Certified Kubernetes Security Specialist (CKS) Training Course
Kubernetes is an open-source system for automating deployment, scaling, and management of containerized applications.
Certified Kubernetes Security Specialist (CKS) is a performance-based certification exam that tests candidates' knowledge of Kubernetes and cloud security in a simulated, real world environment.
This instructor-led, live training (online or onsite) is aimed at Kubernetes practitioners who wish to prepare for the CKS exam.
By the end of this training, participants will know how to secure Kubernetes environments and container-based applications throughout the different stages of an application's life cycle: build, deployment and runtime.
Format of the Course
- Interactive lecture and discussion.
- Lots of exercises and practice.
- Hands-on implementation in a live-lab environment.
Course Customization Options
- To request a customized training for this course, please contact us to arrange.
Thank you for sending your enquiry! One of our team members will contact you shortly.
Thank you for sending your booking! One of our team members will contact you shortly.
Course Outline
Introduction
Cluster Setup
- Use Network security policies to restrict cluster level access
- Use CIS benchmark to review the security configuration of Kubernetes components (etcd, kubelet, kubedns, kubeapi)
- Properly set up Ingress objects with security control
- Protect node metadata and endpoints
- Minimize use of, and access to, GUI elements
- Verify platform binaries before deploying
Cluster Hardening
- Restrict access to Kubernetes API
- Use Role Based Access Controls to minimize exposure
- Exercise caution in using service accounts e.g. disable defaults, minimize permissions on newly created ones
- Update Kubernetes frequently
System Hardening
- Minimize host OS footprint (reduce attack surface)
- Minimize IAM roles
- Minimize external access to the network
- Appropriately use kernel hardening tools such as AppArmor, seccomp
Minimize Microservice Vulnerabilities
- Setup appropriate OS level security domains e.g. using PSP, OPA, security contexts
- Manage kubernetes secrets
- Use container runtime sandboxes in multi-tenant environments (e.g. gvisor, kata containers)
- Implement pod to pod encryption by use of mTLS
Supply Chain Security
- Minimize base image footprint
- Secure your supply chain: whitelist allowed image registries, sign and validate images
- Use static analysis of user workloads (e.g. kubernetes resources, docker files)
- Scan images for known vulnerabilities
Monitoring, Logging and Runtime Security
- Perform behavioral analytics of syscall process and file activities at the host and container level to detect malicious activities
- Detect threats within physical infrastructure, apps, networks, data, users and workloads
- Detect all phases of attack regardless where it occurs and how it spreads
- Perform deep analytical investigation and identification of bad actors within environment
- Ensure immutability of containers at runtime
- Use Audit Logs to monitor access
Summary and Conclusion
Requirements
- CKA (Certified Kubernates Administrator) certification
Audience
- Kubernetes practitioners
21 Hours
Open Training Courses require 5+ participants.
Certified Kubernetes Security Specialist (CKS) Training Course - Booking
Certified Kubernetes Security Specialist (CKS) Training Course - Enquiry
Certified Kubernetes Security Specialist (CKS) - Consultancy Enquiry
Consultancy Enquiry
Testimonials (5)
he was patience and understood that we fall behind
Albertina - REGNOLOGY ROMANIA S.R.L.
Course - Deploying Kubernetes Applications with Helm
How Interactive Reda would explain the information and get us to participate. He would also mention interesting facts along the way and share all the knowledge he has. Reda has excellent communication skills which makes online training really effective.
Janine - BMW SA
Course - Kubernetes Advanced
The training was more practical
Siphokazi Biyana - Vodacom SA
Course - Kubernetes on AWS
Learning about Kubernetes.
Felix Bautista - SGS GULF LIMITED ROHQ
Course - Kubernetes on Azure (AKS)
It gave a good grounding for Docker and Kubernetes.
