KubeDojo

KCSA — Kubernetes and Cloud Native Security Associate

Kubernetes security fundamentals — threat models, cluster hardening, platform security, and compliance frameworks. The conceptual foundation before CKS.

Kubestronaut
IntermediateEnglish
New

6 modules · 39 lessons · ~10h 6m total

KCSA

Kubernetes security fundamentals — threat models, cluster hardening, platform security, and compliance frameworks. The conceptual foundation before CKS.

Free

Start Learning

This course includes:

39 written lessons
10h 6m total reading
6 modules
Lifetime access
30-day money-back guarantee

Course content

6 sections · 39 lessons · 10h 6m total length

  1. The 4Cs of Cloud Native Security14 min
  2. Cloud Provider and Infrastructure Security13 min
  3. Security Controls and Frameworks18 min
  4. Isolation Techniques: Namespaces, cgroups, and Sandboxing18 min
  5. Artifact Repository and Image Security15 min
  6. Workload and Application Code Security15 min

  1. API Server Security17 min
  2. Controller Manager and Scheduler Security14 min
  3. Kubelet Security14 min
  4. Container Runtime Security15 min
  5. kube-proxy and Pod Networking Security15 min
  6. etcd Security and Encryption15 min
  7. Client Security and kubeconfig14 min
  8. Storage Security18 min

  1. Pod Security Standards and Pod Security Admission18 min
  2. Authentication: Users, Groups, and Service Accounts15 min
  3. Authorization: RBAC, ABAC, and Webhook Modes18 min
  4. Secrets Management and Encryption at Rest18 min
  5. Namespace Isolation and Network Segmentation15 min
  6. Audit Logging: Configuration and Analysis16 min
  7. Network Policies for Traffic Control14 min

  1. Kubernetes Trust Boundaries and Data Flow15 min
  2. Persistence and Lateral Movement Attacks15 min
  3. Denial of Service in Kubernetes13 min
  4. Malicious Code Execution and Container Escape17 min
  5. Network-Based Attacks and Man-in-the-Middle13 min
  6. Sensitive Data Access and Secret Exposure14 min
  7. Privilege Escalation Paths17 min

  1. Supply Chain Security Overview14 min
  2. Image Registries and Repository Security15 min
  3. Security Observability and Monitoring15 min
  4. Service Mesh Security: mTLS and Policy16 min
  5. PKI and Certificate Management18 min
  6. Network Connectivity and TLS16 min
  7. Admission Controllers: Validating and Mutating16 min

  1. Compliance Frameworks: SOC 2, PCI-DSS, and HIPAA17 min
  2. Threat Modeling: STRIDE, MITRE ATT&CK for Containers13 min
  3. Supply Chain Compliance: SLSA and SBOM14 min
  4. Security Automation and Tooling19 min

Free

Start Learning