Mosec2525/cloud-security-engineer-10-essentials

# Top 10 Things To Know Before Becoming a Cloud Security Engineer ## Quick View ## The 10 Essentials 1. [Shared Responsibility Model](docs/01-shared-responsibility.md) 2. [IAM and Least Privilege](docs/02-iam.md) 3. [Cloud Networking](docs/03-cloud-networking.md) 4. [Linux, CLI, and Scripting](docs/04-linux-cli-scripting.md) 5. [Storage, Data Security, and Secrets](docs/05-storage-data-security.md) 6. [Logging, Monitoring, and SIEM](docs/06-logging-monitoring.md) 7. [Vulnerability and Misconfiguration Management](docs/07-vulnerability-config-management.md) 8. [Containers and Kubernetes Security](docs/08-containers-kubernetes.md) 9. [DevSecOps and Infrastructure as Code](docs/09-devsecops-iac.md) 10. [Incident Response, Compliance, and Security Mindset](docs/10-incident-response-compliance.md) ## Practical Checklist Use the [cloud security engineer checklist](checklists/cloud-security-engineer-checklist.md) to track what you can explain, configure, investigate, or review. ## Useful Resources Start with the curated [learning path](resources/learning-path.md). Official resources used to build this guide: - [AWS Shared Responsibility Model](https://aws.amazon.com/compliance/shared-responsibility-model/) - [AWS IAM security best practices](https://docs.aws.amazon.com/IAM/latest/UserGuide/best-practices.html) - [AWS Well-Architected Framework - Security Pillar](https://docs.aws.amazon.com/wellarchitected/latest/framework/security.html) - [Microsoft Azure shared responsibility](https://learn.microsoft.com/en-us/azure/security/fundamentals/shared-responsibility) - [Azure security operational best practices](https://learn.microsoft.com/en-us/azure/security/fundamentals/operational-best-practices) - [Google Cloud IAM security best practices](https://cloud.google.com/iam/docs/using-iam-securely) - [Google Cloud Audit Logs](https://cloud.google.com/logging/docs/audit) - [Google Cloud security best practices center](https://cloud.google.com/security/best-practices) - [Kubernetes security concepts](https://kubernetes.io/docs/concepts/security/) - [Terraform sensitive data guidance](https://developer.hashicorp.com/terraform/language/state/sensitive-data) - [HashiCorp Sentinel policy as code](https://developer.hashicorp.com/sentinel/docs) - [NIST SP 800-61 Rev. 3 incident response](https://csrc.nist.gov/pubs/sp/800/61/r3/final) - [NIST Cybersecurity Framework 2.0 quick start guides](https://www.nist.gov/cyberframework/quick-start-guides) - [OWASP Top 10](https://owasp.org/www-project-top-ten/) ## Safety This repo is educational. Do not use any technique here against real systems without written authorization.