DevSecOps Courses

Integrate Security into Development and Operations Workflows

Certified DevSecOps Professional (CDP)

Covers DevSecOps basics, emphasizing secure SDLC and CI/CD with SCA, SAST, DAST, and Security as Code. $899 →

Certified DevSecOps Expert (CDE)

Covers OS hardening, infrastructure/code compliance, vulnerability management, and automation.

$1199 →

Emerging Tech Security Courses

Stay ahead by mastering security for cutting-edge technologies.

Certified AI Security Professional (CAISP)

Explore AI supply chain risks and best practices for securing data pipelines and infrastructure.

$999 →

Certified Cloud Native Security Expert 
(CCNSE)

Learn cloud-native security concepts and measures: hacking and defending Kubernetes clusters, authentication and etc.

$999 →

Certified Container Security Expert (CCSE)

This certification teaches students to build secure container images and analyze their vulnerabilities.

$499 →

Application Security Courses

Protecting software Applications from Vulberabilities and Threats

Certified Threat Modeling Professional (CTMP)

The Threat Modeling course covers STRIDE, PASTA, DREAD, MITRE, Agile, and Privacy methods.

$799 →

Certified API Security Professional (CASP)

This API Security certification teaches how to secure and audit APIs against vulnerabilities.

$799 →

Certified Software Supply Chain Security Expert (CSSE)

Learn how organizations protect against attacks and plan to assess/reduce software supply chain risks.

$799 →

Certified Security Champion (CSC)

Identify and fix code vulnerabilities with CI/CD tools to enhance pipeline security.

$499 →

Save on Bundle

Certified DevSecOps Professional and Certified DevSecOps Expert (CDP + CDE)

$2098 $1899 →

Certified DevSecOps Professional and Cloud-Native Security Expert (CDP + CCNSE)

$1898 $1699 →

Certified DevSecOps Professional and Threat Modeling Professional (CDP + CTMP)

$1698 $1539 →

Certified DevSecOps Professional and API Security Pro (CDP + CASP)

$1698 $1529 →

Certified DevSecOps Professional and AI Security Professional (CDP + CAISP)

$1898 $1699 →

Certified DevSecOps Professional and Software Supply Chain Security Expert (CDP + CSSE)

$1698 $1528 →

Certified DevSecOps Professional and Certified Container Security Expert (CDP + CCSE)

$1398 $1249 →

Threat Modeling Professional and API Security Professional (CTMP + CASP)

$1539 $1438 →

Container Security Expert and Cloud Native Security Expert (CCSE + CCNSE)

$1498 $1349 →

Container Security Expert and Cloud Native Security Expert and API Security Pro (CCSE + CCNSE + CASP)

$2297 $1999 →

FAQs
Lab Extension
Blogs
DevSecOps Live
E-Books
Trust Center
Testimonials
Careers
Contact Us

👋 Year End Sale!

Day(s)

:

Hour(s)

:

Minute(s)

:

Second(s)

Buy Now
Study Later
You can buy a course now and start it whenever you want. It could be in a week, a month, or even a year. You can start your course when you're ready.
Practical DevSecOps Logo
  • Course and Certifications
    • Courses
      • Learning Path
      • DevSecOps Professional (CDP)
      • DevSecOps Expert (CDE)
      • Container Security Expert (CCSE)
      • Cloud-Native Security Expert (CCNSE)
      • Threat Modeling Professional (CTMP)
      • API Security Professional (CASP)
      • Software Supply Chain Security Expert (CSSE)
      • AI Security Professional (CAISP)
      • Security Champion (CSC)
    • Certifications
      • Certified DevSecOps Professional (CDP)
      • Certified DevSecOps Expert (CDE)
      • Certified Container Security Expert (CCSE)
      • Certified Cloud-Native Security Expert (CCNSE)
      • Certified Threat Modeling Professional (CTMP)
      • Certified API Security Professional (CASP)
      • Certified Software Supply Chain Security Expert (CSSE)
      • Certified AI Security Professional (CAISP)
      • Certified Security Champion (CSC)
    • Certification Process
      • Certification Process
      • Digital Badges
      • Career Pathways
      • Verify a Certification
      • Exam retake
  • Pricing
  • Enterprise
  • Resources
    • FAQs
    • Lab Extension
    • Blogs
    • DevSecOps Live
    • E-Books
    • Trust Center
  • About PDSO
    • Testimonials
    • Careers
    • Contact Us
  • Enroll Now
SOC 2, ISO 27001 & GDPR Compliant
+1 (415) 684 1697
Email Us
Practical DevSecOps - Hands-on DevSecOps Certification and Training.
  • Courses & Certifications
  • Bundles
  • Enterprise
  • Pricing
  • Resources
  • About Us
Account
Enroll Now

