Securing Kubernetes Clusters with Red Hat Advanced Cluster Security (DO430)

Address security challenges by applying Red Hat Advanced Cluster Security for Kubernetes in an OpenShift cluster environment.

Customers want to learn how Red Hat Advanced Cluster Security for Kubernetes (RHACS) can help them solve their security challenges. However, their security teams might lack experience with Kubernetes and OpenShift, and so they have challenges with implementation.  In particular, their security teams have several needs:

• Integrate RHACS with DevOps practices and know how to use it to automate DevSecOps, to enable their teams to operationalize and secure their supply chain, infrastructure, and workloads
• Assess compliance based on industry-standard benchmarks and get remediation guidance
• Apply vulnerability management, policy enforcement, and network segmentation to secure their workloads

RHACS customers might already be using external image registries and Security Information and Event Management (SIEM) tools. They need to integrate RHACS with their existing set of external components to achieve their security goals.

Impact on the Organization

Securing Kubernetes Clusters with Red Hat Advanced Cluster Security supports customers who run containerized workloads on Kubernetes, and who often face several security-related challenges:

• Delays in container deployments due to security issues
• Revenue loss due to Kubernetes-related security incidents
• Decreased developer productivity due to time that is spent to address security concerns

This course teaches how RHACS provides actionable solutions to address these challenges, to help teams secure their Kubernetes environments more effectively and to streamline development workflows to include security checks at an early stage.

Impact on the Individual

As a result of attending this course, students will be able to install and use RHACS and to secure their Kubernetes workloads and clusters according to the best industry practice.

Students should be able to demonstrate the following skills:

• Installing RHACS Central and importing secure clusters
• Troubleshooting and fixing common installation issues
• Interpreting vulnerability results and generating reports
• Identifying and mitigating risks in deployments
• Creating and enforcing build, deployment, and runtime policies
• Implementing policy checks in a CI/CD pipeline to secure the software supply chain
• Applying network segmentation to reduce attacks
• Generating and applying network policies within a CI/CD pipeline by using roxctl commands
• Managing and retrieving compliance evidence
• Applying third-party integrations for centralized alert notification, backup and restore, and identity and permission management