Certificate of Competence in Zero Trust (CCZT)

Overview

This two-day instructor-led course provides a comprehensive introduction to Zero Trust concepts, principles, and architectures as defined by the Cloud Security Alliance (CSA). Participants will learn how to design, implement, and maintain Zero Trust strategies that align with modern enterprise and cloud environments.

Building on the foundational principle that no entity human or system can be implicitly trusted, this course enables learners to integrate Zero Trust into organisational planning, architecture, and technology deployment. Through a blend of theory, guided discussion, and applied examples, learners will develop the capability to reduce organisational risk and strengthen cyber resilience.

Prerequisites

There are no formal prerequisites for the CCZT.
It is recommended that participants have:

• A basic understanding of networking and network security
• Familiarity with cloud security principles or frameworks such as QAPCCS, CCSKPLUS, or CCSP

Target audience

This course is designed for professionals involved in designing, implementing, or governing information security strategies, including:

• Security architects, analysts, and consultants
• Cloud and network engineers
• IT managers and system administrators
• Risk and compliance officers seeking to align Zero Trust with governance frameworks
• Technical decision-makers responsible for enterprise-wide security transformation

Objectives

By the end of this course, participants will be able to:

• Explain the concept of a Software-Defined Perimeter (SDP) and its relationship to Zero Trust
• Communicate the technology and business challenges that SDP and Zero Trust address
• Distinguish between key types of SDP deployment models
• Demonstrate understanding of the Zero Trust Maturity Model and its role in supporting organisational planning
• Identify the key steps and considerations involved in Zero Trust strategy development
• Map organisational data flows to identify protect and attack surfaces
• Apply recognised methods such as gap analysis, risk registers, and RACI diagrams in a Zero Trust planning process
• Design and plan Zero Trust policies aligned to business objectives
• Explain the preparatory and implementation activities required for Zero Trust Architecture (ZTA) adoption
• Leverage Zero Trust pillars and cross-cutting capabilities to build workflow documentation and audit-ready processes

Outline

Zero Trust Architecture

• Introduction to Zero Trust Architecture
• Definitions, concepts, and core components
• Objectives and business benefits of Zero Trust
• Key planning considerations for ZTA adoption
• Implementation examples and organisational use cases

Software-Defined Perimeter (SDP)

• Introduction to SDP and its evolution
• Traditional architecture limitations and SDP solutions
• Core tenets, underlying technologies, and architecture principles
• Common SDP deployment models and examples

Zero Trust Strategy

• Levels of strategy and governance alignment
• Identifying Zero Trust drivers and building executive buy-in
• Tactical approaches and operational integration
• Embedding Zero Trust into day-to-day operations

Zero Trust Planning

• Initiating the Zero Trust journey
• Defining project scope, priorities, and business cases
• Conducting gap analysis and capability assessments
• Defining protect and attack surfaces
• Documenting transaction flows and identifying dependencies
• Policy development for Zero Trust controls
• Building and validating a target architecture

Zero Trust Implementation

• Advancing along the Zero Trust maturity path
• Project implementation planning and stakeholder engagement
• Preparatory activities for deployment
• Phased implementation of the Zero Trust target architecture
• Reviewing assumptions and maintaining continuous improvement

Exams and assessments

Each enrolment includes an official CCZT Exam Voucher with two attempts.

• The exam assesses comprehension and application of Zero Trust principles and practices.
• Exam vouchers are valid for two years and are non-transferable.
• A Certificate of Completion and 14 Continuing Professional Education (CPE) credits are awarded upon successful completion.

Hands-on learning

The course integrates practical case studies and interactive exercises that reinforce key Zero Trust concepts.

• Real-world scenarios guide learners through policy definition, data flow mapping, and architecture planning.
• Group discussions encourage collaboration and application of theory to organisational contexts.
• Instructor-led demonstrations provide clear examples of SDP and ZTA design and deployment.