Addressing the Top 10 Kubernetes Risks

23 February, 2023

60 min

Addressing the Top 10 Kubernetes Risks

Given the growth and adoption of Kubernetes, a number of projects have been published in the OWASP community to help practitioners assess and secure the security of their containerized infrastructure including the recently released Top Ten for Kubernetes. This OSS project is a community-curated list of the most common Kubernetes risks backed by data collected from organizations varying in maturity and complexity. This session will discuss the project in detail, examples for each of the risks in the list, and how you can get involved.

📚 What will you learn?
✅ Understand how to interpret the OWASP Top Ten for Kubernetes
✅ Dive into the most pressing risks presenting security and development teams using Kubernetes
✅ Explore OSS tools and frameworks to address Kubernetes security risks
✅ Learn how to contribute to the Top Ten project and other OWASP container security projects

About Speaker

Webinar Speaker Profile Pic

Jimmy Mesta

Jimmy Mesta is the Co-Founder and CTO at KSOC (Kubernetes Security Operations Center). Prior to founding KSOC, Jimmy held senior leadership positions at a number of enterprises including Signal Sciences (acquired by Fastly) where he led a team of researchers and engineers. He has over a decade of experience building large-scale cloud security programs, delivering technical security training, publishing research, and securing some of the largest containerized environments in the world. Jimmy is a well-versed public speaker and has presented at global conferences including KubeCon, LocoMocoSec, RSA, NDC, CactusCon, and AppSec USA.

Recent DevSecOps Live

Securing the Weakest Links: Preventing Supply Chain Attacks Before They Spiral

Securing the Weakest Links: Preventing Supply Chain Attacks Before They Spiral

Your software supply chain is only as secure as its...

29 July, 2025

60 min

Watch recorded session
How To Learn Policy as Code Without Losing Your Mind

How To Learn Policy as Code Without Losing Your Mind

If you wanted to explore Policy as Code, and better...

28 June, 2022

60 min

Watch recorded session
To DevSecOps or not to DevSecOps: is that a question?

To DevSecOps or not to DevSecOps: is that a question?

The term DevSecOps divides even the security industry itself. The...

21 May, 2020

60 min

Watch recorded session

Ready to learn DevSecOps?

Join our DevSecOps Professional course and gain hands-on experience with over 100 guided exercises in state-of-the-art online labs. Achieve a highly recognized certification and advance your career.

Contact us
Explore courses

About Us

  • Courses
  • FAQs
  • Blogs
  • Affiliate program
  • Contact Us
  • Privacy Policy
  • Terms and Conditions
  • Trust Center

Training Services

  • On-demand Training
  • Instructor-led Training
  • Enterprise
  • Press Release

Community

  • DevSecOps Meetup
  • DevSecOps Newsletter
  • Ebooks
  • DevSecOps University
    (DevSecOps Learning Resources)

Certification Process

  • Lab Extension
  • Digital Badges
  • Certification Process
  • Exam retake

We are SOC 2, ISO 27001 & GDPR compliant!

soc2
iso-27001
gdpr
  • Facebook
  • X
© 2024 Practical DevSecOps (A Hysn Technologies Inc Company)