PlatformEngineering.org My Courses FAQs

Infrastructure Identity for Platform Engineers

Permanent access keys and shared passwords are the "ticking time bombs" of modern infrastructure. Learn everything about the shift to a zero trust model where every person, automated script or AI agent uses a unique, short-lived ID that can’t be stolen or reused. Understand how real-time authentication becomes a first-class capability of your platform through the power of infrastructure identity

Cancel Apply

rate limit

Code not recognized.

About this course

BROUGHT TO YOU BY
DURATION 2 hours
PRICEFree
FORMATOn-demand

What you'll learn

By the end of this course, you'll be able to:

checkmark Understand why identity compromise and secret sprawl are common root causes of modern infrastructure breaches
checkmark Design and implement a unified Infrastructure Identity model that covers humans, machines, workloads, and AI agents
checkmark How to eliminate static credentials by applying cryptographic identities and zero trust principles
checkmark How to quantify the impact of secure access and prove ROI
salary callout
31%
of platform engineers
report security is currently
their main area of focus
 
 
 

Curriculum

6 MODULES · 
MODULE 1
The fundamentals of Infrastructure Identity

Why platform engineers, not just security teams, own the access experience
 The evolution of access control: from SSH keys and VPNs to cryptographic identity
 The shared goals of security, compliance, and developer productivity

MODULE 2
The cost of legacy access
Hidden costs of traditional access models: operational overhead, breach risk, and compliance friction
How reactive legacy access models create audit and compliance burdens
Quantifying the impact: mean time to access (MTTA) and its effect on velocity
MODULE 3
The infrastructure access and identity landscape
Comparing access control paradigms: IAM, PAM, ZTNA, and Infrastructure Identity
Identity-centric authentication: short-lived certificates vs. static credentials
Unifying access across cloud, Kubernetes, databases, and internal services
Role of machine and service identities in zero-trust ecosystems
MODULE 4
Implementing unified identity in infrastructure
Core components of zero trust for infrastructure: identity, authorization, audit
Trusted identities and cryptographic authentication
Implementing least privilege and just-in-time access in practice
 

Meet your Instructor

Chris De La Garza

Chris De La Garza

Senior Solutions Engineer @ Teleport

LinkedIn icon Connect with me on LinkedIn

  • bullet-icon Senior Solutions Engineer specializing in enterprise infrastructure access and security 
  • bullet-icon Deep in the trenches with Linux, Kubernetes, Terraform, and multi-cloud helping push practices to customers and peers
  • bullet-icon Home lab tinkerer and AI/ML enthusiast, always exploring where infrastructure and automation intersect
Chris De La Garza
LinkedIn icon Connect with me on LinkedIn
Desktop
 Mobile
 

 
 

 
 
Alumni stories
 
Testimonials          
Name Image Position Text Linkedin LinkedinPost
Jay Moran SVP of Platform Engineering & Distinguished Engineer at Fiserv I don’t often feel certifications are too useful, but in this case beyond being not vendor specific, I think this is one certification that really helps define a “Platform Engineer” versus someone who does some of the many components of what goes into platform engineering… https://www.linkedin.com/in/jaycmoran/ https://www.linkedin.com/posts/jaycmoran_platformasaproduct-idp-platformengineering-activity-7364777833262448641-ku7Z/?utm_source=share&utm_medium=member_desktop&rcm=ACoAAB7W6ucBwi1gPqF5QCBe36ipfkH_n4Cityo
Daniel Palermi Senior Cloud Engineer at Serko The Platform Engineering Practitioner certification helped me understand the evolution of DevOps and engineering practices over the years. It clarified the concept of platform engineering and its true purpose. In my opinion, everyone working in an IT company should take this course, as it offers valuable lessons that span across all roles.

https://www.linkedin.com/in/daniel-palermi-4a5b881b/  
Brittany Lebel Senior Product Owner, Kinsale Insurance The Platform Engineering course was a transformative addition to my career. The content was well-structured, covering everything from designing Platform Engineering Maturity  Models to developing reference architectures that drive standardization and empower developers with seamless self-service capabilities. The hands-on lectures on Pocket IDP provided an in-depth exploration of the entire implementation process, diving into technical details and real-case scenarios. This comprehensive approach offered invaluable insights into how an IDP functions as a product and how it can efficiently support production workloads.Thanks to this course, I now have the expertise to contribute meaningfully to the development and enhancement of our Internal Developer Platform, enabling us to accelerate application delivery cycles.I highly recommend this course to anyone eager to elevate their engineering expertise and make a tangible impact in platform engineering! https://www.linkedin.com/in/brittany-lebel/  
Marc Schnitzius Service Lead Platform Engineering at Codecentric AG The Platform Engineering  Certified Practitioner course is a great guide for better understanding that the success of an internal developer platform is not just about making developers happy and shifting all their problems to a platform team. https://www.linkedin.com/in/marc-schnitzius/  
Rafael de Araujo Pires Global Director of Architecture at AB InBev The Platform Engineering Practitioner certification was more than concepts. It was a reflection on my own platform journey since 2022.The biggest lesson? Platforms are about people. It’s about listening, building trust, and reducing friction so teams can deliver value with autonomy. It’s about connecting culture, product, and technology, and showing that developer satisfaction can be as strategic as any infrastructure investment.Platform engineering isn’t just code: it’s people, trust, and real business impact. https://www.linkedin.com/in/rafaeldearaujop/  
Desktop Mobile
 
