Vendors

Overview

Red Hat Security: Securing Containers and OpenShift with exam (DO426) helps infrastructure administrators and security professionals learn and validate how to identity and mitigate threats to OpenShift container-based infrastructure. The curriculum also covers how to implement and manage secure architecture, policies, and procedures for modern containerized applications and software-defined networking.
This course is based on Red Hat® Enterprise Linux® 7.5, Red Hat® OpenShift® Container Platform 3.11, and Red Hat® Identity Manager 7.5. The offering also includes Red Hat Certified Specialist in Security: Containers and OpenShift Container Platform exam (EX425).
You will learn and validate your skills in using secure and trusted container images, registries, and source code; managing network and storage isolation; implementing application single sign-on; and configuring appropriate security constraints and service role–based access control. You will also find out how existing core Linux technologies—such as namespaces, cgroups, seccomp, capabilities, and SELinux—provide a robust and mature host environment with strongly secure containers.
img-course-overview.jpg

What You'll Learn

  • Impact on the organization
Containers and container orchestration platforms, such as OpenShift and Kubernetes, have become pervasive in enterprise computing. Container environments have introduced new attack vectors, exploits, and vulnerabilities. Enterprises require strong security, and the migration to containerized microservices has upended traditional network-based security models. Developers must prove that their code, images, and deployments are trusted and secure.
This offering is intended to develop and validate the skills needed to maintain a high level of security in the evolving world of containerized applications and OpenShift installations. OpenShift is an enterprise-grade, container-based application platform that provides the mature security of Red Hat Enterprise Linux and additional mechanisms of security assurance for service role access control, build process hardening, source image layered trust, and controlled deployment management. These security features may help your organization efficiently reduce risk of security breaches, which have a high cost in business disruption, brand erosion, loss of customer and shareholder trust, and financial costs for post-incident remediation. In addition, your organization may be able to use the tools in this offering to help demonstrate that compliance requirements set by customers, auditors, or other stakeholders have been met.
Red Hat has created this course in a way intended to benefit our customers, but each company and infrastructure is unique, and actual results or benefits may vary.
  • Impact on the individual
As a result of taking this course and exam, you should be able to use security technologies included in Red Hat OpenShift Container Platform and Red Hat Enterprise Linux to manage security risk and help meet compliance requirements. You should be able to demonstrate these skills:
  •  Use recommend practices to ensure that images for container deployment come from trusted sources, including the use of secure registries, signed images, secure access protocols, and authorized access controls.
  •  Explain and implement advanced SELinux techniques to restrict access by users, processes, and virtual machines.
  •  Configure security context constraints to control the actions that pods can perform and to declare what a pod has the ability to access.
  •  Implement the Linux computer security (seccomp) and Linux capabilities features to control the vulnerability footprint of a containerized application.
  •  Implement and configure single sign-on for web applications, including the use of JWT for token sharing.
  •  Explain and implement network isolation and encryption techniques to segregate application traffic to allow only authorized access.
  •  Implement and explain storage management techniques to segregate volume storage I/O to allow only authorized access.
  •  Observe and explain how the build process can be extended to include automated security testing and vulnerability scanning to ensure that no exploits are introduced into the final container images to be deployed.
  •  Manage container deployment policies and configuration to control application placement, resource capacity, container affinity, and application demand scaling.
  •  Manage OpenShift project access and quotas to ensure private and authorized self-service access, as well as to limit exposure to rogue tokens and denial-of-service attempt

Who Should Attend

This course is designed for professionals responsible for designing, implementing, maintaining, and managing the security of containerized applications on Red Hat Enterprise Linux systems and in Red Hat OpenShift Container Platform installations, including these roles:
  •  System administrators
  •  IT security administrators
  •  IT security engineers
  •  DevOps engineers
  •  Cloud developers
  •  Cloud architects

img-who-should-learn.png

Prerequisites

  •  Become a Red Hat Certified Engineer (RHCE®), or demonstrate equivalent Red Hat Enterprise Linux knowledge and experience
  •  Become a Red Hat Certified Specialist in OpenShift Administration, or demonstrate equivalent Red Hat OpenShift Container Platform knowledge and experience

Learning Journey

Coming Soon...

