CKA: Journey to DevSecOps

i.hrishikesh nate
3 min readSep 28, 2024

As a full-time AppSec engineer, I wondered how to get my skills into secure development practices. I have been pursuing my interest in Kubernetes for the past year in order to improve my DevSecOps skills. As having the skillset in each domain helps maintain the overall security posture of the application. I will discuss my experiences and learnings I had along the route in this blog post.

Let's start…

Why Kubernetes?

So here it begins

Kubernetes is a portable, extensible, open source platform for managing containerized workloads and services, that facilitates both declarative configuration and automation. It has a large, rapidly growing ecosystem. Kubernetes services, support, and tools are widely available.

The following are main ideas that encapsulate the reasons behind Kubernetes widespread adoption:

  1. Container orchestration: This technology automates the administration, scalability, and deployment of applications inside containers.
  2. Scalability: Adapts readily to changing demand levels without causing a disruption in service.
  3. Self-Healing: To preserve service continuity, it automatically swaps out failing containers.
  4. Automated Rollouts/Rollbacks: Facilitates smooth updates and quick rollbacks to previous versions if necessary.
  5. Load balancing and service discovery: Controls traffic to containers by utilizing either their IP addresses or DNS names.
  6. Secret Management: securely manages and keeps private configuration information.

Here are the resources and tips that I used to study that required to become CKA .

Official Kuberenetes Docs — can be used in the exam, so be very comfortable using the documentation — To search for specific topics.

Focus on writing imperative commands to save up time.

Be comfortable copying snippets from the official documents for declarative commands.

What is a Declarative command?

Systems such as Kubernetes allow you to use configuration files and declarative instructions to define the intended state of your system.

Kubernetes automatically maintains the state of the system according to your standards, based on the description you provide.

By continuously monitoring and changing the system to preserve the desired state, this technique improves resilience, simplifies management, and increases consistency.

Autocomplete can help you gain speed — here’s the git link

Linux Foundation on purchase, provides access to killer.sh {similar to real lab environment }, which you should only access when you are prepared.

Killercoda — offers free labs to practice, but it a has a single scenario per lab kind of interesting to practise a single concept.

Rest best course to learn from kodeKloud, the entire course is designed to get all the things you need to prepare — they have a roadmap that gets you started from

Linix basics — Docker — Kuberenets Begineers — CKA Preparation — MOCK exams

Cheatsheet : Not maintained or created by me :P, found during my research

https://www.notion.so/Kubernetes-921c080c33d9487b86d10e77bdabf48c

Verify my Badge here..

Adios Folks

--

--

i.hrishikesh nate
i.hrishikesh nate

Written by i.hrishikesh nate

Security Researcher | Application Security | Linux | Bug Hunter

No responses yet