Kubernetes Security Course

Kubernetes won the container orchestration race. Learn how it works and how to deploy containers and keep your cluster secure.

5 hours, 54 minutes

Course description

Kubernetes has dominated the container orchestration ecosystem. During the move to a cloud-native infrastructure, it's crucial to understand how Kubernetes works with a security frame of mind. This course covers the fundamentals of Kubernetes and advanced topics.

Syllabus

Integration with CI/CD Systems

Video - 00:17:00

Securing the Cluster from the External Network

Video - 00:21:00

Monitoring the Cluster for Attacks

Video - 00:18:00

Pod Security and Availability

Video - 00:19:00

Node Hardening

Video - 00:16:00

Master Hardening

Video - 00:14:00

Helm, and Application Deployment

Video - 00:22:00

Preventing Resource Exhaustion

Video - 00:19:00

Kubernetes Logging and Auditing

Video - 00:19:00

Kubernetes Pod, Network Policies and 3rd Party Integrations

Video - 00:20:00

Kublet Security and Managing Secrets

Video - 00:20:00

Kubernetes Authentication and Authorization

Video - 00:18:00

Kubernetes Security Design

Video - 00:17:00

Kubernetes and Networking

Video - 00:16:00

Kubernetes Services, Labes and Namespaces

Video - 00:25:00

Kubernetes Nodes, Pods and kublet

Video - 00:21:00

Kubernetes Cluster, API and etcd

Video - 00:24:00

Introduction to Kubernetes

Video - 00:29:00

Meet the author

Matt Tesauro

Matt Tesauro specializes in using containers for continuous security at AppSec Pipelines and is a founder of 10Security. Prior work includes Senior AppSec Engineer roles at Duo Security, Pearson and Rackspace. Matt has 20+ years of specializing in application and cloud security. He is a project leader for OWASP AppSec Pipeline & DefectDojo projects.

The AppSec Pipeline project brings DevOps lessons to AppSec while DefectDojo is an application that normalizes output from 70+ different security tools. He holds two degrees from Texas A&M University and several security and Linux certifications.

Unlock 7 days of free training

  • 1,400+ hands-on courses and labs
  • Certification practice exams
  • Skill assessments

Associated NICE Work Roles

All Infosec training maps directly to the NICE Workforce Framework for Cybersecurity to guide you from beginner to expert across 52 Work Roles.

  • All-Source Analyst
  • Mission Assessment Specialist
  • Exploitation Analyst

Plans & pricing

Infosec Skills Personal

$299 / year

  • 190+ role-guided learning paths (e.g., Ethical Hacking, Threat Hunting)
  • 100s of hands-on labs in cloud-hosted cyber ranges
  • Custom certification practice exams (e.g., CISSP, Security+)
  • Skill assessments
  • Infosec peer community support

Infosec Skills Teams

$799 per license / year

  • Team administration and reporting
  • Dedicated client success manager
  • Single sign-on (SSO)
    Easily authenticate and manage your learners by connecting to any identity provider that supports the SAML 2.0 standard.
  • Integrations via API
    Retrieve training performance and engagement metrics and integrate learner data into your existing LMS or HRS.
  • 190+ role-guided learning paths and assessments (e.g., Incident Response)
  • 100s of hands-on labs in cloud-hosted cyber ranges
  • Create and assign custom learning paths
  • Custom certification practice exams (e.g., CISSP, CISA)
  • Optional upgrade: Guarantee team certification with live boot camps

Learn about scholarships and financing with

Affirm logo

Award-winning training you can trust