- CN330 is currently under development; all descriptions and outlines are subject to change until GA in June of 2021.
Advanced Kubernetes Security course focuses on developing the skills and knowledge needed for implementing security measures from code to a production Kubernetes cluster. Students will engage in topics pertaining to adding security mechanisms along the code deployment pipeline and reviewing and remediating security concerns within a Kubernetes infrastructure. Topics include declarative configuration analysis, container image scanning, CIS benchmark scanning and remediation, and identifying and mitigating attack vectors within Kubernetes. Kubernetes Operations and System Integration teams will benefit greatly as they work towards creating a security posture that aligns with security policies for their Kubernetes environments.
At the end of this course, you will have the knowledge and skills that will aid in passing the CKS: Certified Kubernetes Security exam.
Who Should Attend
This course is targeted at students with the following:
- Motivations: Responsibility for implementing security mechanisms along the code deployment pipeline and within the Kubernetes environment; Running and reporting on security state of the Kubernetes environment
- Roles: Infrastructure and Integration engineers tasked with implementing, running, and reporting on security posture of Kubernetes environment; Developers who are tasked with scanning and remediating security issues within application coding; IT professionals looking to expand their skills in Kubernetes security
- Laptop with WiFi connectivity
- Attendees should have the latest Chrome or Firefox installed, and a free account at strigo.io.
- Kubernetes Threat Model and Security Maturity
- System Hardening
- Overview of Cluster Security objects
- Cluster Hardening
- Minimizing Microservice Vulnerabilities
- Securing the Container Supply Chain
- Monitoring, Logging and Runtime Security