Home / Programs / Cloud

Cloud program

Cloud

Master AWS or Google Cloud through weekend labs and real account work. Build the foundation for Solutions Architect, Cloud Engineer, and SysOps certification exams.

Weekends only 8 weekends · 48 hours Sat & Sun 10 AM – 1 PM IST AWS & GCP paths

What you will learn

  • Design and deploy workloads on AWS or GCP using production-minded patterns
  • Build secure VPCs, manage identity, and govern multi-account environments
  • Choose the right compute, storage, and database services for real use cases
  • Operate cloud estates with monitoring, logging, cost controls, and tagging
  • Prepare confidently for AWS SAA, SysOps, Cloud Practitioner, and GCP Associate Cloud Engineer exams

Certification alignment

This program maps directly to skills tested in AWS and Google Cloud certifications. Exam strategy sessions and practice questions are included in the final weekends of each path.

AWS CLF-C02 AWS SAA-C03 AWS SysOps GCP Associate Cloud Engineer GCP Cloud Digital Leader

AWS Cloud curriculum

Eight weekend modules — each Saturday and Sunday block covers theory, live demo, lab time, and a take-home assignment.

Weekend 1

AWS foundations & Well-Architected thinking

Start with how AWS is organized — regions, availability zones, and the shared responsibility model. You will learn to read the Well-Architected Framework not as theory, but as a checklist you use on every design decision.

  • Global infrastructure and choosing regions for latency, compliance, and cost
  • Console, CLI, and CloudShell — when to use each
  • Support plans, billing alerts, and free-tier guardrails
  • Mapping business requirements to AWS service categories
LabSet up a personal AWS account with MFA, billing alarms, and IAM best practices from day one.

Weekend 2

Identity, access & multi-account governance

IAM is the spine of every AWS deployment. We go deep on policies, roles, and trust relationships — then scale up to Organizations, SCPs, and SSO patterns used in real enterprises.

  • Users vs roles vs federated identities — and why root access is never the answer
  • Policy evaluation logic and writing least-privilege JSON
  • AWS Organizations, organizational units, and service control policies
  • Cross-account access patterns for shared services and auditing
LabCreate roles, assume-role chains, and a minimal multi-account OU structure with guardrail SCPs.

Weekend 3

Networking — VPC design that actually works

Most cloud failures trace back to networking. You will build multi-tier VPCs, understand routing tables, and know when to use security groups versus NACLs.

  • CIDR planning, subnets (public/private), and AZ placement
  • Internet gateways, NAT gateways, and cost-aware NAT design
  • Security groups, NACLs, and defense in depth
  • Route 53 fundamentals, private hosted zones, and health checks
  • VPC endpoints and PrivateLink — keeping traffic off the public internet
LabDeploy a three-tier VPC (web, app, data) with controlled ingress and outbound internet via NAT.

Weekend 4

Compute — EC2, scaling & serverless intro

Compare compute options honestly. When does EC2 win? When is Lambda the right fit? Where do containers (ECS/EKS) enter the picture?

  • EC2 instance types, AMIs, launch templates, and placement groups
  • Auto Scaling groups, scaling policies, and warm pools
  • Lambda execution model, triggers, and cold-start considerations
  • ECS and EKS at a practitioner level — enough to architect and hand off
LabLaunch an Auto Scaling web tier behind an ALB; trigger a Lambda from S3 upload.

Weekend 5

Storage & databases

Data outlives compute. Learn S3 lifecycle policies, EBS performance characteristics, and how to pick between RDS, Aurora, and DynamoDB.

  • S3 storage classes, versioning, encryption, and bucket policies
  • EBS vs EFS — block vs shared file storage
  • RDS engines, Multi-AZ, read replicas, and backup windows
  • DynamoDB basics — partition keys, capacity modes, and when NoSQL fits
LabConfigure S3 static hosting with policy restrictions; provision RDS with automated backups.

Weekend 6

Security, compliance & encryption

Security embedded in the platform — KMS, secrets management, detective controls, and perimeter defense with WAF.

  • KMS keys, envelope encryption, and key rotation
  • Secrets Manager vs Parameter Store
  • GuardDuty, Config, and CloudTrail for audit and threat detection
  • WAF, Shield, and common attack patterns on web workloads
LabEncrypt data at rest and in transit; enable Config rules on a test account.

Weekend 7

Operations, observability & cost management

What you deploy, you must operate. CloudWatch metrics and alarms, centralized logging, and Cost Explorer strategies that finance teams appreciate.

  • CloudWatch metrics, dashboards, alarms, and Logs Insights
  • CloudTrail organization trails and log analysis
  • Tagging strategy for cost allocation and automation
  • Budgets, anomaly detection, and rightsizing with Compute Optimizer
LabBuild an operational dashboard; set budget alerts; analyze a month's cost breakdown.

Weekend 8

Capstone & AWS certification prep

Deploy an end-to-end workload — design doc, implementation, and teardown. Finish with exam strategy for SAA and SysOps: question patterns, elimination techniques, and weak-area review.

  • Architecture decision record for your capstone
  • Peer review of designs — defend trade-offs aloud
  • Timed practice questions and exam day logistics
  • Post-course study plan until you sit the exam
CapstoneMulti-tier application on AWS with documented network, IAM, monitoring, and cost estimate.

Google Cloud curriculum

Same eight-weekend structure with GCP-native services and exam prep for Associate Cloud Engineer. Take AWS only, GCP only, or both (12 weekends total).

Weekend 1

GCP foundations & resource hierarchy

Understand organizations, folders, projects, and billing accounts. GCP's hierarchy is different from AWS — mastering it early prevents costly mistakes.

  • Resource hierarchy and IAM inheritance
  • Quotas, APIs, and project bootstrap checklist
  • Cloud Console, gcloud CLI, and Cloud Shell
  • Billing export, budgets, and alerts
LabCreate a project hierarchy with billing budget and enable core APIs.

Weekend 2

Cloud IAM & service accounts

Custom roles, service accounts, workload identity, and organization policies — GCP's approach to least privilege.

  • IAM roles: primitive, predefined, and custom
  • Service accounts and keyless authentication patterns
  • Organization policy constraints for guardrails
  • Workload Identity Federation for external workloads
LabBind least-privilege roles; configure a service account for a compute workload.

Weekend 3

VPC networking & hybrid connectivity

Custom VPCs, firewall rules, shared VPC, Cloud DNS, and load balancing — with comparison points to AWS networking you've learned.

  • VPC subnets, regions, and Private Google Access
  • Firewall rules vs hierarchical firewall policies
  • Cloud Load Balancing types and use cases
  • Cloud VPN and interconnect — hybrid intro
LabBuild a shared VPC pattern with internal load balancer fronting compute.

Weekend 4–8

Compute, data, security, operations & capstone

Remaining weekends mirror the AWS depth: Compute Engine and Cloud Run, Cloud Storage and Cloud SQL, Security Command Center and KMS, Cloud Monitoring and cost optimization, then a GCP capstone with Associate Cloud Engineer exam prep.

  • Managed instance groups, autoscaling, and preemptible VMs
  • Cloud Storage classes, lifecycle rules, and BigQuery intro
  • CMEK, audit logs, and Security Command Center findings
  • SLOs, log sinks, and Recommender-driven optimization
  • Cross-cloud comparison workshop: when AWS vs GCP for the same workload
CapstoneEnd-to-end GCP deployment with architecture doc and ACE exam readiness checklist.

Enroll in Cloud

Submit your details for this program — we will confirm batch dates and next steps.

Enrollment form

Step 1: Enter email and click Send code.

Step 2: Check inbox and spam, then enter the code.