Cloud Foundry Security Training

Private training

The goal of this two-day course is to lay the foundation for understanding best Cloud Foundry security practices. The attendees will get solid knowledge about Cloud Foundry main security concepts, along with insights into achieving GDPR and PCI DSS compliance. In addition, the students will dive into security logging internals. All stages of the course are accompanied with extensive hands-on practice.

During the course the students will

  • Learn about Cloud Foundry and infrastructure security best practices
  • Gain insights into GDPR and PCI DSS with Cloud Foundry
  • Update their skills in security logging with industry leading tools

The course was especially tailored for

  • DevSecOps and security engineers responsible for building and operating the Cloud Foundry platform.
s why office
On-site
at your office
s why puzzle
Tailor-made to fit
your level and needs
s why rocket
Hands-on
s why presentation
Instructor-led

Why partner with Altoros as a Cloud Foundry Training Provider

Training program sample

1
DAY 1
see details
Main concepts of Cloud Foundry security
  • Cloud Foundry architecture
    Theory
  • Recommendations for Running a Secure Deployment
    Theory
  • Web app SSO
    Theory
  • Configuring TLS and HTTPS
    Theory
  • Security key management (PKI)
    Theory
  • Security inside a CF cluster
    Theory
  • Secure network configuration
    Theory
  • Security for Service Broker Integration
    Theory
  • BOSH director security
    Theory
  • Getting help
    Theory
  • Example of audit trail with BOSH CLI
    Practice
CF Infrastructure Security
  • Stemcell Security
    Theory
  • Certificates and TLS in CF
    Theory
  • Disk Encryption
    Theory
  • Security for Your IaaS Provider
    Theory
  • Antivirus
    Theory
GDPR and Cloud Foundry
  • Where Personal Data May Reside
    Theory
PCI DSS
  • Achieving PCI DSS Compliance
    Theory
Cloud Foundry Org and Space Management security best practices
  • Authentication and Authorization LDAP
    Theory
  • Managing organizations
    Practice
  • Getting info about an organization
    Practice
  • Targeting organizations
    Practice
  • Getting info about spaces
    Practice
  • Modifying and deleting spaces LDAP integration
    Practice
Isolation Segments
  • Architecture
    Theory
  • Managing Isolation Segments
    Theory
  • Set up isolation segment and deploy app
    Practice
Using Cloud Foundry security groups
  • Structure
    Theory
  • Security groups scopes
    Theory
  • Creating security groups
    Practice
  • Binding security groups
    Practice
  • Viewing security groups
    Practice
  • Managing security groups
    Practice
2
DAY 2
see details
Credentials management Automation with credential management
  • CredHub
    Theory
  • Vault
    Theory
  • Example of using CredHub as a credentials storage for Concourse CI
    Practice
  • Place, generate, and retrieve credentials from CredHub examples
    Practice
Security Event Logging and Auditing
  • Theory
    Theory
  • Best practices
    Theory
  • Debugging techniques: cf apps, cf events, and cf logs recent
    Theory
  • Example of using Logsearch as logging solution
    Practice
Container security
  • How to manage container security on a day-to-day basis
    Theory
  • Container registry best practices
    Theory
Security update management of cf, services, buildpacks
  • Managing a custom buildpack from a security perspective
    Theory
  • Stemcell update automation
    Theory
Prerequisites
see details

Altoros recommends that all students have:

  • A basic knowledge of Linux (SSH, SCP, Vim, grep)
  • Basic Docker Experience
  • First-hand experience with an IaaS provider—AWS (EC2, VPC, S3, Route53, RDS)
  • A workstation with the following capabilities:
    • A SSH/SCP terminal client (like SSH or PuTTY)
    • A web browser (Chrome/Firefox)
    • Internet connection w/o Firewall rules blocking outgoing traffic

No better time and training provider to maximize your team's talent!

Our customers

Here is what our customers say about us
Adam Singh
"The instructors were friendly; the class was very wide-ranged. We covered 12 factors in details, learned about service registration and discovery, log tracing. That was as much as you can pack in a few hours"
Bill Harper
"It was a great training. I’ve tried to look at this stuff and understand it on my own, but coming to this class allowed me get a much deeper understanding of Bosh and Cloud Foundry. What I’ve learned is how to deploy it, the value it has, how much more sophisticated than some of the other PaaS systems it is"
Brad Schaefbauer
"I think the training is really good. There are a lot of questions, and it’s great because I have the same ones. It shows that I am in the right place. This is a great class if you want to learn more about what the undercover of Cloud Foundry does at its best"
Eric Price
"This workshop is great for people with a zero of ground knowledge of Cloud Foundry and Bosh. It would apply even more to people who are reliant on knowing how to bring this [Cloud Foundry] up, it is going to be a "bread and butter” for developers"
Wes Gruver
"I really like the training. I think it was thorough and informative. The hands-on nature was essential for learning Bosh, which is very complicated. It’s not something you can learn by watching just two slides. Getting your hands on the keyboard was the best part of the day. I would totally recommend this course to any of our partners or any potential customers"

What trainees say about Altoros courses

video play
Cloud Foundry for DevOps Training
video play
Cloud Foundry Training at Cloud Foundry Summit, 2017

Contact Us

Alexandra Mironova

Alexandra Mironova

Training Coordinator

Headquarters

location icon830 Stewart Dr., Suite 119Sunnyvale, CA 94085
First Name*
Last Name*
Email*
Your Message (optional)