Acumen IT Training, Inc.

  • +63 917 714 4350 or DUO: (02) 7971 5203
  • 11th Floor, SM Aura Office Tower, 26th Street, Mckinley Parkway, Fort Bonifacio, Taguig City, Metro Manila, Philippines
Facebook Twitter Linkedin Instagram
  • +63 917 714 4350 or DUO: (02) 7971 5203
  • Main: 11th Floor, SM Aura Office Tower, 26th Street, Mckinley Parkway, Fort Bonifacio, Taguig City, Metro Manila, Philippines
    Satellite Office: 2nd Floor, Bonifacio Technology Center, 31st St. cor. 2nd Ave., Bonifacio Global City, Taguig City​
Facebook Twitter Linkedin Instagram

CERTIFIED KUBERNETES SECURITY SPECIALIST (CKS)

COURSE DESCRIPTION

 

The Certified Kubernetes Security Specialist (CKS) program provides assurance that a CKS has the skills, knowledge, and competence on a broad range of best practices for securing container-based applications and Kubernetes platforms during build, deployment and runtime. CKA certification is required to sit for this exam

Prerequisites

Active (non-expired) CKA certification is a prerequisite for this exam

COURSE OUTLINE

Cluster Setup

Use Network security policies to restrict cluster level access

Use CIS benchmark to review the security configuration of Kubernetes components (etcd, kubelet, kubedns, kubeapi)

Properly set up Ingress objects with security control

Protect node metadata and endpoints

Minimize use of, and access to, GUI elements

Verify platform binaries before deploying

 

Cluster Hardening

Restrict access to Kubernetes API

Use Role Based Access Controls to minimize exposure

Exercise caution in using service accounts e.g. disable defaults, minimize permissions on newly created ones

Update Kubernetes frequently

 

System Hardening

Minimize host OS footprint (reduce attack surface)

Minimize IAM roles

Minimize external access to the network

Appropriately use kernel hardening tools such as AppArmor, seccomp



Please contact us for the full course outline, schedules and for booking a private class.
Imquire Now
Back
;