DevSecOps - Kubernetes DevOps & Security with Hands-On Labs from Udemy

++ Updated the course with 19 Hands-On Lab Environments.

Note -

Please watch the Preview/Promotional Video to get an idea of what will be covered as part of this course.
Auto-generated English Captions are available to all course videos.

DevSecOps - Automates the integration of security at every phase of SDLC through Jenkins and various other tools.

This course is for teams/individuals looking to integrate security into their DevOps pipeline. We will learn all the needed DevSecOps skills, tools and processes to secure,

secrets/sensitive data from being accidentally pushed to SCMs.
find, fix, patch vulnerabilities in application dependencies, Dockerfile, Images, Kubernetes Resources,
build and test the application, build/push docker image, deploying to Kubernetes cluster securely,
- testing
  - Unit Test,
  - Mutation Test,
  - SAST - Static Application Security Testing,
  - DAST - Dynamic Application Security Testing,
  - Integration Test
monitoring vulnerabilities and Kubernetes cluster using various tools

I will present every topic to you in a simple, visual and easy way,

we'll first go through slides for every concept to understand the topic followed by a practical hands-on exercise.
we'll setup your own Kubernetes cluster for this we provide simple scripts.
we also have a Github repository with various code snippets which we use throughout this course
Join the Kubernetes DevSecOps private Slack community for any topic request/discussion.

Basic Knowledge of the below tools/technologies is good to have, but not mandatory as we discuss each concept and provide all the required scripts, code snippets, examples,

DevOps & Jenkins
Docker & Kubernetes
Linux VM, CLI & Shell Scripting

Note -

Please watch the Preview/Promotional Video to get an idea of what will be covered as part of this course.
Auto-generated English Captions are available to all course videos.

What's inside

Learning objectives

Devsecops approach
Kubernetes security concepts
Hashicorp vault + secret injection into kubernetes pod
Find vulnerabilities in dependencies, dockerfile, images, k8s resources
Unit test, mutation test, sast, dast, integration test

Integrate/shifting security left within the devops pipeline
Fix/patch vulnerabilities in dependencies, dockerfile, images, k8s resources
Monitoring vulnerabilities and kubernetes cluster
Slack notifications for jenkins, prometheus, grafana, falco

Devsecops approach
Kubernetes security concepts
Hashicorp vault + secret injection into kubernetes pod
Find vulnerabilities in dependencies, dockerfile, images, k8s resources
Unit test, mutation test, sast, dast, integration test
Integrate/shifting security left within the devops pipeline
Fix/patch vulnerabilities in dependencies, dockerfile, images, k8s resources
Monitoring vulnerabilities and kubernetes cluster
Slack notifications for jenkins, prometheus, grafana, falco

Syllabus

Introduction

Welcome and Course Introduction

Slack Channel and LinkedIn

Best 1080p Video Quality

I really hope you found this course valuable.

Please leave a review and share your experience.

I’m also available for questions - send me a direct message or connect with me over LinkedIn anytime.

Traffic lights

Read about what's good

what should give you pause

and possible dealbreakers

Covers integrating security into DevOps pipelines, which is essential for modern software development lifecycles

Explores static and dynamic application security testing (SAST and DAST), which are crucial for identifying vulnerabilities

Includes hands-on labs for tools like Talisman, SonarQube, and OWASP ZAP, which are used in real-world scenarios

Requires basic knowledge of DevOps, Jenkins, Docker, Kubernetes, Linux, and shell scripting, which may require additional learning

Examines Kubernetes security concepts and tools like Kube-bench, which are important for securing containerized environments

Uses Jenkins, which may require learners to have access to or set up their own Jenkins server

Reviews summary

Practical devsecops for kubernetes professionals

According to learners, this course provides a strong foundation and practical skills in DevSecOps specifically for Kubernetes environments. Students highlight the hands-on labs as particularly helpful and engaging for applying concepts. While some found the pace quick or prerequisites beneficial, the course is generally seen as a valuable resource for integrating security into DevOps pipelines and is well-structured with clear explanations. Recent reviews suggest the course content remains relevant.