 
 
 

 

 

 

Curriculum

  • Module 1: The fundamentals of infrastructure identity
  • The fundamentals of Infrastructure Identity
  • What is infrastructure identity?
  • Why platform engineers, not just security teams, own the access experience.
  • The evolution of access control: from SSH keys and VPNs to cryptographic identity
  • The shared goals of security, compliance, and developer productivity.
  • Common pain points: key sprawl, inconsistent access policies, audit fatigue, and toil
  • Resources
  • Module 2: The cost of legacy access
  • The cost of legacy access
  • Hidden costs of traditional access models: operational overhead, breach risk, and compliance friction
  • How reactive legacy access models create audit and compliance burdens
  • Quantifying the impact: mean time to access (MTTA) and its effect on velocity
  • What platform engineers need to do to improve things
  • Resources
  • Module 3: The infrastructure access landscape
  • The infrastructure access landscape
  • Comparing access control paradigms: IAM, PAM, ZTNA, and Infrastructure Identity
  • Identity-centric authentication: short-lived certificates vs. static credentials
  • Unifying access across cloud, Kubernetes, databases, and internal services
  • Role of machine and service identities in zero-trust ecosystems
  • Resources
  • Module 4: Implementing Zero Trust access in practice
  • Implementing Zero Trust access in practice
  • Core components of zero trust for infrastructure: identity, authorization, audit
  • Trusted identities and cryptographic authentication
  • Implementing least privilege and just-in-time access in practice
  • Integrating access workflows into IDPs, CI/CD, and developer self-service portals
  • Automating policy enforcement and audit through code and APIs
  • Resources
  • Next steps
  • Next steps
  • Feedback survey

About this course

BROUGHT TO YOU BY
DURATION 2 hours
PRICEFree
FORMATOn-demand

What you'll learn

By the end of this course, you'll be able to:

checkmark Understand why identity compromise and secret sprawl are common root causes of modern infrastructure breaches
checkmark Design and implement a unified Infrastructure Identity model that covers humans, machines, workloads, and AI agents
checkmark How to eliminate static credentials by applying cryptographic identities and zero trust principles
checkmark How to quantify the impact of secure access and prove ROI
salary callout
31%
of platform engineers
report security is currently
their main area of focus
 
 
 

Curriculum

6 MODULES · 
MODULE 1
The fundamentals of Infrastructure Identity

Why platform engineers, not just security teams, own the access experience
 The evolution of access control: from SSH keys and VPNs to cryptographic identity
 The shared goals of security, compliance, and developer productivity

MODULE 2
The cost of legacy access
Hidden costs of traditional access models: operational overhead, breach risk, and compliance friction
How reactive legacy access models create audit and compliance burdens
Quantifying the impact: mean time to access (MTTA) and its effect on velocity
MODULE 3
The infrastructure access and identity landscape
Comparing access control paradigms: IAM, PAM, ZTNA, and Infrastructure Identity
Identity-centric authentication: short-lived certificates vs. static credentials
Unifying access across cloud, Kubernetes, databases, and internal services
Role of machine and service identities in zero-trust ecosystems
MODULE 4
Implementing unified identity in infrastructure
Core components of zero trust for infrastructure: identity, authorization, audit
Trusted identities and cryptographic authentication
Implementing least privilege and just-in-time access in practice
 

Meet your Instructor

Chris De La Garza

Chris De La Garza

Senior Solutions Engineer @ Teleport

LinkedIn icon Connect with me on LinkedIn

  • bullet-icon Senior Solutions Engineer specializing in enterprise infrastructure access and security 
  • bullet-icon Deep in the trenches with Linux, Kubernetes, Terraform, and multi-cloud helping push practices to customers and peers
  • bullet-icon Home lab tinkerer and AI/ML enthusiast, always exploring where infrastructure and automation intersect
Chris De La Garza
LinkedIn icon Connect with me on LinkedIn
Desktop
 Mobile
 

