Linux Foundation CKS 30-, 60-, and 90-day study plan with topic order, review loops, and final-week priorities.
This plan is a compact route for Certified Kubernetes Security Specialist (CKS). It assumes you are using TechExamLexicon for concept clarity and the exact IT Mastery page for practice routing.
| Day | Focus | What to do |
|---|---|---|
| Day 1 | Orientation and scope | Read the exam guide overview and official vendor page, then use this study plan to mark the lanes you already know and the lanes that need practice. |
| Day 2 | Cluster security model | Understand API server, etcd, control plane, node, runtime, and workload security responsibilities. |
| Day 3 | Identity and RBAC | Use service accounts, roles, bindings, admission, and least privilege. |
| Day 4 | Workload and image security | Apply pod security, admission controls, image scanning, signatures, secrets, and runtime restrictions. |
| Day 5 | Network and policy | Use network policies, ingress control, service mesh options, and traffic isolation. |
| Day 6 | Monitoring and incident response | Use audit logs, runtime signals, findings, containment, and forensic preservation. |
| Day 7 | Timed review and scheduling decision | Run a timed practice block, review explanations, update a one-page rule sheet, and verify current vendor facts before scheduling. |