1) Cloud IAM: Qwik Start Lab: Start the challenge with this Lab where you will learn how to assign a role to a second user and remove assigned roles associated with Cloud IAM. More specifically, you sign in with two different sets of credentials to experience how granting and revoking permissions works from Google Cloud Project Owner and Viewer roles. This is an introductory level lab where little or no prior knowledge of Cloud IAM is expected. Good luck!

2) Getting started with Certificate Authority Service- Qwik Start Lab: Do you know — If Certificate Authority Services (CA) didn’t exist, you wouldn’t be able to shop online, pay taxes or use internet banking because the internet would be insecure? Move on to the next Lab, where you’ll learn how to enable the service API, create a root, a subordinate CA and eventually issue a certificate.

3) Apigee API Management Fundamentals Lab: Get hands-on experience of the fundamental API Management concepts and the Apigee API Management Platform. It focuses on giving you an overall understanding of how to build a successful API program with a well managed developer ecosystem which will help you to learn how to manage APIs across all phases of the API Lifecycle — including API design, API Security, Developer consumption, as well as API Analytics and Monitoring.

4) Rent-a-VM to Process Earthquake Data Lab: Use Google Cloud to set up a virtual machine to process earthquake data– ingest and process data, then present the results in various formats. Ingest real-time earthquake data published by the United States Geological Survey (USGS) and create maps

5) Securing Google Cloud with CFT Scorecard Lab: CFT Scorecards are used to print a scorecard of your GCP environment, for resources and IAM policies in Cloud Asset Inventory (CAI). Learn how to configure CFT Scorecard to improve visibility into a Google Cloud project and detect misconfigurations.

6) Getting Started with Cloud KMS Qwiklab: Work with advanced features of Google Cloud Security and Privacy APIs, including setting up a secure Cloud Storage bucket, managing keys and encrypted data using Key Management Storage, and viewing Cloud Storage.

7) Google Workspace Admin: Securing Lab: Get acquainted with the security policies and features that are available to you in your Google Workspace.

8) IAM Custom Roles Lab: Cloud IAM provides the right tools to manage resource permissions with minimum fuss and high automation. You don’t directly grant users permissions. Instead, you grant them roles, which bundle one or more permissions. Learn how to create, update, delete, undelete custom roles.

9) User Authentication: Identity-Aware Proxy Lab: Authenticating users of your web app is often necessary, and usually requires special programming in your app. For Google Cloud apps you can hand those responsibilities off to the Identity-Aware Proxy service. Learn how to restrict access to selected authenticated users with Identity-Aware Proxy without special programming. Discover how to retrieve user identity information from IAP.

10) Secure Workloads in Google Kubernetes Engine: Challenge Lab: Next up is a Challenge Lab where you will be given a scenario and a set of tasks. You need to secure a WordPress running on GKE that uses Cloud SQL as it’s database.

11) Prisma Cloud: Securing GKE Run Time Lab: Use Prisma Cloud Compute from Palo Alto Networks to secure runtime aspects of a Google Kubernetes Engine (GKE) cluster.

12) Prisma Cloud: Protect your Cloud Instance with Host Defender Lab.: Prisma Cloud provides comprehensive visibility and threat detection for cloud workload. Prisma Cloud software consists of two components: Console and Defenders. Finish Level 1 of the Challenge with this lab.

Follow this roadmap and unlock your Cloud Security Skills. If you haven’t enrolled for the challenge yet; register now!