Amazon EKS Security and Networking Masterclass

Learn Calico and AWS CNI plugins, Network and Pod Security Policies, CIS Benchmarks, Private API Endpoint, VPC Endpoint

Welcome to Amazon EKS Security and Networking Masterclass course.

What you’ll learn

  • Calico and AWS CNI Plugins.
  • Calico Network Policies.
  • CIS Benchmarks and kube-bench.
  • IAM Authentication with OIDC.
  • Private API Endpoint.
  • Pod Security Policies.
  • Vulnerability Scanning.
  • Private Networking.

Course Content

  • Introduction –> 2 lectures • 3min.
  • Provision EKS Cluster and Workspace –> 2 lectures • 25min.
  • Identity & Access Management –> 1 lecture • 11min.
  • EKS Network Security –> 4 lectures • 1hr 1min.
  • Securing Cluster Resources –> 2 lectures • 16min.
  • CIS Benchmark & Vulnerability Management –> 2 lectures • 28min.
  • Detective Controls –> 1 lecture • 2min.
  • Summary –> 1 lecture • 3min.

Amazon EKS Security and Networking Masterclass


  • Basic understanding of Amazon EKS.
  • A valid AWS account.

Welcome to Amazon EKS Security and Networking Masterclass course.

This course is completely focused on Amazon EKS Security. You will learn various security best practices based on CIS Benchmarks for Amazon EKS v1.0.0

You will move one step ahead in the game after learning all Amazon EKS security implementations.

In this masterclass, you will learn how to

  • Provision EKS using eksctl in private subnets
  • Configure IAM Role with Service Accounts using OIDC
  • Secure EKS API Endpoint Access
  • Deploy Calico Network Policies
  • Pod Networking with AWS CNI
  • Pod Networking with Calico CNI
  • Encrypt EKS Secrets using Customer Managed KMS Key
  • Implement Pod Security Policies
  • ECR Private Endpoint Access
  • Vulnerability Scanning of Docker Images
  • Understand CIS Benchmarks
  • Deploy kube-bench utility
  • EKS Audit Logs

This course enables you to create EKS clusters and implement security best practices.

P.S. – This course does not cover Amazon EKS basics. You can (optionally) checkout my other course called ‘Kubernetes on AWS using Amazon EKS’ to learn EKS basics.