Next cohort starts 1st of next month · only 3 seats left
contact@DevOpsSchool.com · +91 99057 40781 ·
HomeCertificationsCertified Kubernetes Security Specialist
CKS · DevOpsSchool Certification

Certified Kubernetes Security Specialist (CKS)

Harden Kubernetes clusters and workloads from supply chain to runtime. Every session is a live demo in a real lab environment — not slides, not theory. You watch the instructor build it, then you build it yourself.

 4.8 / 5 · 2,300+ ratings 18,000+ certified learners 612 enrolled in last 90 days
Duration
5 weeks
Total content
100+ hours
Per tool
5 hrs · 2 assignments · 1 capstone
Final exam
3 hrs · online · open-book
Enrol now — ₹34,999 Watch 2-min preview Download syllabus
NEXT COHORT · 1st of next month
₹34,999 ₹49,999 SAVE 30%
Live & interactive cohort · GST extra as applicable · EMI available
--
Days
--
Hrs
--
Min
--
Sec
Only 3 of 10 seats left
What's included
  • 5-week program · 100+ hours of content
  • Live & interactive instructor sessions
  • 2 assignments & 1 capstone per tool
  • 3-hour online open-book final exam
  • Recordings, slides & lab repos
  • Industry-recognised digital certificate
  • Lifetime forum support — ask anything, forever
  • FREE 1-year LMS access — entire DevOpsSchool LMS: 20+ courses, 50+ tools, videos, quizzes, assignments & projects.
Cohort-cancellation refund. If we cancel or postpone the cohort (instructor unavailability, low enrolment, force majeure), you receive a 100% refund within 15 days. See refund policy.
Reserve my seat — ₹34,999
Engineers we've trained work at
JPMorgan Chase Bank of America Wells Fargo Verizon Nokia World Bank GE Healthcare VMware Oracle Qualcomm Mercedes-Benz Airbus Datadog Splunk Deloitte Infosys Wipro Capgemini
# career outcomes

Walk in an engineer. Walk out a CKS who ships.

By the end of CKS, you'll have shipped 15 production-grade artefacts and proven you can:

Design CI/CD for multi-service applications, with branching, gates, and progressive rollout.

Provision infrastructure as code across AWS, Azure, or GCP using Terraform — including drift control.

Automate configuration at scale with Ansible — idempotent playbooks, secret-free roles.

Run containers on Kubernetes — workloads, networking, autoscaling, observability.

Shift security left — SAST/DAST, SBOM, signed images, policy as code with OPA.

Operate SLOs — define error budgets, run incident response, write postmortems.

Median salary after certification
$118K – $165K
Roles our CKS alumni land: DevOps Engineer · Platform Engineer · SRE · Build & Release Manager · Cloud Automation Lead. Based on alumni reporting, 2024–25.
Start now — ₹34,999
# why this program

It's training built by people who run production for a living.

Taught by senior practitioners

Every instructor has 15+ years operating production systems — our lead instructor, Rajesh Kumar, has 20.

Build your own lab — not a sandbox

We teach you to provision a production-grade environment on your own AWS/Azure/GCP. It's the same skill you'll use day one on the job — and it goes with you when you leave.

100% demo-driven

Every session is a live demonstration in a working lab — never slides, never theory. You watch the instructor build it in real time, then you build it yourself.

Job-ready portfolio

You leave with 15 GitHub-ready projects you can show in interviews tomorrow.

# next cohort

Live cohorts — pick the track that fits your week.

Every cohort is capped at 10 learners by design. That's how the instructor still answers your real production questions in week 4 — not just the rehearsed ones from week 1.