 
 

 
 
Alumni stories
 
Testimonials          
Name Image Position Text Linkedin LinkedinPost
Jay Moran SVP of Platform Engineering & Distinguished Engineer at Fiserv I don’t often feel certifications are too useful, but in this case beyond being not vendor specific, I think this is one certification that really helps define a “Platform Engineer” versus someone who does some of the many components of what goes into platform engineering… https://www.linkedin.com/in/jaycmoran/ https://www.linkedin.com/posts/jaycmoran_platformasaproduct-idp-platformengineering-activity-7364777833262448641-ku7Z/?utm_source=share&utm_medium=member_desktop&rcm=ACoAAB7W6ucBwi1gPqF5QCBe36ipfkH_n4Cityo
Daniel Palermi Senior Cloud Engineer at Serko The Platform Engineering Practitioner certification helped me understand the evolution of DevOps and engineering practices over the years. It clarified the concept of platform engineering and its true purpose. In my opinion, everyone working in an IT company should take this course, as it offers valuable lessons that span across all roles.

https://www.linkedin.com/in/daniel-palermi-4a5b881b/  
Brittany Lebel Senior Product Owner, Kinsale Insurance The Platform Engineering course was a transformative addition to my career. The content was well-structured, covering everything from designing Platform Engineering Maturity  Models to developing reference architectures that drive standardization and empower developers with seamless self-service capabilities. The hands-on lectures on Pocket IDP provided an in-depth exploration of the entire implementation process, diving into technical details and real-case scenarios. This comprehensive approach offered invaluable insights into how an IDP functions as a product and how it can efficiently support production workloads.Thanks to this course, I now have the expertise to contribute meaningfully to the development and enhancement of our Internal Developer Platform, enabling us to accelerate application delivery cycles.I highly recommend this course to anyone eager to elevate their engineering expertise and make a tangible impact in platform engineering! https://www.linkedin.com/in/brittany-lebel/  
Marc Schnitzius Service Lead Platform Engineering at Codecentric AG The Platform Engineering  Certified Practitioner course is a great guide for better understanding that the success of an internal developer platform is not just about making developers happy and shifting all their problems to a platform team. https://www.linkedin.com/in/marc-schnitzius/  
Rafael de Araujo Pires Global Director of Architecture at AB InBev The Platform Engineering Practitioner certification was more than concepts. It was a reflection on my own platform journey since 2022.The biggest lesson? Platforms are about people. It’s about listening, building trust, and reducing friction so teams can deliver value with autonomy. It’s about connecting culture, product, and technology, and showing that developer satisfaction can be as strategic as any infrastructure investment.Platform engineering isn’t just code: it’s people, trust, and real business impact. https://www.linkedin.com/in/rafaeldearaujop/  
Desktop Mobile
 
 
 
 

 

 

 

Curriculum

  • Module 1: The fundamentals of infrastructure identity
  • The fundamentals of Infrastructure Identity
  • What is infrastructure identity?
  • Why platform engineers, not just security teams, own the access experience.
  • The evolution of access control: from SSH keys and VPNs to cryptographic identity
  • The shared goals of security, compliance, and developer productivity.
  • Common pain points: key sprawl, inconsistent access policies, audit fatigue, and toil
  • Resources
  • Module 2: The cost of legacy access
  • The cost of legacy access
  • Hidden costs of traditional access models: operational overhead, breach risk, and compliance friction
  • How reactive legacy access models create audit and compliance burdens
  • Quantifying the impact: mean time to access (MTTA) and its effect on velocity
  • What platform engineers need to do to improve things
  • Resources
  • Module 3: The infrastructure access landscape
  • The infrastructure access landscape
  • Comparing access control paradigms: IAM, PAM, ZTNA, and Infrastructure Identity
  • Identity-centric authentication: short-lived certificates vs. static credentials
  • Unifying access across cloud, Kubernetes, databases, and internal services
  • Role of machine and service identities in zero-trust ecosystems
  • Resources
  • Module 4: Implementing Zero Trust access in practice
  • Implementing Zero Trust access in practice
  • Core components of zero trust for infrastructure: identity, authorization, audit
  • Trusted identities and cryptographic authentication
  • Implementing least privilege and just-in-time access in practice
  • Integrating access workflows into IDPs, CI/CD, and developer self-service portals
  • Automating policy enforcement and audit through code and APIs
  • Resources
  • Next steps
  • Next steps
  • Feedback survey