課程資料
- 2026年7月27日(週一) - 2026年7月29日(週三) 上午 9:30 - 下午 5:00
- 2026年9月28日(週一) - 2026年9月30日(週三) 上午 9:30 - 下午 5:00
- 2026年11月23日(週一) - 2026年11月25日(週三) 上午 9:30 - 下午 5:00
(Early Bird HK13500)
- 可獲發
- *證書的發放與分配,依課程提供者的政策及安排而定。
課程簡介
Overview
The course is a comprehensive program designed to provide participants with the necessary
knowledge and practical skills to secure Kubernetes environments effectively. The course
covers a range of essential topics, including tracking critical vulnerabilities and staying up to
date with Common Vulnerabilities and Exposures (CVE) updates. Participants will learn how
to implement security measures following the widely accepted Center for Internet Security
(CIS) Benchmarks for Kubernetes, cloud services, and containers.
Through hands-on exercises, participants will gain expertise in conducting security
configuration assessments, identifying misconfigurations, and generating comprehensive
reports for improved risk management. They will also explore the deployment of Open Policy
Agent (OPA) to enforce security policies and govern access control within Kubernetes
clusters.
The course also covers configuring Ingress Controllers with Transport Layer Security (TLS)
certificates, image analysis for security vulnerabilities, container security scanning,
monitoring cluster activities, network interfaces, and implementing host-based intrusion
detection.
By the end of the training, participants will have a solid foundation in Kubernetes security
best practices and be equipped to implement critical security measures to protect
Kubernetes environments, cloud services, and containers in today's increasingly challenging
threat landscape.
Prerequisites
Participants should have a solid understanding of Kubernetes fundamentals and experience
working with containerization technologies. Familiarity with concepts such as pods,
deployments, services, and namespaces is essential. Prior experience in managing and
deploying applications on Kubernetes clusters is highly recommended.
Duration : 3 days
課程內容
Course Outline
1. Tracking Vulnerabilities and CVE Updates
2. Strengthening Security Defenses for Kubernetes, Cloud Services, and Containers
3. Security Configuration Assessment and Reporting
4. Deployment of Open Policy Agent (OPA)
5. Enhancing Application Security through Lightweight Virtualization Techniques
6. Securing the kube-apiserver
7. Encrypting Secrets
8. Implementing Network Policies
9. Configuring Ingress Controller with TLS Certificates
10. Image Analysis for Security:
11. Container Security Scanning:
12. Tracking and Monitoring Cluster Activity: