Container Orchestration
Kubernetes & OpenShift
- Core concepts: Pods, Deployments, ReplicaSets, Services, ConfigMaps, Secrets
- Networking: Ingress controllers, Network Policies, DNS, Service mesh integration
- Storage: PersistentVolumes, StorageClasses, StatefulSets
- Operations: Rolling updates, Horizontal Pod Autoscaler, resource quotas, RBAC
- OpenShift delta: Routes, SCC, OCP-specific tooling and operator framework
- Suitable for: developers moving to K8s, platform teams, SREs
Docker, K3s & Rancher
- Docker fundamentals: Image layers, multi-stage builds, BuildKit, registry setup
- Docker Compose: Production-grade Compose files, health checks, secrets handling
- K3s: Lightweight Kubernetes for edge and small-cluster environments
- Rancher: Multi-cluster management, catalog apps, RBAC across clusters
GitOps & CI/CD
ArgoCD & Concourse CI/CD
- ArgoCD: App-of-Apps pattern, sync policies, multi-cluster deployments, RBAC, SSO
- Application sets: Templated multi-environment deployments from a single source
- Concourse CI: Pipeline-as-code, resources model, task containers, vault integration
- GitOps workflow: Branch strategies, progressive delivery, rollback procedures
Flux CD (GitOps)
- Flux architecture: source controller, kustomize controller, helm controller
- Multi-tenant setups with namespace isolation
- OCI registry support and image automation
- Notification controller for Slack/Teams/webhook alerts
Jenkins & GitLab / GitHub Actions
- Jenkins: Declarative pipelines, shared libraries, Kubernetes agents, Blue Ocean
- GitLab CI: .gitlab-ci.yml, runners, environments, protected branches, Docker-in-Docker
- GitHub Actions: Workflow syntax, reusable workflows, secrets, OIDC for cloud auth
- Pipeline design patterns: trunk-based delivery, feature flags, semantic versioning
Infrastructure as Code & Automation
Terraform & Helm
- Terraform: State management, module design, workspace strategies, CI/CD integration
- Providers: AWS, Azure, GCP — real-world resource provisioning patterns
- Helm: Chart authoring, values hierarchy, hooks, library charts, Helmfile
- Testing infrastructure: Terratest, Checkov, tfsec for security scanning
Ansible
- Inventory management, dynamic inventories, group and host variables
- Role structure, Ansible Galaxy, collections
- Idempotency patterns, error handling, vault for secrets
- AWX / Ansible Tower for enterprise orchestration
Chef & Puppet
- Chef: cookbook structure, recipes, resources, Test Kitchen, ChefSpec
- Puppet: manifests, modules, Hiera, Puppet Enterprise, r10k
- Comparison with Ansible — when to choose which tool
Platform & Security
Service Mesh (Istio / Linkerd)
- mTLS between services, certificate management, traffic policy enforcement
- Observability: Prometheus/Grafana/Jaeger integration out of the box
- Traffic management: canary releases, circuit breaking, retries, timeouts
- Linkerd: lighter alternative, benchmark comparison with Istio
HashiCorp Vault
- Secret engines: KV, database, PKI, AWS/GCP dynamic credentials
- Auth methods: Kubernetes, JWT/OIDC, AppRole
- Vault Agent sidecar injection in Kubernetes
- Seal/unseal, HA setup, audit logging
Nginx & Traefik + Harbor + Packer + Vagrant
- Nginx: Reverse proxy, SSL termination, rate limiting, Lua scripting
- Traefik: Dynamic configuration, Let's Encrypt, middleware chain, Docker/K8s providers
- Harbor: Container registry setup, Trivy scanning, replication, OIDC integration
- Packer: Machine image automation for AWS AMI, Azure images, VMware
- Vagrant: Local multi-VM environments for development and testing
Linux Administration & Storage
- Linux fundamentals: filesystems, permissions, systemd, networking tools
- Performance analysis: perf, strace, eBPF basics, memory and CPU profiling
- Ceph Storage: RADOS, RBD, CephFS, deployment with Rook-Ceph on Kubernetes
- Containerd & CRI-O: Container runtime internals, OCI spec, crictl, nerdctl
Custom curriculum
All modules can be combined into a multi-day training path tailored to your team's stack. A typical 3-day DevOps bootcamp covers Kubernetes, CI/CD pipelines, and GitOps in sequence — with your actual infrastructure as the lab environment.
Training Formats
Duration
Half-day intro (4h), full-day deep-dive (8h), or multi-day bootcamp (2–5 days). Custom to topic and team level.
Delivery
On-site at your location, fully remote via video, or hybrid. Labs run in your cloud environment or a provided sandbox.
Group size
Optimal for 6–20 participants. Works up to 40. Smaller groups (<6) available as coaching sessions.
Language
German or English. All lab materials and slides available in both languages.
Book a DevOps Training
Get in touch to discuss your team's setup, current skill level, and training goals. I'll put together a focused proposal — no bloated discovery process, no unnecessary overhead.
Get in touch