Skip to main content

Certification Roadmap

Ordered certification paths for AWS, Azure, GCP, and Kubernetes aligned to DevSecOps and platform engineering careers.


Certification Roadmap

Certs are structured syllabi, not job guarantees. Take them after hands-on labs exams reward services you have actually configured.


Recommended sequences

Platform / DevOps track

StageAWSAzureGCP
AssociateSolutions Architect AssociateAZ-104 AdministratorAssociate Cloud Engineer
KubernetesCKA (admin) or CKAD (apps)Same vendor-neutralSame
ProfessionalDevOps Engineer ProAZ-400 DevOps EngineerProfessional Cloud Architect
Security add-onSecurity SpecialtySC-200 / AZ-500Professional Cloud Security Engineer

Security-first track (DevSecOps)

OrderCertWhy
1Cloud associate (any provider)IAM, logging, network baseline
2CKAWhere workloads actually run
3Provider security specialtyDetective controls, encryption, governance
4CISSP or CCSP (experience-gated)Architecture vocabulary for leadership

Kubernetes (vendor-neutral)

ExamAudienceStudy focus
CKACluster operatorskubectl, troubleshooting, etcd backup concepts
CKADApp developersDeployments, probes, ConfigMaps, multi-container
CKSSecurity engineersPod security, network policy, supply chain after CKA

Lab rule: Use kubectl daily for 30 days before booking CKS.


Study tactics that work

TacticDetail
Hands-on first70% lab, 30% reading
Timed practice examsSimulate pressure; review every wrong answer
Service cheat sheetOne-page per service: purpose, pricing model, integrates with
Whiteboard architecturesDraw before clicking console
Teach backExplain VPC peering to a peer in 5 minutes

What certs do not replace

  • Production incident ownership
  • Code in git (pipelines, modules, policies)
  • Communication with security and product teams

Document those in your portfolio and Research Core articles.


12-week cert sprint (template)

WeeksActivity
1–2Syllabus gap analysis vs Cloud Study Plans
3–8Daily 1 h lab on weakest domains
9–10Two full practice exams
11Review weak domains only
12Exam

Maintainer note

Krishna Neupane's portfolio emphasizes production DevSecOps prioritize CKA + cloud security specialty if your role owns cluster and cloud posture together.