Learn how Defending Cloud Native Infrastructure

Cloud native infrastructure and service providers are enabling organizations to build and deliver modern systems faster than ever. The end-to-end toolchain supporting the systems includes managed services to create cloud infrastructure, store source code, build containers, and manage clusters. For information security professionals, the attack surface created by these modern systems can be difficult to defend and monitor. SEC584 explores Docker and Kubernetes, key components of the cloud native infrastructure stack, providing in-depth analysis of the attack surface, misconfigurations, attack patterns, and hardening steps. Students will gain hands-on experience building, exploring, and securing real-world modern systems.

SEC584 starts by painting a portrait of the modern cloud-native infrastructure hosted in Google Cloud. After deploying cloud resources, students examine methods of compromise, walk through attack scenarios, and then shift their focus to defending and remediating infrastructure services. This includes hardening Kubernetes orchestrator and workload configuration, deploying security testing and monitoring software in pipelines and clusters, cryptographically signing images and build pipelines, and applying AppArmor and Seccomp profiles to containerized workloads.

 

The course then shifts its focus to defending a live Kubernetes deployment. After students identify several Kubernetes weaknesses, hands-on exercises attacking and remediating security and network policies and admission controllers will help them lock down the lab environment. Attacks and controls are threat-modeled to ensure they are applied correctly, tested out-of-band to ensure their efficacy, and applied at multiple stages throughout the pipeline to enhance engineers' productivity and feedback loops.

Location: Sialkot, Punjab, Pakistan

Comments

Post a Comment

Popular posts from this blog

Why do I need to learn about DevOps?

Image
Are you looking for a comprehensive  DevOps certification training course   that will help you master the important practices associated with this dynamic and growing field? Look no further than our online course! Our curriculum offers everything needed to become proficient in Git, Jenkins, Docker, Ansible, Terraform, Prometheus, Grafana – all of which are essential tools for DevOps professionals. Whether you’re new to the concept of DevOps or just want to improve your skillset faster, our online course is the perfect way to get started. What is DevOps? DevOps is a process that integrates developers and operators to build, release, deploy, automate and monitor applications. DevOps ensures the quality of the applications by integrating different parts of the development cycle into the production environment. The goal of this integration is twofold: first, it reduces or eliminates errors during application construction; second, it improves speed and agility of application delivery. The t
Read more

what is microsoft cloud adoption framework

Image
The   # Cloud   # Adoption   # Framework   is the One   # Microsoft   approach to cloud adoption in Azure, consolidating and sharing best practices from Microsoft employees, partners, and customers. The framework gives   # customers   a set of tools, guidance, and narratives that help shape technology,   # business , and people strategies for driving desired business outcomes during their adoption effort. This guidance aligns to the following phases of the cloud adoption   # lifecycle , ensuring easy access to the right guidance at the right time. Register now at   http://www.itechnets.com/ # microsoftcloud   # itechnetsSproud   # itechnetsCloud
Read more

What are the best resources for learning about DevOps?

Image
Is it good to learn DevOps? DevOps has recently become the buzzword for every techpreneurs and the newjoinees in the industry. It has certainly created that sparkle which made it one of the most lucrative job and must have skillset. It is basically the marriage between two areas – Development and Operation. Advancements in Cloud Technologies and DevOps have had a seismic impact on the software development industry. Software developed on the cloud provides a flexible, scalable, cost-effective solution, providing competitive solutions that render more traditional methods completely obsolete.   There are multiple way you can start with DevOps path.You can start with basic of each tools and know more about tools using respective documentation of each DevOps tool. Some basic tools to start with are : Basics of Linux and scripting Git Jenkins Ansible Cloud Services Docker Kubernetes  Benefits of Learning DevOps DevOps brings with it benefits which one cannot ignore. It acceler
Read more