Instructor explains complex topics clearly.

"Instructor explains complex things in a very simple manner."

"Concepts are presented clearly and easy to follow."

"The explanations for each tool and their purpose were very helpful."

"I appreciated the visual aids used in the lectures."

"He breaks down difficult topics into manageable parts."

Covers wide range of DevSecOps tools/concepts.

"This course gave me a good overview of the tools and processes involved in DevSecOps for Kubernetes."

"The course covers essential topics like SAST, DAST, IaC scanning, and secrets management effectively."

"I learned about integrating security checks throughout the CI/CD pipeline."

"It covers multiple tools which is great for understanding the ecosystem."

"A really good introduction to DevSecOps in the context of Kubernetes."

Labs are practical and reinforce learning.

"The hands-on labs really helped solidify my understanding and apply the concepts."

"Labs are well-designed and provide practical experience with the tools."

"Practicals parts are perfect. Instructor explains everything well."

"Learning by doing in the labs is very helpful."

"I particularly enjoyed the labs that covered scanning Docker images and Kubernetes manifests for vulnerabilities."

Pace is fast; some wish for more depth.

"The course moves very fast at times, particularly in the later sections."

"I felt some topics could have gone into a bit more depth."

"Sometimes we just install tools without much explanation of inner workings."

"Could be challenging if you are brand new to all the tools covered."

"Pace can be quick if you are not familiar with Kubernetes or DevOps fundamentals."

Basic DevOps/Kubernetes knowledge recommended.

"Having some background in DevOps and Kubernetes is definitely helpful."

"I recommend having basic knowledge of Docker and Jenkins before starting."

"Course is better suited for those with some prior cloud or infrastructure experience."

"As the description says, basic knowledge helps a lot."

"I struggled a bit without a strong Kubernetes background."

Activities

Be better prepared before your course. Deepen your understanding during and after it. Supplement your coursework and achieve mastery of the topics covered in DevSecOps - Kubernetes DevOps & Security with Hands-On Labs with these activities:

Review Docker and Kubernetes Fundamentals

Show steps

Solidify your understanding of Docker and Kubernetes concepts before diving into the DevSecOps aspects. This will provide a strong foundation for understanding the security implications within these environments.

Browse courses on Kubernetes

Show steps

Review Docker images, containers, and networking.
Study Kubernetes pods, deployments, and services.
Practice deploying a simple application using Docker and Kubernetes.

Read 'Effective DevOps'

Show steps

Understand the broader context of DevOps and how security integrates into the development lifecycle. This book will provide a solid foundation for understanding the DevSecOps concepts covered in the course.

View Effective DevOps on Amazon

Show steps

Read the chapters on culture, automation, and measurement.
Reflect on how these principles apply to Kubernetes security.

Read 'Kubernetes in Action'

Show steps

Gain a deeper understanding of Kubernetes architecture and best practices. This book will supplement the course material and provide practical examples for real-world scenarios.

View Kubernetes in Action, Second Edition on Amazon

Show steps

Read the chapters relevant to deployment and security.
Experiment with the examples provided in the book.

Four other activities

Expand to see all activities and additional details

Show all seven activities

Secure a Sample Kubernetes Application

Show steps

Apply the DevSecOps principles learned in the course to a practical project. This will solidify your understanding of the tools and techniques for securing Kubernetes deployments.

Show steps

Choose a sample application to deploy on Kubernetes.
Implement security measures using tools like Trivy, Kubesec, and OPA Conftest.
Automate security checks within a Jenkins pipeline.
Document your security implementation and findings.

Kubernetes Security Hardening Exercises

Show steps

Reinforce your knowledge of Kubernetes security best practices through hands-on exercises. This will help you identify and mitigate common vulnerabilities.

Show steps

Configure Pod Security Policies to restrict container capabilities.
Implement Network Policies to control pod-to-pod communication.
Harden the kubelet configuration to prevent unauthorized access.