Weekend cohort Most popular

Starts 1st of next month · Sat · Sun · 10:00 AM – 1:00 PM IST
  • 5 weekends · ~8 hrs/weekend live + self-paced
  • Designed for working professionals on IST/EST/GMT
  • Mentor office hours · Sunday 11 AM IST
  • Only 3 of 10 seats left
Reserve seat — ₹34,999

Weekday cohort

Starts 1st of next month · Mon · Wed · Fri · 8:00 – 10:00 PM IST
  • 5 weeks · ~12 hrs/week (live + self-paced)
  • Recorded same-day · always-available replay
  • Mentor office hours · Thursday 7 PM IST
  • Capped at 10 learners — small-batch by design
Reserve seat — ₹34,999

Need a custom corporate cohort for your team? Talk to us →

# curriculum · CKS

Tool-by-tool. Live demos, not slides.

Each tool is taught as a working live demonstration inside a real lab environment — you see it built end-to-end before you build it yourself. The structure is identical for every tool, so you always know what's coming and what you'll have shipped by the end of the week.

5 hours
content per tool
(live + self-paced video)
2 assignments
per tool
graded with feedback
1 capstone
per tool
GitHub-public portfolio
3-hr exam
online · open-book
at the end of the program
01 CKS Domains & Kubernetes Security Landscape Video5 hrs · 2 assignments · 1 capstone
CKS exam domains: Cluster Setup (10%), Cluster Hardening (15%), System Hardening (15%), Minimise Microservice Vulnerabilities (20%), Supply Chain Security (20%), Monitoring/Logging/Runtime (20%). Attack surface mapping — every Kubernetes component is a target. The attacker's playbook vs. the defender's controls.
  • Assignments: (1) enumerate all attack surfaces in a default kubeadm cluster; (2) map each CKS domain to a real-world CVE or breach
  • Capstone: Kubernetes security architecture diagram — attack surfaces labelled, controls mapped, threat model documented
02 Cluster Setup — CIS Benchmarks & kube-bench Live & Interactive5 hrs · 2 assignments · 1 capstone
CIS Kubernetes Benchmark — master, etcd, control plane, worker node checks. kube-bench — running scans and interpreting PASS/FAIL/WARN. Hardening the API server: disable anonymous auth, enable audit logging. API server flags: --authorization-mode, --enable-admission-plugins, --audit-policy-file.
  • Assignments: (1) run kube-bench and remediate the top-10 FAIL findings; (2) configure API server to disable insecure port and enable audit logging
  • Capstone: cluster benchmark report — before/after kube-bench scores with full remediation evidence for every FAIL finding
03 Cluster Hardening — RBAC & ServiceAccount Security Live & Interactive5 hrs · 2 assignments · 1 capstone
Least-privilege RBAC: Roles, ClusterRoles, verb minimisation. ServiceAccount security — auto-mount disable, projected tokens with short TTL. Auditing permissions with kubectl-who-can and rakkess. kubeaudit security scanner. Rotating compromised credentials.
  • Assignments: (1) audit RBAC and remove all wildcard permissions; (2) disable auto-mount for default ServiceAccounts cluster-wide
  • Capstone: RBAC hardening report — least-privilege audit, wildcards replaced, ServiceAccount auto-mount disabled, kubeaudit clean
04 System Hardening — Host OS Security & Kernel Modules Live & Interactive5 hrs · 2 assignments · 1 capstone
Minimising host OS attack surface — removing unnecessary packages, services, users. Kernel module blacklisting. UFW/iptables host firewall rules. Filesystem hardening (noexec, nosuid, nodev). Containerd rootless and user namespaces. Privileged container risks and mitigations.
  • Assignments: (1) harden a node by removing unnecessary tools and restricting ports; (2) blacklist known-dangerous kernel modules
  • Capstone: node hardening playbook — Ansible roles for OS hardening, port restriction, module blacklisting, applied to a 3-node cluster