Stephen Dowdeswell - Global Knowledge Networks UK
Course - Docker (introducing Kubernetes)
Upcoming Courses
Related Courses
Docker, Kubernetes and OpenShift 3 for Administrators
35 HoursIn this instructor-led, live training in India, participants will learn how to manage Red Hat OpenShift Container Platform.
By the end of this training, participants will be able to:
- Create, configure, manage, and troubleshoot OpenShift clusters.
- Deploy containerized applications on-premise, in public cloud or on a hosted cloud.
- Secure OpenShift Container Platform
- Monitor and gather metrics.
- Manage storage.
Read more...
Docker and Kubernetes: Building and Scaling a Containerized Application
21 HoursIn this instructor-led, live training in India (onsite or remote), participants will learn how to create and manage Docker containers, then deploy a sample application inside a container. Participants will also learn how to automate, scale, and manage their containerized applications within a Kubernetes cluster. Finally, the training goes on to more advanced topics, walking participants through the process of securing, scaling and monitoring a Kubernetes cluster.
By the end of this training, participants will be able to:
- Set up and run a Docker container.
- Deploy a containerized server and web application.
- Build and manage Docker images.
- Set up a Docker and Kubernetes cluster.
- Use Kubernetes to deploy and manage a clustered web application.
- Secure, scale and monitor a Kubernetes cluster.
Read more...
Docker (introducing Kubernetes)
14 HoursThe objective of this practical course is to provide all the tools that address the practical aspects of Docker and Kubernetes, in order that the participants can count on the necessary skills for the proper management of the program.
Read more...
Docker and Kubernetes
21 HoursTraining objectives: Acquire theoretical and operational skills on Docker and Kubernetes.
Read more...
Docker, Kubernetes and OpenShift 3 for Developers
35 HoursIn this instructor-led, live training in India, participants will learn how to use OpenShift Container Platform to deploy containerized applications.
By the end of this training, participants will be able to:
- Create and configure an OpenShift setup.
- Quickly deploy applications on-premise, in public cloud or on a hosted cloud.
Read more...
Deploying Kubernetes Applications with Helm
7 HoursThis instructor-led, live training in India (online or onsite) is aimed at engineers who wish to use Helm to streamline the process of installing and managing Kubernetes applications.
By the end of this training, participants will be able to:
- Install and configure Helm.
- Create reproducible builds of Kubernetes applications.
- Share applications as Helm charts.
- Run third-party applications saved as Helm charts.
- Manage releases of Helm packages.
Read more...
Kubernetes from Basic to Advanced
14 HoursIn this instructor-led, live training in India (onsite or remote), participants will learn how to deploy a collection of sample servers inside containers, then automate, scale, and manage their containerized servers within a Kubernetes cluster. The training goes on to more advanced topics, walking participants through the process of securing, networking and monitoring a Kubernetes cluster.
By the end of this training, participants will be able to:
- Set up and run a Docker container.
- Deploy containerized databases and servers.
- Set up a Docker and Kubernetes cluster.
- Use Kubernetes to deploy and manage different environments under the same cluster.
- Secure, scale and monitor a Kubernetes cluster.
Read more...
Kubernetes Advanced
14 HoursThis instructor-led, live training (online or onsite) is aimed at engineers wishing to automate, secure, and monitor containerized applications in a large-scale Kubernetes cluster.
By the end of this training, participants will be able to:
- Use Kubernetes to deploy and manage different environments under the same cluster
- Secure, scale and monitor a Kubernetes cluster
Format of the Course
- Interactive lecture and discussion
- Lots of exercises and practice
- Hands-on implementation in a live-lab environment
Course Customization Options
- To request a customized training for this course, please contact us to arrange.
Read more...
Kubernetes on AWS
14 HoursEKS is a self-managed Kubernetes-as-a-service offering from AWS. EKS is fully scalable and customizable and allows a Kubernetes deployment to mimic and/or integrate with an existing on-premise Kubernetes setup.
