Qualys Kubernetes and Container Security

Free Training | Create an account

Kubernetes and Container Security

All certified courses

This course is intended to equip learners with the knowledge and skills to effectively discover, track, and secure Kubernetes and Containers from build to runtime.
By completing this course, you should be able to meet the following objectives:
Understand Qualys container security and its practical use cases.
Understand how to select appropriate sensors for each stage, deploy them effectively, gain a comprehensive understanding of various security gaps, prioritize these gaps, and implement mitigation strategies.

Agenda

Container Security Overview
Qualys Container Security
Sensors Overview, Deployment and Management
Secure Container Environments at Runtime
Secure the Registry
Secure the Build Pipeline
Vulnerability and Compliance Reporting
Managing Your Container Assets
Risk Prioritization
Remediate and Accept Risk

Hands-on labs or lab simulation will cover the following topics to complement the coursework:

Deploy Sensors at Runtime
Install Sensor using Helm Chart
Install Sensor using DaemonSet-YAML
Install General Sensor on a Docker Host
Discover Kubernetes inventory with Cluster sensor
Admission Control and POD Security: Kubernetes
Secure Images in AWS ECS Fargate
Secure Registry using Registry Sensor (DockerHub)
Secure Registry using QScanner (AWS ECR)
Detect Secrets within Container Images using Registry Sensor (AWS ECR)
Detect Secrets within Container Images using QScanner
QScanner installation and its modes
Automate securing build pipeline using QScanner
SCA Scans
Visibility into Complete Container Environment
Export Container Inventory and Security Gaps Information via Reports
Track Container Security KPIs using Dashboards

Self-Paced Get Started Now!

Platform
- | Platform
- Overview
- Enterprise TruRisk Platform
  Everything you need to measure, manage, and reduce your cyber risk in one place.
- Capabilities
- All
  - | Platform
  - Risk Operations Center (ROC)
  - Enterprise TruRisk Management / CTEM ^NEW
    Consolidate & translate security & vulnerability findings from 3rd party tools
    
    Agentic AI ^NEW
    Autonomous AI agents that operationalize TruRisk™ to prioritize, orchestrate, and eliminate cyber risk.
    
    ETM Identity ^NEW
    Unified risk operations to secure identity posture
  - Vulnerability & Configuration Management
  - TotalAppSec ^NEW
    Get AI-powered, unified application risk management with web app & API security testing and malware detection all-in-one
    
    TotalAI ^NEW
    Holistic AI security with vulnerability assessment and protection
    
    Vulnerability Management, Detection & Response (VMDR)
    Discover, assess, prioritize, and patch critical vulnerabilities up to 50% faster
  - Asset Management
  - CyberSecurity Asset Management (CSAM)
    See entire attack surface, continuously maintain your CMDB, and track EOL/EOS software
    
    External Attack Surface Management (EASM)
    Gain an attacker’s view of your external internet-facing assets and unauthorized software
  - Risk Remediation
  - TruRisk Eliminate (TE) ^NEW
    Address critical vulnerabilities with flexible, patchless solutions
    
    Patch Management (PM)
    Efficiently remediate vulnerabilities and patch systems
    
    Custom Assessment and Remediation (CAR)
    Quickly create custom scripts and controls for faster, more automated remediation
  - Threat Detection & Response
  - Multi-Vector EDR
    Advanced endpoint threat protection, improved threat context, and alert prioritization
  - Compliance
  - Policy Audit ^NEW
    Reduce risk, and comply with internal policies and external regulations with ease
    
    File Integrity Monitoring (FIM)
    Reduce alert noise and safeguard files from nefarious actors and cyber threats
  - Cloud Security
  - TotalCloud (CNAPP)
    Cloud-Native Application Protection Platform (CNAPP) for multi-cloud environment.
    
    Cloud Security Posture Management (CSPM)
    Continuously discover, monitor, and analyze your cloud assets for misconfigurations and non-standard deployments.
    
    Kubernetes and Container Security (KCS)
    Discover, track, and continuously secure containers – from build to runtime
    
    Cloud Workload Protection (CWP)
    Detect, prioritize, and remediate vulnerabilities in your cloud environment
    
    Cloud Infrastructure and Entitlement Management (CIEM)
    Solution to automate the process of managing user entitlements and privileges in cloud environments
    
    Cloud Detection and Response (CDR)
    Continuous real-time protection of the multi-cloud environment against active exploitation, malware, and unknown threats.
    