05 AppArmor & Seccomp — Kernel-Level Container Isolation Live & Interactive5 hrs · 2 assignments · 1 capstone
AppArmor profiles — enforce mode, loading on nodes, pod annotations. Seccomp profiles — RuntimeDefault, Localhost custom profiles, container-level override, syscall allowlists. gVisor (runsc) for stronger runtime isolation. Verifying profile application.
  • Assignments: (1) create an AppArmor profile blocking /etc writes and apply to a pod; (2) apply a custom seccomp profile restricting syscalls to a minimal set
  • Capstone: hardened workload with AppArmor + Seccomp + securityContext — verified audit of allowed syscalls and blocked filesystem paths
06 Pod Security — PodSecurityAdmission & Security Contexts Live & Interactive5 hrs · 2 assignments · 1 capstone
PodSecurityAdmission (PSA) — Privileged/Baseline/Restricted levels, enforce/audit/warn modes, namespace labels. securityContext: runAsNonRoot, fsGroup, readOnlyRootFilesystem, allowPrivilegeEscalation, drop ALL capabilities. Detecting and eliminating privileged containers.
  • Assignments: (1) enforce Restricted PSA on a namespace and fix all non-compliant workloads; (2) audit all pods for privileged containers
  • Capstone: cluster-wide PSA enforcement — namespaces classified by risk tier, all pods compliant, audit shows zero privileged workloads
07 OPA/Gatekeeper & Kyverno — Policy as Code Live & Interactive5 hrs · 2 assignments · 1 capstone
OPA/Gatekeeper — ConstraintTemplate, Constraint CRDs, dry-run vs. enforce. Kyverno — ClusterPolicy: mutate vs. validate vs. generate. Policies: require labels, block :latest, enforce resource limits, deny privileged. Testing with conftest and kyverno-cli.
  • Assignments: (1) write a Gatekeeper ConstraintTemplate blocking pods without resource limits; (2) write a Kyverno ClusterPolicy mutating pods to add securityContext defaults
  • Capstone: policy library — 10 security policies in both Gatekeeper and Kyverno, tested, enforced, violations dashboard
08 Supply Chain Security — Image Scanning & Cosign Live & Interactive5 hrs · 2 assignments · 1 capstone
Trivy — scanning images, filesystems, Kubernetes manifests. Cosign for image signing and verification. Syft SBOM generation and Grype SBOM-based scanning. SLSA provenance levels. Blocking unsigned/unscanned images at admission.
  • Assignments: (1) scan an image with Trivy and classify all CRITICAL findings; (2) sign an image with Cosign and verify the signature in a pipeline gate
  • Capstone: supply chain pipeline — Trivy scan, Cosign sign/verify, Syft SBOM, all blocking CI on policy violation
09 Admission Control — Dynamic Webhooks & ImagePolicy Live & Interactive5 hrs · 2 assignments · 1 capstone
Admission controller pipeline: authentication → authorisation → mutation webhooks → validation webhooks. MutatingWebhookConfiguration and ValidatingWebhookConfiguration. ImagePolicyWebhook — external image policy server, blocking untrusted registries. Webhook TLS, failure policy, timeouts.
  • Assignments: (1) deploy a ValidatingWebhookConfiguration blocking Deployments without labels; (2) configure ImagePolicyWebhook to block images from untrusted registries
  • Capstone: custom admission webhook — OPA-backed validation enforcing 5 security rules, TLS-secured, tested with compliant and non-compliant manifests
10 Network Security — NetworkPolicies & mTLS Live & Interactive5 hrs · 2 assignments · 1 capstone
NetworkPolicy deep-dive — layer 3/4 segmentation, default-deny, egress rules, namespace isolation. mTLS with Istio — PeerAuthentication, pod-to-pod encryption. Cilium L7 policies — HTTP-aware rules, DNS-based egress. API server network hardening.