In this instructor-led, live training, participants will learn how to set up and manage a production-scale container environment using Kubernetes on EKS.
By the end of this training, participants will be able to:
- Configure and manage Kubernetes on EKS
- Migrate an existing Kubernetes environment from on-premise to AWS cloud
- Integrate Kubernetes with third-party continuous integration (CI) software
- Ensure high availability and disaster recovery in Kubernetes
- Understand and adopt the tools available to efficiently manage EKS
Audience
- Developers
- System Administrators
- DevOps Engineers
Format of the Course
- Part lecture, part discussion, exercises and heavy hands-on practice in a live-lab environment.
Note
- To request a customized training for this course, please contact us to arrange.
Read more...
Kubernetes on Azure (AKS)
14 HoursIn this instructor-led, live training in India (online or onsite), participants will learn how to set up and manage a production-scale container environment using Kubernetes on AKS.
By the end of this training, participants will be able to:
- Configure and manage Kubernetes on AKS.
- Deploy, manage and scale a Kubernetes cluster.
- Deploy containerized (Docker) applications on Azure.
- Migrate an existing Kubernetes environment from on-premise to AKS cloud.
- Integrate Kubernetes with third-party continuous integration (CI) software.
- Ensure high availability and disaster recovery in Kubernetes.
Read more...
Kubernetes Design Patterns
21 HoursThe evolution of microservices and containers in recent years has significantly changed how we design, develop, deploy and run software. Modern applications must be optimized for scalability, elasticity, failure, and change. Driven by these new demands, modern architectures require a different set of patterns and practices. In this training, we examine ways to identify, understand and adjust to these new requirements.
Audience
This training is intended for people who are somewhat familiar with container technology and with Kubernetes concepts but are perhaps lacking the real world experience. It is based on use cases, and lessons learnt from real life projects with the intention of making people inspired to create and manage even better cloud native applications.
- Developers
- Operations
- DevOps
- QA Engineers
- IT Project Managers
Format of the Course
- Interactive lecture and discussion
- Lots of exercises and practice
- Handson implementation in a live-lab environment
Course Customization Options
- To request a customized training for this course, please contact us to arrange.
Read more...
Introduction to Minikube and Kubernetes
21 HoursThis instructor-led, live training in India (online or onsite) is aimed at beginner-level to intermediate-level software developers and DevOps professionals who wish to learn how to set up and manage a local Kubernetes environment using Minikube.
By the end of this training, participants will be able to:
- Install and configure Minikube on their local machine.
- Understand the basic concepts and architecture of Kubernetes.
- Deploy and manage containers using kubectl and the Minikube dashboard.
- Set up persistent storage and networking solutions for Kubernetes.
- Utilize Minikube for developing, testing, and debugging applications.
Read more...
Minikube for Developers
14 HoursThis instructor-led, live training in India (online or onsite) is aimed at intermediate-level developers and DevOps engineers who wish to use Minikube as a part of their development workflow.
By the end of this training, participants will be able to:
- Set up and manage a local Kubernetes environment using Minikube.
- Understand how to deploy, manage, and debug applications on Minikube.
- Integrate Minikube into their continuous integration and deployment pipelines.
- Optimize their development process using Minikube's advanced features.
- Apply best practices for local Kubernetes development.
Read more...
Monitoring Kubernetes with Prometheus
7 HoursThis instructor-led, live training in India (online or onsite) is aimed at system administrators and developers who wish to use Prometheus to monitor Kubernetes clusters.
By the end of this training, participants will be able to:
- Install and configure Prometheus.
- Monitor dynamic cloud environments.
- Gain better insight into their Kubernetes clusters.
- Set up alerts that are precise and insightful.
Read more...
Managing Kubernetes with Rancher
14 HoursThis instructor-led, live course in India provides participants with an overview of Rancher and demonstrates through hands-on practice how to deploy and manage a Kubernetes cluster with Rancher.
Read more...
