4D Training & Consultancy

IT Security

Kubernetes and Container Runtime Security

This in-depth course develops directly applicable capability in Kubernetes and Container Runtime Security. It connects Cluster Threat Model and Control Plane, Identity, Authorization, and Secrets, and Pod and Network Hardening to the decisions, controls, and activities participants need to perform in their workplace.

Duration confirmed during proposalIn-house, online, or customized deliveryCorporate teams and professional groups

Overview

Practical learning for workplace transfer.

This in-depth course develops directly applicable capability in Kubernetes and Container Runtime Security. It connects Cluster Threat Model and Control Plane, Identity, Authorization, and Secrets, and Pod and Network Hardening to the decisions, controls, and activities participants need to perform in their workplace. The five-module curriculum progresses toward Cluster Security Lab, using evidence, scenarios, and work products appropriate to the subject.

Objectives

  • Analyze cluster threat model and control plane, including api server, etcd, scheduler, controller, and kubelet attack surfaces.
  • Configure or structure identity, authorization, and secrets, including service accounts, rbac roles, bindings, and privilege escalation.
  • Evaluate pod and network hardening, including pod security standards, capabilities, seccomp, and read-only filesystems.
  • Manage runtime detection and incident response, including system calls, process activity, file changes, and network indicators.
  • Apply cluster security lab, including review manifests for privilege and secret exposure.

Target audience

  • Professionals responsible for this subject area
  • Managers, supervisors, and team leaders
  • Analysts, specialists, engineers, or coordinators working with the relevant processes
  • Project, implementation, assurance, or improvement team members
  • Professionals preparing for broader responsibilities in this field

Program outline

A clear structure for the learning journey.

Program outline

Outline points are grouped in one designed block instead of being treated as separate module cards.

Module 1: Cluster Threat Model and Control Plane

API server, etcd, scheduler, controller, and kubelet attack surfaces

Shared-responsibility boundaries for managed and self-managed clusters

Security contexts, admission control, and audit logging

Module 2: Identity, Authorization, and Secrets

Service accounts, RBAC roles, bindings, and privilege escalation

Workload identity and cloud IAM integration

Secrets encryption, external secret stores, and rotation

Module 3: Pod and Network Hardening

Pod Security Standards, capabilities, seccomp, and read-only filesystems

NetworkPolicy default deny, namespace isolation, and egress controls

Image provenance, signing, scanning, and registry policy

Module 4: Runtime Detection and Incident Response

System calls, process activity, file changes, and network indicators

Falco-style rules, Kubernetes audit events, and alert tuning

Pod isolation, credential revocation, evidence capture, and recovery

Module 5: Cluster Security Lab

Review manifests for privilege and secret exposure

Implement RBAC, pod, and network restrictions

Investigate a simulated container escape indicator

Materials provided

  • ○ Course-specific presentation slides
  • ○ Guided exercises, scenarios, or configured-environment activities appropriate to the subject
  • ○ Course-specific worksheets, checklists, or calculation templates
  • ○ Applied workplace case materials
  • ○ 4D Certificate of Completion issued by 4D Training & Consultancy
  • ○ Post-course support for implementation questions

Training Options

Programs can be delivered in-house, online, or in a blended format depending on your team's schedule, location, and learning objectives. When an external certificate or exam is included, certification rules and fees remain under the relevant awarding body's policies, while 4D provides the training and preparation support.

Why choose 4D

4D Training & Consultancy adapts the program to the client’s operating environment. Delivery combines structured explanation with subject-specific analysis, exercises, and implementation decisions so participants can transfer the learning to real responsibilities without implying vendor authorization.

Speak to 4D

Plan the right training or consultancy path for your team.

Share a few details and 4D will help route your inquiry toward corporate training, consultancy, assessment, Phoenix-enabled support, or a tailored program.