  • Assignments: (1) implement default-deny NetworkPolicy with verified zero-trust model; (2) enforce mTLS for all in-cluster traffic with Istio PeerAuthentication
  • Capstone: zero-trust cluster network — default-deny + mTLS enforcement, verified with connectivity matrix and traffic traces
11 Secrets Security — etcd Encryption & External Secrets Live & Interactive5 hrs · 2 assignments · 1 capstone
etcd encryption at rest — EncryptionConfiguration, aescbc vs. aesgcm, KMS envelope encryption. Verifying secrets are encrypted in etcd. External Secrets Operator syncing from Vault. Sealed Secrets for GitOps. Secret rotation and audit trail.
  • Assignments: (1) enable etcd encryption and verify via etcdctl hex dump; (2) deploy External Secrets Operator syncing from HashiCorp Vault
  • Capstone: secrets management — etcd encryption, External Secrets from Vault, Sealed Secrets for GitOps, rotation policy
12 Runtime Security — Falco & eBPF Threat Detection Live & Interactive5 hrs · 2 assignments · 1 capstone
Falco — rule syntax, macros, lists, built-in rules, custom rules. Detecting: shell in container, sensitive file access, privilege escalation, suspicious network connections. Falcosidekick routing to Slack/PagerDuty/Elasticsearch. Tetragon for eBPF-based enforcement.
  • Assignments: (1) write Falco rules detecting exec into a running container; (2) route Falco alerts to Slack via Falcosidekick
  • Capstone: runtime detection system — Falco with 10 custom rules, Falcosidekick routing, tested with a red-team attack scenario
13 Audit Logging — Policy Design & SIEM Integration Live & Interactive5 hrs · 2 assignments · 1 capstone
Kubernetes audit logging — policy levels (None/Metadata/Request/RequestResponse), omit rules, stages. Production policy capturing security events without log flood. Shipping logs to Elasticsearch/OpenSearch. Alerting on suspicious events: secret reads, RBAC changes, privilege escalation.
  • Assignments: (1) write a production audit policy capturing all secret access and namespace changes; (2) create an alert in Elasticsearch firing on direct etcd access
  • Capstone: audit pipeline — custom audit policy, log shipping to ELK, 5 SIEM alert rules, tested with simulated attack
14 Container Hardening — Distroless Images & RuntimeClass Live & Interactive5 hrs · 2 assignments · 1 capstone
Distroless and minimal base images — attack surface reduction, debugging challenges. Multi-stage Dockerfile for minimal images. RuntimeClass for gVisor (runsc) and Kata Containers. Image tag policies — block :latest, require digest-based pulls. Read-only root filesystem enforcement.
  • Assignments: (1) convert a Debian image to distroless — zero critical Trivy CVEs; (2) configure a RuntimeClass for gVisor and deploy a workload in it
  • Capstone: hardened container library — distroless images for 3 runtimes, Cosign signed, Trivy scanned, deployed with gVisor RuntimeClass
15 CKS Exam Preparation — Mock Exams & Speed Drills Video5 hrs · 2 assignments · 1 capstone
CKS exam format — 2-hour performance-based, no external resources. Common tasks: kube-bench remediation, RBAC hardening, AppArmor profiles, Falco rules, Trivy scanning, etcd encryption, NetworkPolicy. Three full-length timed mocks with worked solutions.
  • Assignments: (1) complete a 2-hour timed mock targeting ≥67%; (2) complete a second mock targeting ≥80%
  • Capstone: CKS cheat-sheet — command references for every exam domain, common gotchas, time-boxing strategy
Final certification exam3 hrs · online · open-book
At the end of the program, you sit a 3-hour online open-book examination. It's scenario-based and tests the entire toolchain end-to-end, not memorisation. See the exam section below for the full format.
Want the full module breakdown?

