Skip to main content
Image coming soon

Building Kubernetes for Defence Mission Workloads (CMMC + IL5 + STIG + ATO + DODD 3000.09 + Air-Gap + SBOM)

$199.00
Adding to cart… The item has been added

A focused course, tailored for you

Building Kubernetes for Defence Mission Workloads (CMMC + IL5 + STIG + ATO + DODD 3000.09 + Air-Gap + SBOM)

Build Kubernetes for defence mission workloads in 10 weeks. CMMC + IL5 + STIG + ATO + DODD 3000.09 + air-gap + SBOM.

Defence primes face Kubernetes-for-mission-workloads complexity: CMMC 2.0 compliance, DoD CC SRG IL5 architecture, STIG hardening, ATO under NIST SP 800-53, DODD 3000.09 for autonomy in weapons, air-gap deployment, SBOM publication, and AI/ML workload integration. Engineers who build the integrated pattern take the senior programme work. Here is the 10-week build.

$199 one-time
Tailored to your situation. Access within 24 hours. 30-day money-back.

Includes a hand-built implementation playbook delivered alongside course access, generated for your specific situation.

Why this course

Defence primes and subs (Lockheed Martin, Boeing Defense Space & Security, Raytheon Technologies, Northrop Grumman, General Dynamics, BAE Systems, L3Harris, the firm, the firm, SAIC, CACI, Peraton, ManTech, Northrop Grumman Mission Systems, Aerojet Rocketdyne, Honeywell Aerospace, Textron Systems, Curtiss-Wright Defense Solutions, Mercury Systems, Maxar, Palantir USG, Anduril, Shield AI, Skydio, Saronic, Vannevar Labs, Helsing, Rebellion Defense, ECS Federal, Thales US, Naval Group US, Hensoldt) face Kubernetes-for-mission-workloads complexity in 2026.

CMMC 2.0 compliance (Level 2 with 110 NIST 800-171 practices, Level 3 with additional 800-172 practices), DoD CC SRG IL5 architecture (mission-owner accreditation boundary, encryption requirements, key management, audit logging integration), STIG hardening across Kubernetes (Kubernetes STIG, Container Image STIG, OS STIG), ATO under NIST SP 800-53 control set with appropriate overlay (RMF), DODD 3000.09 for autonomy in weapon systems where applicable, AI/ML workload integration with NIST AI RMF and DoD Responsible AI Strategy, air-gap deployment patterns (model packaging, dependency management, cross-domain solution model-update pipeline, telemetry in air-gap), SBOM publication (EO 14028 + NIST SP 800-161 + DOD CIO requirements), supply-chain security framework, GitOps for air-gap, and continuous-ATO (cATO) where applicable all need to land at the engineering layer.

Engineers who build the integrated pattern take the senior programme work. Engineers who stay on classic OpenShift-only patterns watch the senior work shift to peers.

This course teaches the 10-week build of Kubernetes for defence mission workloads: CMMC alignment, IL5 architecture, STIG hardening, ATO/RMF framework, DODD 3000.09 framework, AI/ML workload framework, air-gap deployment, SBOM framework, GitOps for air-gap, and the programme engagement model. Twelve modules with deliverables. Plus a hand-built implementation playbook for your specific programme.

What you walk away with

  • A documented CMMC 2.0 alignment framework.
  • An IL5 architecture framework.
  • A STIG hardening framework.
  • An ATO/RMF framework.
  • A DODD 3000.09 framework.
  • An AI/ML workload framework (NIST AI RMF + DoD Responsible AI).
  • An air-gap deployment framework.
  • An SBOM framework (EO 14028 + 800-161 + DOD CIO).
  • A 10-week build plan.