Write a Blog Post on DevSecOps in Kubernetes

Show steps

Share your knowledge and insights on DevSecOps in Kubernetes with a wider audience. This will help you consolidate your learning and improve your communication skills.

Show steps

Research a specific aspect of DevSecOps in Kubernetes.
Write a blog post explaining the concept and its benefits.
Include practical examples and code snippets.
Publish your blog post on a relevant platform.

Contribute to a Kubernetes Security Project

Show steps

Gain hands-on experience with Kubernetes security by contributing to an open-source project. This will expose you to real-world challenges and best practices.

Show steps

Identify a Kubernetes security project on GitHub.
Review the project's documentation and code.
Identify a bug or feature to work on.
Submit a pull request with your changes.

Career center

Learners who complete DevSecOps - Kubernetes DevOps & Security with Hands-On Labs will develop knowledge and skills that may be useful to these careers:

Kubernetes Security Specialist

A Kubernetes Security Specialist focuses on securing Kubernetes environments and containerized applications. This role involves implementing security policies, monitoring for threats, and ensuring compliance with industry standards. The DevSecOps course is invaluable for anyone looking to specialize in Kubernetes security. The course covers essential topics such as Kubernetes security concepts, vulnerability scanning, and secure deployment practices. The hands-on labs provide practical experience in securing Kubernetes clusters and integrating security into the deployment pipeline. Furthermore, the course explores tools for monitoring vulnerabilities and Kubernetes clusters, which are essential for maintaining a secure environment. If you want to become a Kubernetes Security Specialist, this course provides the necessary knowledge and skills to succeed. The course is also helpful in testing Kuberbetes deployments. A prospective Kubernetes Security Specialist should consider this course.

See salaries and explore the career path for Kubernetes Security Specialist

Security Automation Engineer

Security Automation Engineers work to automate security tasks and processes. This role involves developing scripts, tools, and workflows to streamline security operations and improve efficiency. The DevSecOps course aligns perfectly with the responsibilities of a Security Automation Engineer. The course emphasizes automating the integration of security at every phase of the software development lifecycle through Jenkins and other tools. By learning to automate security testing, vulnerability scanning, and compliance checks, you can significantly reduce the risk of security incidents. The hands-on labs provide practical experience in building and deploying security automation solutions. A Security Automation Engineer would benefit from the skills and knowledge covered in the DevSecOps course. The course is also helpful in setting up a Kubernetes cluster. A prospective Security Automation Engineer should consider this course.

See salaries and explore the career path for Security Automation Engineer

Application Security Engineer

An Application Security Engineer focuses on securing software applications throughout their lifecycle. This role involves performing security assessments, identifying vulnerabilities, and implementing security measures to protect against attacks. The DevSecOps course helps enhance the skills of an Application Security Engineer by providing a deep dive into integrating security into the DevOps pipeline. The course's topics on static and dynamic application security testing, vulnerability management, and secure coding practices are directly relevant to this role. By learning to use tools like SonarQube and OWASP ZAP, you can effectively identify and mitigate security risks in applications. The hands-on labs provide practical experience in applying these security principles in real-world scenarios. This course is useful in learning to find, fix, and patch vulnerabilities in applications. Application security engineers should take this course to elevate their skillset.

See salaries and explore the career path for Application Security Engineer

Security Engineer

A Security Engineer focuses on protecting computer systems and networks. This role involves identifying vulnerabilities, implementing security measures, and responding to security incidents. The DevSecOps course emphasizes integrating security into the DevOps pipeline which is essential for a Security Engineer. The course's topics on finding and fixing vulnerabilities in dependencies, Dockerfiles, images, and Kubernetes resources directly correlate with a Security Engineer's responsibilities. Furthermore, learning about static and dynamic application security testing helps build the skills to proactively identify and mitigate potential risks. The hands-on labs provide valuable experience in applying these security principles in real-world scenarios. The course also covers best practices for securing Kubernetes environments, which are increasingly common in modern cloud-native applications. A security engineer should take this course to increase their knowledge and skills.

