Back to the list

Date
20.12.2024 09:00 - 16:30 CET
Teachers
  • Daniel Koeppel
Price excl. VAT (CHF)
1’050.00
Location
Time zone: CET
Course description
Mission statement
Learn what are the most important security related considerations while configuring and deploying Avaloq containerized products and components to the ACPR cluster.
 
Course description
This course covers the basic knowledge of a current (2024) ACPR on-premises OpenShift  implementation. Nevertheless, we focus mainly on the Kubernetes and Installator functionality in relation to the generic ACPR framework. So, this course fits as well into future ACPR implementations related to any Kubernetes based cluster orchestrator and architecture (AWS, OKE, etc.).  
 
It explains how to handle security related tasks in an ACPR compliant cluster. It covers handling of sensitive data in constellations, the basics of certificates to enable connections to databases, registries and repositories, network policies and routing, the concept of Secrets incl. encryption/decryption and sealing for automation.
 
The basic concept of WAF and IAM will be explained as well as the meaning of Security monitoring.
 
The course is targeted to Avaloq certified customization professionals as well as technical operators. In the accreditation edition for re-certification, the course also contains the regular topics “Good to know” and “Best practices”.
Objectives
  • Describe the basic pre-requisites that define an ACPR compliant cluster from security perspective
  • Understand the meaning of certificates and being able to create and store them in a constellation
  • Explain the concept of secrets and how to handle their encryption
  • Understand the concepts behind JDBC connections and Transport Layer Security (TLS)
  • Describe the concept of network policies and routing
  • Describe the concepts of a Web Application Firewall (WAF) and the Identity and Access Management (IAM)
  • Differentiate repositories from registries and explain the main use cases in the context of ACPR
  • Describe the meaning of security monitoring
Target audience
Avaloq Certified Customization Professionals working on implementation projects based on ACPR.
 
Avaloq Certified Technical Operators and DevOps with responsibility of ACPR.
 
This course is aimed at students being required to complete the self-learning part as well as exercises in the virtual classroom training to successfully complete the course.
Prerequisites
Participants must be ACCP or ACTO certified or have equivalent knowledge of the Avaloq Banking System.
 
Avaloq Certified Customization Professionals will receive accreditation points for their re-certification.  
 
This course includes a self-study exercise to help you consolidate learning and prepare for the virtual class.  
 
The exercise solution must be completed and submitted two business days before the virtual class (course date). Solution submission is mandatory - you must submit a solution to participate in the virtual class.
Course content
Course content
 
  • ACPR framework
  • Certificates
  • Sensitive data in a constellation
  • Connectivity
  • Registries / Repositories
  • WAF / IAM
  • Security Monitoring
Duration
3 - 5 hours of self-study
We recommend that participants start the self-study phase no later than 10 days prior to the course. Please note all self-study exercises must be completed and submitted at least two business days before the classroom training.
 
1 day of virtual classroom training
Please note, to be awarded full education points, you must take an active part in the classroom days completing the set exercises.
Availability
8 Available

Back to the list