This section of the exam measures the skills of a Cloud Security Architect and covers the foundational security principles of cloud-native environments. It includes an understanding of the 4Cs security model, the shared responsibility model for cloud infrastructure, common security controls and compliance frameworks, and techniques for isolating resources and securing artifacts like container images and application code.

This section of the exam measures the skills of a Kubernetes Administrator and focuses on securing the core components that make up a Kubernetes cluster. It encompasses the security configuration and potential vulnerabilities of essential parts such as the API server, etcd, kubelet, container runtime, and networking elements, ensuring each component is hardened against attacks.

This section of the exam measures the skills of a Kubernetes Administrator and covers the primary security mechanisms within Kubernetes. This includes implementing pod security standards and admissions, configuring robust authentication and authorization systems like RBAC, managing secrets properly, and using network policies and audit logging to enforce isolation and monitor cluster activity.

This section of the exam measures the skills of a Cloud Security Architect and involves identifying and mitigating potential threats to a Kubernetes cluster. It requires understanding common attack vectors like privilege escalation, denial of service, malicious code execution, and network-based attacks, as well as strategies to protect sensitive data and prevent an attacker from gaining persistence within the environment.

This section of the exam measures the skills of a Cloud Security Architect and encompasses broader platform-wide security concerns. This includes securing the software supply chain from image development to deployment, implementing observability and service meshes, managing Public Key Infrastructure (PKI), controlling network connectivity, and using admission controllers to enforce security policies.

This section of the exam measures the skills of a Compliance Officer and focuses on applying formal structures to ensure security and meet regulatory demands. It covers working with industry-standard compliance and threat modeling frameworks, understanding supply chain security requirements, and utilizing automation tools to maintain and prove an organization’s security posture.