See salaries and explore the career path for Security Engineer

Security Architect

A Security Architect designs and implements security solutions for an organization's IT infrastructure. This role requires a deep understanding of security principles, technologies, and best practices. The DevSecOps course helps enhance a Security Architect's skills by providing a comprehensive overview of integrating security into the DevOps pipeline. The course's topics on static and dynamic application security testing, vulnerability management, and secure coding practices align with the responsibilities of a Security Architect. By learning to use tools like SonarQube and OWASP ZAP, you can effectively identify and mitigate security risks in applications. The hands-on labs provide practical experience in applying these security principles in real-world scenarios. Aspiring security architects should take this course.

See salaries and explore the career path for Security Architect

Cloud Security Engineer

A Cloud Security Engineer specializes in securing cloud-based systems and data. This role involves implementing security controls, monitoring cloud environments for threats, and ensuring compliance with security policies. The DevSecOps course directly aligns with the responsibilities of a Cloud Security Engineer, particularly with its emphasis on Kubernetes security. The course's coverage of vulnerability scanning, security testing, and secure deployment practices equips a Cloud Security Engineer with the skills needed to protect cloud-native applications. The hands-on labs offer valuable experience in securing Kubernetes clusters and integrating security into the cloud deployment pipeline. The course covers tools useful for monitoring vulnerabilities and Kubernetes clusters. The DevSecOps course provides the knowledge and practical skills needed to excel in securing cloud environments. An aspiring cloud security engineer should enroll in this course to gain security expertise.

See salaries and explore the career path for Cloud Security Engineer

DevOps Engineer

DevOps Engineers work to streamline and automate software development and deployment processes. This role involves managing infrastructure, automating deployments, and ensuring smooth operations. The DevSecOps course helps enhance a DevOps Engineer's skills by integrating security into the development lifecycle. The course's focus on DevSecOps principles, Kubernetes security concepts, and vulnerability management directly benefits a DevOps Engineer. By learning to automate security testing and integrate security tools into the pipeline, you can build more secure and reliable systems. The course provides practical experience through hands-on labs, allowing you to apply these skills effectively. The exploration of tools like Jenkins and Kubernetes is particularly relevant. This course teaches tools and processes to secure secrets and sensitive data. A DevOps engineer should enroll in this course to gain a more comprehensive understanding of secure software delivery.

See salaries and explore the career path for DevOps Engineer

Technical Lead

Technical Leads guide and mentor development teams, ensuring the quality and security of software projects. The DevSecOps course helps enhance a Technical Lead's skills by providing a comprehensive understanding of integrating security into the DevOps pipeline. The course's topics on static and dynamic application security testing, vulnerability management, and secure coding practices align with the responsibilities of a Technical Lead. By learning to use tools to effectively identify and mitigate security risks in applications. Also the hands-on labs provide practical experience in applying these security principles in real-world scenarios. Additionally, since Technical Leads oversee projects, understanding tools to fix, and patch vulnerabilities is essential.

See salaries and explore the career path for Technical Lead

Information Security Analyst

An Information Security Analyst protects an organization's data and systems from cyber threats. They monitor for security breaches, investigate incidents, and implement security measures. The DevSecOps course provides relevant skills for an Information Security Analyst, particularly in understanding how to integrate security into the DevOps pipeline. The course covers topics such as vulnerability management, security testing, and secure deployment practices. By learning to identify and mitigate security risks early in the development lifecycle, you can significantly reduce the likelihood of security incidents. The course's hands-on labs provide practical experience in applying these security principles. This course teaches how to find and fix vulnerabilities in application dependencies. This course may be useful for an information security analyst to learn about DevSecOps.

See salaries and explore the career path for Information Security Analyst

Compliance Engineer

Compliance Engineers ensure that an organization adheres to relevant laws, regulations, and standards. This role involves conducting audits, developing compliance policies, and monitoring for compliance violations. The DevSecOps course may be useful for Compliance Engineers, particularly in understanding how security practices align with compliance requirements. The course covers topics such as vulnerability management, security testing, and secure deployment practices, which are all relevant to maintaining compliance. By learning to automate compliance checks and integrate security into the development lifecycle, you can streamline the compliance process and reduce the risk of non-compliance. This course is helpful in learning how to fix vulnerabilities. Taking this course is likely to be a part of training for a compliance engineer.

