-
Kubernetes has established itself as the de facto standard for operating containerized applications. However, as it becomes more widespread, the need to secure Kubernetes clusters against attacks and misconfigurations is also increasing.
In this Kubernetes security course, you will learn about key security aspects of Kubernetes - from securing individual pods and access control using RBAC to network security, auditing and the protection of sensitive data.
We use practical exercises and lab environments to teach you how Kubernetes can be operated securely - both at the infrastructure level and with regard to application operation.
After completing the course, you will be able to:
- Configure Kubernetes clusters securely
- Define and enforce security policies with Kyverno
- Monitor and analyze security-related processes
- integrate vulnerability assessment tools into their DevSecOps processes
-
Course Contents
-
- Kubernetes security architecture and threat model
- Pod security standards & admission control with Kyverno
- Access control with RBAC and namespace isolation
- Policy validation with Kyverno
- Securing secrets and ConfigMaps (including Vault integration)
- Network segmentation with network policies
- Hardening container images (CIS benchmark, Trivy)
- Auditing and monitoring with Kubernetes audit logs and Falco
- Use of security tools such as kube-bench, kube-hunter, Trivy
- Hands-on labs: analysis, hardening, policy creation
The detailed digital documentation package, consisting of an e-book and PDF, is included in the price of the course.
Premium Course Documents
In addition to the digital documentation package, the exclusive Premium Print Package is also available to you.
- High-quality color prints of the ExperTeach documentation
- Exclusive folder in an elegant design
- Document pouch in backpack shape
- Elegant LAMY ballpoint pen
- Practical notepad
The Premium Print Package can be added during the ordering process for € 150,- plus VAT (only for classroom participation). -
Target Group
-
The course is aimed at administrators, DevOps engineers and platform operators who already use Kubernetes or want to secure it.
-
Knowledge Prerequisites
-
You should have basic knowledge of Kubernetes, in particular:
- Experience in working with `kubectl` and YAML resources
- Familiarity with the concepts of pods, deployments and services
- A solid understanding of containerization with Docker or Podman
You can acquire this knowledge in the courses Kubernetes - Orchestration in Detail and Kubernetes Advanced - Complex Deployments, Network Configuration and Interfaces.
-
Classroom training
- Do you prefer the classic training method? A course in one of our Training Centers, with a competent trainer and the direct exchange between all course participants? Then you should book one of our classroom training dates!
-
Hybrid training
- Hybrid training means that online participants can additionally attend a classroom course. The dynamics of a real seminar are maintained, and the online participants are able to benefit from that. Online participants of a hybrid course use a collaboration platform, such as WebEx Training Center or Saba Meeting. To do this, a PC with browser and Internet access is required, as well as a headset and ideally a Web cam. In the seminar room, we use specially developed and customized audio- and video-technologies. This makes sure that the communication between all persons involved works in a convenient and fault-free way.
-
Online training
- You wish to attend a course in online mode? We offer you online course dates for this course topic. To attend these seminars, you need to have a PC with Internet access (minimum data rate 1Mbps), a headset when working via VoIP and optionally a camera. For further information and technical recommendations, please refer to.
-
Tailor-made courses
-
You need a special course for your team? In addition to our standard offer, we will also support you in creating your customized courses, which precisely meet your individual demands. We will be glad to consult you and create an individual offer for you.

-
Kubernetes has established itself as the de facto standard for operating containerized applications. However, as it becomes more widespread, the need to secure Kubernetes clusters against attacks and misconfigurations is also increasing.
In this Kubernetes security course, you will learn about key security aspects of Kubernetes - from securing individual pods and access control using RBAC to network security, auditing and the protection of sensitive data.
We use practical exercises and lab environments to teach you how Kubernetes can be operated securely - both at the infrastructure level and with regard to application operation.
After completing the course, you will be able to:
- Configure Kubernetes clusters securely
- Define and enforce security policies with Kyverno
- Monitor and analyze security-related processes
- integrate vulnerability assessment tools into their DevSecOps processes
-
Course Contents
-
- Kubernetes security architecture and threat model
- Pod security standards & admission control with Kyverno
- Access control with RBAC and namespace isolation
- Policy validation with Kyverno
- Securing secrets and ConfigMaps (including Vault integration)
- Network segmentation with network policies
- Hardening container images (CIS benchmark, Trivy)
- Auditing and monitoring with Kubernetes audit logs and Falco
- Use of security tools such as kube-bench, kube-hunter, Trivy
- Hands-on labs: analysis, hardening, policy creation
The detailed digital documentation package, consisting of an e-book and PDF, is included in the price of the course.
Premium Course Documents
In addition to the digital documentation package, the exclusive Premium Print Package is also available to you.
- High-quality color prints of the ExperTeach documentation
- Exclusive folder in an elegant design
- Document pouch in backpack shape
- Elegant LAMY ballpoint pen
- Practical notepad
The Premium Print Package can be added during the ordering process for € 150,- plus VAT (only for classroom participation). -
Target Group
-
The course is aimed at administrators, DevOps engineers and platform operators who already use Kubernetes or want to secure it.
-
Knowledge Prerequisites
-
You should have basic knowledge of Kubernetes, in particular:
- Experience in working with `kubectl` and YAML resources
- Familiarity with the concepts of pods, deployments and services
- A solid understanding of containerization with Docker or Podman
You can acquire this knowledge in the courses Kubernetes - Orchestration in Detail and Kubernetes Advanced - Complex Deployments, Network Configuration and Interfaces.
-
Classroom training
- Do you prefer the classic training method? A course in one of our Training Centers, with a competent trainer and the direct exchange between all course participants? Then you should book one of our classroom training dates!
-
Hybrid training
- Hybrid training means that online participants can additionally attend a classroom course. The dynamics of a real seminar are maintained, and the online participants are able to benefit from that. Online participants of a hybrid course use a collaboration platform, such as WebEx Training Center or Saba Meeting. To do this, a PC with browser and Internet access is required, as well as a headset and ideally a Web cam. In the seminar room, we use specially developed and customized audio- and video-technologies. This makes sure that the communication between all persons involved works in a convenient and fault-free way.
-
Online training
- You wish to attend a course in online mode? We offer you online course dates for this course topic. To attend these seminars, you need to have a PC with Internet access (minimum data rate 1Mbps), a headset when working via VoIP and optionally a camera. For further information and technical recommendations, please refer to.
-
Tailor-made courses
-
You need a special course for your team? In addition to our standard offer, we will also support you in creating your customized courses, which precisely meet your individual demands. We will be glad to consult you and create an individual offer for you.