Get the PDF syllabus with every tool, sub-topic, assignment brief, capstone spec and reading list.

Download syllabus
# your capstone portfolio

One capstone per tool. 15 GitHub-public artefacts you'll show in interviews.

Every tool you learn ends in a graded capstone project. By the end of the program you'll have a full portfolio of production-grade, employer-show-able work — sample capstones below.

CAPSTONE · BENCHMARKS
CIS cluster hardening — before & after

kube-bench scan with full FAIL remediation — API server, etcd, kubelet — documented before/after scores.

kube-benchCISAnsible
CAPSTONE · POLICY
Security policy library (10 policies)

OPA/Gatekeeper + Kyverno — 10 policies enforced, tested with conftest, violations dashboard live.

GatekeeperKyvernoConftest
CAPSTONE · SUPPLY CHAIN
Signed + scanned container pipeline

Trivy scan, Cosign signing, Syft SBOM, Binary Authorization gate — zero unsigned images reach production.

TrivyCosignSyft
CAPSTONE · RUNTIME
Falco runtime threat detection

10 custom Falco rules, Falcosidekick routing to PagerDuty + ELK, tested with a red-team attack scenario.

FalcoFalcosidekickTetragon
CAPSTONE · NETWORK
Zero-trust cluster network

Default-deny NetworkPolicies + Istio mTLS enforcement — connectivity matrix verified, all blocked paths tested.

NetworkPolicyIstioCilium
CAPSTONE · SECRETS
Encrypted secrets + External Secrets

etcd AES-GCM encryption, External Secrets from Vault, Sealed Secrets for GitOps — rotation policy documented.

etcdctlESOVault
# the CKS toolchain

16 security tools, from cluster benchmarking to runtime threat detection.

Kubernetes
kube-bench
RBAC / PSA
AppArmor / Seccomp
OPA / Gatekeeper
Kyverno
Trivy
Cosign
Syft / SBOM
Falco
Istio / mTLS
HashiCorp Vault
etcd Encryption
Audit Logging / ELK
gVisor / RuntimeClass
NetworkPolicy / Cilium
# the final exam

3 hours. Online. Open-book. Built to test what you can ship.

The CKS examination is intentionally not a memorisation contest. Open-book, scenario-driven, and proctored online — it tests whether you can solve real production problems with the toolchain you spent five weeks practising.

3 hours
total duration
Online
from anywhere
Open-book
notes, docs, the LMS
Scenario-based
real engineering tasks
What it covers
  • Multi-part production scenarios that span the toolchain end-to-end
  • Pipeline design, IaC, configuration, containers, K8s, observability, security
  • Debugging exercises — given symptoms and logs, find the root cause
  • Written reasoning on trade-offs (e.g. blue/green vs canary, push vs pull GitOps)
Why open-book

In a real on-call shift you look things up. The exam mirrors that. We test the skill that actually matters — composing what you know into a working solution under time pressure. Memorising flag syntax wouldn't make you a better engineer.

Pass → certified.

Clear the exam and you'll be issued the CKS digital certificate within 5 working days, with a verifiable credential ID on our public registry.

  • Two free re-attempt windows if you don't clear first time
  • Detailed feedback report on every section
  • Mock papers + walkthrough during the program
  • Hard copy of the certificate on request
See the credential
# meet your instructor

You're not learning from a content team. You're learning from the person who built it.

RK

Rajesh Kumar

Principal DevOps Engineer and Architect
20 years · DevOps · SRE · Security Early-bird practitioner · MLOps · AIOps Ex-PayPay · SoftwareAG · ServiceNow · Adobe · Intuit · IBM · Accenture 10,000+ engineers trained M.Tech · BITS Pilani 25+ certifications

Rajesh is a working practitioner with 20 years across DevOps, SRE and Security, and an early-bird operator in MLOps and AIOps — he was already running model-deployment and telemetry-driven incident pipelines years before either term became industry vocabulary. He has held principal engineering and architect roles at PayPay, SoftwareAG, ServiceNow (Netherlands), JDA Software, Intuit, Adobe, IBM/Emptoris, Ness, MindTree and Accenture. He has personally trained engineers at JPMorgan Chase, Wells Fargo, Bank of America, Verizon, Nokia, World Bank, GE Healthcare, VMware, Citrix, Oracle, Qualcomm, Ericsson, Splunk, New Relic, Datadog, Airbus, AstraZeneca, Bosch, Mercedes-Benz, Vodafone, Deloitte, EY, Capgemini, Infosys, Cognizant, HCL, Wipro and dozens more. He teaches what he runs — not what he reads.

Connect on LinkedIn rajeshkumar.xyz
# your credential

A certificate engineers actually recognise — and recruiters look for.

Every CKS certificate is issued with a unique credential ID, a tamper-proof QR code, and a verification URL on devopsschool.com/certificates. Add it to LinkedIn in one click.

