CompTIA PenTest+ / Cloud+ · AWS & Azure Security
The cloud is where the next generation of threats lives. This cloud security course teaches you to secure AWS and Azure environments in South Africa, apply DevSecOps principles, harden Docker containers and CI/CD pipelines — and prepares you for CompTIA PenTest+ (offensive penetration testing specialisation) or CompTIA Cloud+ (defensive cloud security specialisation). Available online and in Johannesburg.
Cloud architecture review (IAM, VPC/VNet, storage, compute). AWS security services: GuardDuty, Security Hub, CloudTrail, WAF, KMS. Azure equivalents: Azure Security Centre, Sentinel, NSGs, Key Vault. Lab: audit a deliberately misconfigured AWS environment using Prowler.
Common cloud misconfigurations: public S3 buckets, over-permissive IAM roles, IMDSv1 SSRF. Server-side request forgery (SSRF) exploitation against a cloud-hosted target. Container security: Docker image scanning, privileged container risks, runtime defence with Falco.
Security in CI/CD: SAST (Semgrep), DAST (OWASP ZAP), Software Composition Analysis (SCA). Secrets management with HashiCorp Vault — never hard-code credentials again. Infrastructure as Code security: Terraform scanning with Checkov. Lab: harden a sample GitHub Actions pipeline.
Students choose: PenTest+ (PT0-003) — advanced pen testing methodology, planning, scoping, legal, reporting; or Cloud+ (CV0-004) — cloud deployment, operations, security, and troubleshooting. Deep dive on chosen elective + mock exam, module assessment.
Taught by Arnold — Code College founder, lead trainer and practitioner with 20+ years of developer and security training experience. Live sessions, not recordings.
Every topic has a corresponding lab exercise in your local VM environment. You build, break and defend real systems — building a portfolio of lab evidence from day one.
Attend in-person at Code College's Woodmead campus or join 100% live online from anywhere in South Africa. Both options deliver the same experience.
Earn the “Cloud Security Specialist” Code College Digital Badge on passing the module assessment — immediately shareable to LinkedIn. Stack badges toward the full bootcamp certificate.
Yes. Both platforms offer free tier accounts — AWS Free Tier and Azure Free Account — which are sufficient for all lab exercises in this module. We guide you through account setup on day one. Total cloud spend during the module is typically under R50 if you follow the lab guides and terminate resources after each session.
If your goal is an offensive/red team role (pen tester, red team analyst, bug bounty hunter), choose PenTest+. If you are aiming for a cloud security, GRC, DevSecOps or compliance role, choose Cloud+. Both are valid pathways and the first three weeks of this module are identical regardless of which elective you pick. Your instructor can help you decide during Week 2.
Yes. Almost every SA employer now runs at least some workloads in the cloud. Understanding cloud security architecture, IAM policies and DevSecOps practices has become a baseline expectation even for on-premise security roles. This module closes the cloud knowledge gap that many Security+ holders have.
No — Module 5 requires either Module 3 or Module 4 as a prerequisite. The cloud attack labs in Week 2 build on exploitation techniques from Module 3, and the Azure Sentinel and monitoring work extends the SIEM skills from Module 4. Taking Module 5 without this foundation would significantly reduce the value of the practical labs.
CEH (Module 3) emphasises attack methodology and hacker mindset — it is widely recognised by financial services employers globally and in South Africa. CompTIA PenTest+ emphasises planning, scoping, legal constraints and formal pen test reporting — it is DoD-approved and required for US government-adjacent contracts. PenTest+ is also cheaper to sit. Many students pursue both: CEH for market recognition, PenTest+ for compliance coverage in regulated environments.
Both are in high demand, but the South African enterprise market leans toward Microsoft Azure — most large companies run Microsoft 365 and Azure Active Directory. AWS is dominant in tech startups and companies with US parent entities. This module covers security fundamentals for both platforms. CompTIA Cloud+ provides the vendor-neutral foundation before you specialise in either.
Enrol in this cloud security course as a standalone module or as part of the full Cybersecurity Bootcamp. Live online and in-person in Johannesburg, South Africa.