The 12 modules

Module 1. Defence Kubernetes landscape 2026
Detailed walkthrough of the defence Kubernetes landscape in 2026: DoD Platform One landscape (Iron Bank, Big Bang, Party Bus, Repo One), JWCC vendor patterns (AWS, Microsoft, Google, Oracle), Kubernetes distribution selection (Red Hat OpenShift, Rancher, VMware Tanzu, Amazon EKS Anywhere, Azure Stack Hub AKS, Google Anthos, in-house), DoD CC SRG IL4-IL6 progression, NIST RMF application, regulatory landscape (CMMC 2.0, STIG, DODD 3000.09, NIST AI RMF, DoD Responsible AI Strategy, EO 14028, NIST 800-161, DOD CIO SBOM Implementation Guide), and the strategic-level decisions facing engineers.
Module 2. CMMC 2.0 alignment framework
Build the CMMC 2.0 alignment framework: Level 2 (110 NIST 800-171 practices), Level 3 (additional 800-172 practices), assessment-readiness framework, C3PAO engagement pattern, evidence-collection automation, POA&M management, CDI/CUI handling integration, and the integration with broader compliance management.
Module 3. IL5 architecture framework
Build the IL5 architecture framework: AWS GovCloud (US) IL5 environment, Azure Government IL5 environment, Google Distributed Cloud Air-Gapped IL5 environment, Oracle Government Cloud IL5 environment, mission-owner accreditation boundary, encryption requirements (FIPS 140-2/3 cryptographic modules), key management (HSM + customer-managed), network architecture (boundary defence, IDS/IPS), audit logging integration, and the cATO pattern where applicable.
Module 4. STIG hardening framework
Build the STIG hardening framework: Kubernetes STIG application, Container Image STIG application, OS STIG application (RHEL STIG, Ubuntu STIG, where applicable), application STIG application, STIG-Viewer use, STIG-automation framework (OpenSCAP, Anchore, Aqua, Sysdig, in-house), exception-management framework, and the integration with broader hardening.
Module 5. ATO/RMF framework
Build the ATO/RMF framework: categorisation (FIPS 199), control selection (NIST 800-53 baseline + overlay), implementation, assessment, authorisation package (SSP, SAR, POA&M), continuous monitoring framework, AO engagement framework, and the integration with broader system engineering. The framework that wins the AO signature.
Module 6. DODD 3000.09 framework
Build the DODD 3000.09 framework: autonomy-in-weapon-systems classification, human-judgement-in-the-loop requirements, autonomous-engagement-review-process framework, senior-leader-review-cycle framework, lethal-autonomous-weapons-system policy framework, and the integration with broader weapons-system development.
Module 7. AI/ML workload framework
Build the AI/ML workload framework: NIST AI RMF alignment (Govern, Map, Measure, Manage), DoD Responsible AI Strategy alignment (governance, warfighter trust, AI workforce, AI lifecycle, requirements validation), AI workload deployment pattern, AI vendor due-diligence framework, AI model-supply-chain security framework, model-card pattern for DoD AI, adversarial-robustness testing pattern, and the integration with broader AI strategy.
Module 8. Air-gap deployment framework
Build the air-gap deployment framework: model packaging for air-gap, dependency management for air-gap (Iron Bank as ATO-accredited image source), inference-runtime selection for disconnected operation (NVIDIA Triton, TensorRT, ONNX Runtime, BentoML, in-house), model-update pipeline through cross-domain solution, telemetry capture in air-gap, GitOps for air-gap (Argo CD, Flux CD, Rancher Fleet, in-house), and the integration with broader disconnected-operations architecture.
Module 9. SBOM framework
Build the SBOM framework: EO 14028 requirements, NIST SP 800-161 supply-chain security requirements, DOD CIO SBOM Implementation Guide, SBOM-format selection (SPDX, CycloneDX, SWID), SBOM-generation tooling (Anchore Syft, Snyk, Trivy, Grype, ORT, in-house), SBOM-distribution framework, SBOM-vulnerability-scanning framework, and the integration with broader software-supply-chain.
Module 10. Container registry and image security
Build the container registry and image security framework: registry selection (Iron Bank + JFrog Artifactory + Harbor + Quay + GitLab Container Registry + Sonatype Nexus + Microsoft ACR + Amazon ECR + Google Artifact Registry + Azure Container Registry for Mil), image-signing framework (Cosign, Notary v2), admission-control framework (Kyverno, OPA Gatekeeper, in-house), runtime-security framework (Aqua, Sysdig, Falco, Tetragon, in-house), and the integration with broader cluster security.
Module 11. Programme engagement model
Build the programme engagement model: AO partnership, mission-owner partnership, security-control-assessor partnership, programme-manager engagement, contracting-officer partnership, prime/sub relationship management for Kubernetes deliverables, and the integration with broader programme management.
Module 12. Your 10-week build plan
Week-by-week plan with weekly deliverables. Weeks 1-2: defence Kubernetes landscape + CMMC 2.0 alignment framework. Weeks 3-4: IL5 architecture framework + STIG hardening framework. Weeks 5-6: ATO/RMF framework + DODD 3000.09 framework. Weeks 7-8: AI/ML workload framework + air-gap deployment framework. Weeks 9-10: SBOM framework + container registry and image security + programme engagement. Deliverable: Kubernetes for defence mission workloads.

