Why
Benefits
Containers ship fast. Security vulnerabilities ship with them if you're not careful.
Stop shipping vulnerabilities you don't know about
---
Container images are full of software - base OS layers, dependencies, your application code. Each layer is a potential source of known CVEs that automated pipelines quietly package and deploy. This training teaches your team to find and address those vulnerabilities before they reach production.
Security that fits how DevOps teams actually work
---
Most security training is built for security teams. This one is built for developers and DevOps engineers. It covers real tools, real techniques, and real scenarios - using the same workflow your team already runs.
Hands-on from day one, no setup required
---
Participants get their own prepared cloud instance for the entire training. No local setup, no wasted time getting environments running. You get straight into the technical work.
Threat analysis that goes beyond the basics
---
The training includes hands-on threat analysis specific to container environments - not generic OWASP lists. Your team will work through the attack vectors that actually matter for containerised workloads: image tampering, namespace escapes, insecure defaults, and resource abuse.
Secure by default, not secure by accident
---
Hardening a Dockerfile or a Kubernetes cluster is not complicated once you know what to look for. This training covers the concrete measures that make the biggest difference - and shows your team how to implement them properly.
Build a security mindset across your DevOps team
---
Security doesn't land on the security team if developers and engineers already know what to look for. This training builds that awareness where it matters most: with the people who build and run the containers.
Price
In-Company Practitioner Training
Full-day workshop for software developers and DevOps engineers
Essentials
---
€5700+VAT
Practical container security workshop covering threat analysis, hardening techniques, and real-world tooling.
- Onsite / remote options
- Cloud training instances included (no setup needed)
- Container fundamentals refresher
- Threat analysis and attack vectors
- Image hardening and Dockerfile security
- Cluster and network security
- Vulnerability detection tooling
- Secure container practices
Complete
---
€6900+VAT
Workshop plus follow-up support to embed what your team learned.
Essentials training, plus:
• 2 container security review follow-up calls (1 hour each)
• 1 review of your team's Dockerfiles and pipeline configuration (2 hours)
Customized
Let's talk
Need the training adapted to your specific stack, cluster setup, or compliance requirements? Get in touch.
Download Brochure
Schedule a call →
Request a quote
Make it happen
Request a quote
We will prepare a quotation document for your purchasing team within 24 hours.
No spam afterwards (really).
Agenda
Topics Outline
Introduction to Container Security
Purpose and objectives of the Container Security Training
Importance of container security in modern application development
Overview of the target audience and the focus of the training
Introduction to DevOps principles
The integration of security into DevOps practices
Security considerations in the DevOps lifecycle
Container Fundamentals
Understanding containerization technology:
Key concepts of containers:
Network isolation in containers and clusters
User namespaces
Docker vs. Podman
Image analysis with Dive
Threat Analysis
Hands-on analysis of threats when using containers
Identifying common vulnerabilities and attack vectors
Analyzing container security risks
Exploring resources limiting techniques
Security Measures
Implementing security measures to enhance cluster, image, and container security
Techniques for securing container sources and Dockerfiles
Detection of known vulnerabilities
Addressing insecure image sources
Details
Trainers
Timo Pagel
DevSecOps Architect
Timo Pagel is a DevSecOps architect with 25+ years of experience
who integrates security into development lifecycles, leads OWASP projects,
and provides security training and consulting.
Nariman Aga-Tagiyev
Product Security Architect
Nariman Aga-Tagiyev is an Application Security Architect with more than
20 year experience in software development. Have been working as full
stack web application developer, backend developer, DevOps engineer,
cloud developer and since 2016 fully involved in Application Security
related activities.
Details
FAQ
Your Title Goes Here
Your content goes here. Edit or remove this text inline or in the module Content settings. You can also style every aspect of this content in the module Design settings and even apply custom CSS to this text in the module Advanced settings.
Who is this training for?
Software developers and DevOps engineers who work with containers day-to-day and want to understand how to build and run them securely. Participants should be comfortable with the basics of software development and IT systems. Prior hands-on experience with containers is helpful - if your team hasn't worked with Docker before, there's a recommended pre-reading to bring everyone up to speed.
What prior knowledge is needed?
Participants should have basic familiarity with container technologies such as Docker. If some team members don't, we recommend working through the Play with Docker beginner training beforehand. Basic Linux knowledge is also assumed - the Ryan's Tutorials Linux guide covers everything needed.
Do participants need to set up anything?
No. Each participant gets their own prepared cloud training instance. There's no local environment setup required during the training - you'll need an SSH client (like PuTTY) to connect, and that's it. The focus is on the work, not on getting things running.
What tooling does the training cover?
The training is tool-agnostic in principle, but uses real tools throughout: Dive for image analysis, and standard tooling for vulnerability scanning and Dockerfile linting. The techniques transfer to whatever stack your team runs in production.
Can the training be delivered remotely?
Yes. The cloud-based training environment works equally well for remote delivery. Teams connect to their instances from wherever they are, and the trainer facilitates through a video call with shared screen and breakout sessions as needed
What facilities are needed for onsite delivery?
- A projector and power outlet for the trainer
- Each participant needs a laptop with an SSH client installed (PuTTY or equivalent)
- Reliable internet access - participants connect to cloud instances throughout the training
Watch online