See salaries and explore the career path for Compliance Engineer

Software Developer

A Software Developer designs, develops, and tests software applications. While primarily focused on coding, understanding security is increasingly important. The DevSecOps course may be useful to a Software Developer by providing insights into secure coding practices and vulnerability management. The course covers topics such as static and dynamic application security testing, which can help you identify and fix security flaws in your code. By integrating security into the development process, you can build more robust and secure applications. The course is valuable for hands-on labs to apply security principles. The course teaches how to find and patch vulnerabilities. This course may be relevant for a software developer.

See salaries and explore the career path for Software Developer

Systems Administrator

Systems Administrators manage and maintain computer systems, servers, and networks. While their primary focus is on infrastructure, security is a critical aspect of their role. The DevSecOps course may be useful to Systems Administrators by providing a better understanding of security best practices and vulnerability management. The course covers topics such as Kubernetes security concepts, vulnerability scanning, and secure deployment practices, which are all relevant to securing infrastructure. By learning to automate security tasks and integrate security into the deployment pipeline, you can improve the overall security posture of your systems. This course may be relevant for a systems administrator.

See salaries and explore the career path for Systems Administrator

IT Manager

An IT Manager oversees an organization's information technology infrastructure and operations. While not directly involved in technical tasks, they need a broad understanding of IT security principles. The DevSecOps course may be useful for IT Managers by providing a high-level overview of DevSecOps concepts and best practices. The course covers topics such as security testing, vulnerability management, and secure deployment practices, which can help them make informed decisions about IT security investments. This course also discusses setting up your own Kubernetes cluster. This course may be relevant for an IT manager.

See salaries and explore the career path for IT Manager

Database Administrator

Database Administrators are responsible for the performance, integrity, and security of databases. While their primary focus is on data management, security is a critical aspect of their role. This DevSecOps course may be useful for Database Administrators by providing some understanding of security best practices. The course covers topics such as Kubernetes security concepts, as well as vulnerability scanning. The course covers tools that promote secure data practices. The course provides the opportunity for hands-on application of security principles. A database administrator may take this course.

See salaries and explore the career path for Database Administrator

Network Engineer

A Network Engineer designs, implements, and manages an organization's network infrastructure. While their primary focus is on network connectivity, security is an important aspect of their role. This DevSecOps course may be useful for Network Engineers by providing better understanding of security best practices. The course covers topics such as Kubernetes security concepts, as well as vulnerability scanning. The course provides the opportunity for hands-on application of security principles. A Network Engineer may take this course.

See salaries and explore the career path for Network Engineer

Reading list

We've selected two books that we think will supplement your learning. Use these to develop background knowledge, enrich your coursework, and gain a deeper understanding of the topics covered in DevSecOps - Kubernetes DevOps & Security with Hands-On Labs.

Kubernetes in Action, Second Edition

Save

Provides a comprehensive guide to Kubernetes, covering everything from basic concepts to advanced deployment strategies. It's particularly useful for understanding the underlying architecture and how to effectively manage Kubernetes clusters. It serves as a valuable reference throughout the course and beyond, offering practical examples and best practices. This book is commonly used as a textbook at academic institutions and by industry professionals.

Kubernetes in Action, Second Edition

Paperback

$$$

Effective DevOps

Save

Provides a broad overview of DevOps principles and practices, which are essential for understanding DevSecOps. It covers topics such as collaboration, automation, and continuous improvement. While not specific to Kubernetes, it provides valuable context for the overall DevSecOps approach. This book is more valuable as additional reading than it is as a current reference.

DevSecOps - Kubernetes DevOps & Security with Hands-On Labs

What's inside

Learning objectives

Syllabus

Traffic lights

Save this course

Reviews summary

Practical devsecops for kubernetes professionals

Activities

Career center

Reading list

Share

Similar courses