How this addresses your situation

Specific modules that map to what you said you are dealing with.

Module 1 covers the landscape.
Module 2 produces CMMC 2.0 alignment.
Module 3 covers IL5 architecture.
Module 4 covers STIG hardening.
Module 5 covers ATO/RMF.
Module 6 covers DODD 3000.09.
Module 7 covers AI/ML workload.
Module 8 covers air-gap deployment.
Module 9 covers SBOM.
Module 10 covers container registry and image security.
Module 11 covers programme engagement.
Module 12 covers the 10-week build plan.

What you get with this course

  • The 12-module course delivered as text plus downloadable templates.
  • Templates and design references for CMMC 2.0 alignment framework, IL5 architecture framework, STIG hardening framework, ATO/RMF framework, DODD 3000.09 framework, AI/ML workload framework, air-gap deployment framework, SBOM framework, container registry and image security, programme engagement.
  • A hand-built implementation playbook generated for your specific programme.
  • Three worked examples of Kubernetes for defence mission workloads at peer programmes.
  • Scripted talking points for the AO and mission-owner engagement.

What you will have in hand by Day 1, Week 1, Month 1

Day 1: CMMC 2.0 alignment scaffold drafted.

Week 4: IL5 + STIG designed.

Week 8: ATO/RMF + DODD 3000.09 + AI/ML + air-gap + SBOM operational.

Week 10: Pattern in operation.

Before and after

Before

Your programme ships Kubernetes-on-mission-workloads that stalls at ATO. CMMC + IL5 + STIG + DODD 3000.09 + AI/ML + air-gap + SBOM gaps surface in AO due-diligence. Senior programme work goes to peers shipping the integrated pattern.

After

A Kubernetes-for-defence-mission-workloads pattern is in operation. CMMC 2.0 alignment framework, IL5 architecture framework, STIG hardening framework, ATO/RMF framework, DODD 3000.09 framework, AI/ML workload framework, air-gap deployment framework, SBOM framework, container registry and image security, programme engagement are all designed.

What happens if you do not address this

Engineers without the integrated pattern miss senior programme work. CMMC 2.0 effective; EO 14028 active; DoD CIO SBOM Implementation Guide active.

Who it is for

For platform engineers, principal engineers, technical fellows, chief engineers, cybersecurity engineers, and senior engineering managers at DoD primes, subs, and federal-contractor firms.

Who this is NOT for. Pure commercial-cloud engineers without programme-deployment scope. Engineers at firms with no DoD or federal-contractor business. Pure operational SOC analysts without architecture scope.

How it arrives

Text-based course via LMS, plus downloadable design references and templates and the hand-built implementation playbook.

Time investment. Roughly 18 hours of reading and 200 to 400 hours of engineering effort across the 10-week build.

Why $199 is the right number

External defence Kubernetes consultants (specialist firms like Red Hat Government, Rancher Government Solutions, VMware Tanzu Federal, Two Six Technologies, Modzy, Striveworks, BlueHalo, the firm federal AI practice, the firm AI practice, SAIC AI practice, CACI AI practice, Peraton AI practice, Northrop Grumman AI practice) charge $500K-$3M for Kubernetes programmes. $199 buys the focused playbook plus the implementation document for your specific programme.

FAQ

Will this replace hiring a defence Kubernetes specialist?
Partially. It teaches the integrated pattern. You may still want specialist input for complex air-gap challenges.
What if my programme is intelligence-community (not DoD)?
Module 5 covers ICD 503 + IC RMF overlay.
Does this cover Iron Bank specifically?
Modules 8 and 10 cover Iron Bank in depth.
What about Platform One specifically?
Module 1 covers Platform One in depth.
What is in the implementation playbook for me specifically?
CMMC 2.0 alignment framework tailored to your specific programme; IL5 architecture matched to your mission-owner; a 10-week build plan.

30-day money-back guarantee. If after a week of working through the materials this is not what you needed, reply to the receipt email and a full refund is processed. No questions, no forms.

Within 24 hours your account in the learning environment is provisioned and the tailored implementation playbook is delivered alongside it.