  •   Lifetime verifiable on our public registry
  •   PDF + digital badge (Credly-compatible)
  •   Recognised by hiring partners across 50+ countries
  •   Hard copy shipped on request — order here
Get certified — ₹34,999
Certificate of completion
Jane Engineer
has successfully completed
Certified Kubernetes Security Specialist (CKS)
Credential ID · DS-CKS-XXXX-XXXX
# what learners say

4.8 / 5 from 2,300+ engineers. Here's what a few of them said.

# pricing

Pick the level of support that fits your goal.

Every plan includes the full curriculum, recorded sessions, and access to our learner community.

Every plan includes 1 year of full DevOpsSchool LMS access.
Not just this one course — the entire LMS: 20+ courses, 50+ tools, videos, quizzes, assignments, and end-to-end projects. Worth ₹40,000+ on its own.
See what's in the LMS
Self-paced video ₹833 / month · billed yearly (₹9,996) All recorded sessions, labs & the full LMS — learn at your own pace.
  • Full 100+ hour recorded curriculum
  • 15 hands-on capstones on your own cloud lab (free-tier setup walkthrough included)
  • 1-year access — recordings, labs & updates
  • 3-hr online open-book exam
  • Industry-recognised certificate on completion
  • Lifetime forum support
  • Full LMS access — 20+ courses & 50+ tools
  • Live instructor classes
  • 1-on-1 mentor sessions
Get self-paced — ₹833/mo
MOST POPULAR Live & Interactive ₹34,999 ₹49,999 5-week live cohort + complete LMS bundle. The default for engineers who want to ship.
  • Everything in Self-paced
  • 5-week cohort · 60+ hrs live instructor classes
  • Weekly mentor office hours
  • 6 × 30-min 1-on-1 mentor sessions
  • Cohort Slack + alumni community
  • Capstone code review by instructor
  • Exam preparation & mock papers
  • Lifetime forum support
  • Full LMS access — 20+ courses & 50+ tools
Reserve seat — ₹34,999
1-on-1 Mentorship ₹99,999 full program Dedicated senior practitioner. Pace, schedule and labs tailored to you.
  • Everything in Live & Interactive
  • Private 1-on-1 instructor (your schedule)
  • Custom curriculum & labs for your stack
  • Resume & LinkedIn review
  • Mock interview & salary negotiation prep
  • Capstone & portfolio code review
  • Priority response from instructor
  • Lifetime forum support
  • Full LMS access — 20+ courses & 50+ tools
Enrol 1-on-1 — ₹99,999
Cohort-cancellation refund
If we cancel or postpone a cohort and you decline the rescheduled session, you get 100% refund within 15 days. Refund policy →
Terms & course material
All training material is the IP of DevOpsSchool and for the enrolled learner's personal use only. Terms →
Your data stays with us
We never share your data with third parties. Unsubscribe from communications anytime. Privacy →

Need an invoice for your employer? Request a corporate quote →  ·  Taxes (GST) where applicable are billed in addition to the listed price.

# why us

Why engineers pick DevOpsSchool over the alternatives.

Not slides. Not a 500-seat MOOC. Not a temporary sandbox login. Three things make the difference — then compare us line-by-line.

100% live demo. 0% slides.

Every session is the instructor screen-sharing a real working lab and building the thing in front of you — then you build it yourself. No PowerPoint, no "imagine if…".

You build your own lab.

We guide you through provisioning a free-tier AWS / Azure / GCP environment on day one — the same skill you'll use at work. A temporary sandbox login disappears the day the cohort ends. Your own lab doesn't.

10 learners. By design.

Cohorts are capped at 10 by design. The instructor still knows your name in week 4 — and still has time to debug the weird production thing you brought from work.

