Training > Cybersecurity > Kubernetes Security Fundamentals (LFS460)
INSTRUCTOR-LED COURSE

Kubernetes Security Fundamentals (LFS460)

Use hands-on labs to learn new skills and knowledge across a range of security best practices for container-based applications & Kubernetes platforms that will make your IT career profile stand out. In this course you learn to maintain security in dynamic, multi-project environments & address security concerns for cloud production environments.

In this live, instructor-led course you will learn with a cohort of fellow IT professionals while gaining key knowledge & skills related to the Certified Kubernetes Security Specialist (CKS) certification exam. Course enrollment includes:
→ FREE CKS exam registration: 12 months to schedule with one retake
→ FREE CKS exam simulator: 2 attempts
→ 12-month access to course materials

Who Is It For
This course is ideal for anyone holding a CKA certification and interested in or responsible for cloud security.
read less read more
What You’ll Learn
This course exposes you to knowledge and skills needed to maintain security in dynamic, multi-project environments. This course addresses security concerns for cloud production environments and covers topics related to the security container supply chain, discussing topics from before a cluster has been configured through deployment, and ongoing, as well as agile use, including where to find ongoing security and vulnerability information. The course includes hands-on labs to build and secure a Kubernetes cluster, as well as monitor and log security events.
read less read more
What It Prepares You For
The course, along with real-world experience and study, will provide the skills and knowledge also tested by the Certified Kubernetes Security Specialist (CKS) exam.
read less read more
Course Outline
Expand All
Collapse All
Introduction
- The Linux Foundation{
- The Linux Foundation{ Training
- The Linux Foundation{ Certifications
- The Linux Foundation{ Digital Badges
- Laboratory Exercises, Solutions and Resources
- Things Change in Linux and Open Source Projects
- E-Learning Course: LFS260
- Platform Details
Cloud Security Overview
- Multiple Projects
- What is Security?
- Assessment
- Prevention
- Detection
- Reaction
- Classes of Attackers
- Types of Attacks
- Attack Surfaces
- Hardware and Firmware Considerations
- Security Agencies
- Manage External Access
- Labs
Preparing to Install
- Image Supply Chain
- Runtime Sandbox
- Verify Platform Binaries
- Minimize Access to GUI
- Policy Based Control
- Labs
Installing the Cluster
- Update Kubernetes
- Tools to Harden the Kernel
- Kernel Hardening Examples
- Mitigating Kernel Vulnerabilities
- Labs
Securing the kube-apiserver
- Restrict Access to API
- Enable Kube-apiserver Auditing
- Configuring RBAC
- Pod Security Admission
- Minimize IAM Roles
- Protecting etcd
- CIS Benchmark
- Using Service Accounts
- Labs
Networking
- Firewalling Basics
- Network Plugins
- Mitigate Brute Force Login Attempts
- Ingress Objects
- Pod to Pod Encryption
- Restrict Cluster Level Access
- Labs
Workload Considerations
- Minimize Base Image
- Static Analysis of Workloads
- Runtime Analysis of Workloads
- Overview of SBOM
- Container Immutability
- Mandatory Access Control
- SELinux
- AppArmor
- Generate AppArmor Profiles
- Labs
Issue Detection
- Understanding Phases of Attack
- Preparation
- Understanding an Attack Progression
- During an Incident
- Handling Incident Aftermath
- Intrusion Detection Systems
- Threat Detection
- Behavioral Analytics
- Labs
Domain Reviews
- Preparing for the Exam
- Labs
Closing and Evaluation Survey
- Evaluation Survey
Prerequisites
To make the most of this course, you will need the following:

  • A good understanding of Linux
  • Familiarity with the command line
  • Familiarity with package managers
  • Familiarity with Git and GitHub
  • Proficiency working with Kubernetes (the equivalent of being CKA-certified)

Exam and e-learning voucher codes will be distributed to attendees within 5 business days following the completion of your class.

Reviews
May 2024
The quality and duration of the course was satisfactory. Regular lab exercises were conducted to maintain participant engagement. Fazlur ensured that adequate breaks were provided for official work, bio breaks, and other needs.
May 2024
It was an excellent interactive session. The facilitator engaged well. He is very humble in answering all the questions for all the folk who come from different backgrounds, enabling them to understand the basics.
May 2024
The instructor's explanation of things was excellent. The lab material and the server setup were also easy to access and play around with.
May 2024
The way the trainer explained the topics was great. He also provided reference links for better understanding, which helped a lot.
May 2024
Trainer Fazlur Rahman Khan communicated clearly, and helped us understand difficult concepts in a simple way. His ability to simplify complex topics made learning engaging and effective.
$3495
Mar, 9 - 12, 2026
9:00 am - 5:00 pm US/Central
Virtual, Instructor-Led
GUARANTEED This course has reached its minimum class size and is guaranteed to run on the scheduled date.
Enroll Now Get a Quote
Dates don't work? Check out our partner schedule
100% Money Back Guarantee
Includes
Live Online (Virtual) or Live (Classroom)
4 days of Instructor-led class time
Hands-on Labs & Assignments
Resources & Course Manual
Certificate of Completion
Digital Badge
12 Months of Access to Online Course
Registration for CKS exam
Experience Level: Intermediate
Get a Quote
Training more than 10 people?Get a corporate quote
How To Register Someone Other Than YourselfInstructions