    SaaS Security Posture Management (SSPM)
    Automate the process of managing your SaaS apps, including global settings, user privileges, licenses, files, and their security and compliance posture.
- Risk Operations Center (ROC)
  - | Platform
  - Risk Operations Center (ROC)
  - Enterprise TruRisk Management / CTEM ^NEW
    Consolidate & translate security & vulnerability findings from 3rd party tools
    
    Agentic AI ^NEW
    
    ETM Identity ^NEW
    Unified risk operations to secure identity posture
- Vulnerability & Configuration Management
  - | Platform
  - Vulnerability & Configuration Management
  - TotalAppSec ^NEW
    Get AI-powered, unified application risk management with web app & API security testing and malware detection all-in-one
    
    TotalAI ^NEW
    Holistic AI security with vulnerability assessment and protection
    
    Vulnerability Management, Detection & Response (VMDR)
    Discover, assess, prioritize, and patch critical vulnerabilities up to 50% faster
    
    Web App Scanning (WAS)
    Automate scanning in CI/CD environments with shift left DAST testing
    
    API Security
    Scan REST/SOAP APIs & check API compliance with shift-left API testing
    
    Web Malware Detection
    Identify known and zero-day attacks using deep learning-based web malware detection
- Asset Management
  - | Platform
  - Asset Management
  - CyberSecurity Asset Management (CSAM)
    See entire attack surface, continuously maintain your CMDB, and track EOL/EOS software
    
    External Attack Surface Management (EASM)
    Gain an attacker’s view of your external internet-facing assets and unauthorized software
- Risk Remediation
  - | Platform
  - Risk Remediation
  - TruRisk Eliminate (TE) ^NEW
    Address critical vulnerabilities with flexible, patchless solutions
    
    Patch Management (PM)
    Efficiently remediate vulnerabilities and patch systems
    
    Custom Assessment and Remediation (CAR)
    Quickly create custom scripts and controls for faster, more automated remediation
- Threat Detection & Response
  - | Platform
  - Threat Detection & Response
  - Multi-Vector EDR
    Advanced endpoint threat protection, improved threat context, and alert prioritization
- Compliance
  - | Platform
  - Compliance
  - Policy Audit ^NEW
    Reduce risk, and comply with internal policies and external regulations with ease
    
    File Integrity Monitoring (FIM)
    Reduce alert noise and safeguard files from nefarious actors and cyber threats
- Cloud Security
  - | Platform
  - Cloud Security
  - TotalCloud (CNAPP)
    Cloud-Native Application Protection Platform (CNAPP) for multi-cloud environment.
    
    Cloud Security Posture Management (CSPM)
    Continuously discover, monitor, and analyze your cloud assets for misconfigurations and non-standard deployments.
    
    Kubernetes and Container Security (KCS)
    Discover, track, and continuously secure containers – from build to runtime
    
    Cloud Workload Protection (CWP)
    Detect, prioritize, and remediate vulnerabilities in your cloud environment
    
    Cloud Infrastructure and Entitlement Management (CIEM)
    Solution to automate the process of managing user entitlements and privileges in cloud environments
    
    Cloud Detection and Response (CDR)
    Continuous real-time protection of the multi-cloud environment against active exploitation, malware, and unknown threats.
    
    SaaS Security Posture Management (SSPM)
    Automate the process of managing your SaaS apps, including global settings, user privileges, licenses, files, and their security and compliance posture.
Solutions
- | Solutions
- Use Cases
- Risk Operations Center ^NEW
- Endpoint Security
- Compliance
- PCI Compliance
- Cloud Security
- DevOps
- Threat Protection
- Software Supply Chain Risk
- NIS2
- Segments
- Small Business
- Mid-Sized Business
- Enterprise
- Public Sector
Customers
- Customers
- Overview
- Best Practices
- Success Stories
- Testimonials
Resources
- | Resources
- Resources
- Resources Library
- Product Tours
- Blog
- Webinars
- Research
- Threat Research Unit
- Security Alerts
- Security Advisories
Support
- Support
- Support Portal
- Free Training
- Documentation
- Community Discussions
- Knowledgebase
- Release Notes
- Release Notifications
More
- | More
- Partners
- Overview
- Managed Risk Operations Center Program ^NEW
- Partner Program
- VAD Partners
- VAR Resellers
- MSP/MSSP Partners
- Integration Partners
- Partner FAQs
- Find Partner
- Company
- About Us
- Our Team
- Investor Relations
- News
- Awards
- Events
- Careers
- SF Unicorns ^NEW
Community
- Community
- Overview
- Discuss
- Blog
- Training
- Docs
- Resources
Login
Contact Us
Get Started