What matters YouTube + blogs Generic online course Boot camp DevOpsSchool CKS
Teaching method You piece it together yourself Pre-recorded talking-head + slides Mix of slides & some labs Live demos in a real lab — every session
Cohort size 1 (you, alone) Hundreds to thousands 30–60 per batch 10 by design — instructor knows your name
Lab environment None Throwaway sandbox Shared sandbox login Your own AWS/Azure/GCP, guided setup
Per-tool structure Ad-hoc Inconsistent across modules Theme-based, varies wildly 5 hrs · 2 assignments · 1 capstone for every tool
Final assessment None Multiple-choice quiz Mini-project 3-hour open-book scenario exam
Portfolio at the end What you built solo 1–2 generic toy projects 1 capstone 1 capstone per tool — GitHub-public
Instructor pedigree Mixed (creator-economy) Mixed (often academic) Recent-grad TAs common Rajesh Kumar — 20 yrs, ex-PayPay/ServiceNow/Adobe
Cohort start cadence N/A — pure self-pace Self-paced only Quarterly windows New cohort every 1st of the month
Post-program support None Drip-fed retention emails 30–90 day Slack Lifetime forum + alumni community
LMS bundled No This one course only This program only 1 year full LMS — 20+ courses, 50+ tools
Refund posture N/A Vendor-specific, often none after start Usually none after week 1 100% within 15 days if we cancel
Total cost (full program) Free, slow ₹15K – ₹50K per single course ₹80K – ₹3L+ ₹34,999 · LMS + lifetime forum included

Still on the fence? Talk to an advisor →   — they'll tell you straight if CKS fits your goal.

# frequently asked

Everything you'd ask on a 1-on-1 call.

Don't see your question? Ask us directly →

Do I need prior DevOps or coding experience?
A working knowledge of Linux command line and basic Git is enough. We'll bring you up to speed on everything else from Module 1. About 30% of every cohort enters from a sysadmin / dev / QA background.
What if I miss a live class?
Every session is recorded and shared with the cohort within 24 hours. You retain access to the recordings and lab repositories for the duration of the cohort and a defined access window after it. Specific access duration is confirmed at enrolment.
How does the certificate work? Is it accredited?
We issue a DevOpsSchool-credentialed digital certificate plus a verifiable badge. Each certificate has a unique credential ID and a public verification URL. While it isn't a vendor exam like AWS or CNCF, every cohort includes coaching toward those external exams as a track-add.
Can I pay in instalments / EMI?
Yes — 3, 6, and 12-month plans are available via our payment partners with 0% interest on the 3-month option. We also support employer invoicing.
What's the refund policy?
Once a training cohort is confirmed, the seat is generally non-refundable. The exception is when we cancel or postpone — instructor unavailability, low enrolment, or force majeure — in which case you receive a 100% refund within 15 working days, or you can join the rescheduled cohort. GST and payment-gateway fees are not refunded. Full details on the refund policy page.
Do you give us a cloud sandbox, or do we set one up?
We do it the way you'll do it on the job — you provision your own AWS / Azure / GCP lab, and we walk you through the free-tier setup step-by-step before module 1 starts. Most labs run at zero out-of-pocket. The point is that the skill of owning your infrastructure goes with you forever; a sandbox login disappears the day the cohort ends.
Do you offer corporate or team enrolments?
Yes — private cohorts for teams of 8+ are our most-requested format. We can run them on your schedule, in your VPC, against your internal toolchain. Request a quote.
What time-zones do the live cohorts run in?
Default schedule is IST-friendly, but the weekend cohort works for EST/CET/GMT engineers as well. Recordings cover the rest. We also run a North America-specific cohort every quarter — ask us for the calendar.
Still on the fence?

Talk to an advisor — they'll tell you straight whether this fits your goal.

Talk to advisor
# ready when you are

Reserve your CKS seat — or talk to an advisor first.

Next cohort starts 1st of next month. Only 3 of 10 seats remaining. Drop your details and we'll send the full syllabus + book a free 20-min consult to map this cert to your goal.

  • No spam, no auto-dial bots
  • Syllabus PDF in your inbox in 60 seconds
  • One human reply within 4 working hours
By submitting you agree to be contacted by email, phone, or WhatsApp by DevOpsSchool about this program. We don't share your data with third parties and you can unsubscribe anytime. See privacy · terms · refund.
Talk to advisor Enrol — ₹34,999