  • Describe host security technologies - Understand the core technologies that make Red Hat Enterprise Linux a robust and trusted container host.
  • Establish trusted container images - Describe the registries, services, and methods that comprise the Red Hat image ecosystem.
  • Implement security in the build process - Learn automated methods for integrating security checks into build and deployment pipelines.
  • Manage user access control - Apply methods for integrating and managing user authentication for operators and for web applications.
  • Control the deployment environment - Determine how a container platform secures the deployment process through policies and automation.
  • Manage secure platform orchestration - Study how a container platform secures the orchestration process through policies and infrastructure.
  • Provide secure network I/O - Discover the technologies and control features that enable multitenancy and project isolation.
  • Deliver secure storage I/O - Enable authorized, multitenant storage access through a firm understanding of related technologies and control features.

Instructors

Scott Duffy

Bestselling Azure & TOGAF® Trainer, Microsoft Azure MVP

4.8 (4.1k)
|
10 Courses
profile-instructor-a.png
Scott Duffy

Bestselling Azure & TOGAF® Trainer, Microsoft Azure MVP

4.8 (4.1k)
|
10 Courses
profile-instructor-a.png
This course not associated with certification

Frequently Asked Questions (FAQs)

  • Why get Red Hat certified?

    Red Hat certifications are highly respected in the IT industry and validate your expertise in open source technologies, particularly Red Hat Enterprise Linux (RHEL) and Red Hat OpenShift.

    These certifications demonstrate your ability to design, deploy, and manage complex enterprise environments using Red Hat solutions, increasing your value to employers and opening doors to a wide range of career opportunities.

  • What to expect for the examination?

    Red Hat certification exams are performance-based, meaning you'll be evaluated on your ability to perform real-world tasks in a live environment.

    This ensures that you not only understand the theoretical concepts but also have the practical skills to apply them.

    Note: Certification requirements and policies may be updated by Red Hat from time to time. We apologize for any discrepancies; do get in touch with us if you have any questions.

  • How long is Red Hat certification valid for?

    Red Hat certifications are current for three years.

    According to Red Hat, these certifications do not “expire”, or become “terminated” or “invalid”, but they can become “non-current”.

    There are different ways to keep a certification current, depending on the type of certification. You always have the option of retaking an exam to renew its associated certification.

    In some instances, you can earn other certifications to keep your certification current. This approach allows IT professionals to expand their skills and knowledge into new areas, which is increasingly important for a successful IT career.

    Note: Certification requirements and policies may be updated by Red Hat from time to time. We apologize for any discrepancies; do get in touch with us if you have any questions.

  • Why take this course with Trainocate?

    Here’s what sets us apart:

    - Global Reach, Localized Accessibility: Benefit from our geographically diverse training hubs in 16 countries (and counting!).

    - Top-Rated Instructors: Our team of subject matter experts (with high average CSAT and MTM scores) are passionate to help you accelerate your digital transformation.

    - Customized Training Solutions: Choose from on-site, virtual classrooms, or self-paced learning to fit your organization and individual needs.

    - Experiential Learning: Dive into interactive training with our curated lesson plans. Participate in hands-on labs, solve real-world challenges, and take on comprehensive assessments.

    - Learn From The Best: With 30+ authorized training partnerships and countless awards from Microsoft, AWS, Google – you're guaranteed learning from the industry's elite.

    - Your Bridge To Success: We provide up-to-date course materials, helpful exam guides, and dedicated support to validate your expertise and elevate your career.

Keep Exploring

Course Curriculum

Training Schedule

Exam & Certification

Frequently Asked Questions

img-improve-career.jpg

Improve yourself and your career by taking this course.

img-get-info.jpg

Ready to Take Your Business from Great to Awesome?

Level-up by partnering with Trainocate. Get in touch today.

Name
Email
Phone
I'm inquiring for

Inquiry Details

By providing your contact details, you agree to our Privacy Policy.