技能档案

Kubernetes Advanced

HPA, Ingress, RBAC, Network Policies, Operators, Custom Resources

Cloud & Infrastructure Kubernetes & Orchestration

角色数

包含此技能的角色

级别数

结构化成长路径

必要要求

其余 10 个可选

领域

Cloud & Infrastructure

skills.group

Kubernetes & Orchestration

最后更新

2026/3/17

如何使用

选择当前级别并对比期望。下方卡片显示晋升所需掌握的内容。

各级别期望

表格展示从初级到首席的技能深度变化。点击行查看详情。

角色	必要性	描述
Cloud Engineer	必要	Understands Kubernetes resource types (Deployments, Services, ConfigMaps). Uses kubectl to inspect pod status, view logs, and apply existing manifests in cloud environments.
DevOps Engineer		Understands advanced Kubernetes concepts: CustomResourceDefinitions, operators, admission webhooks. Studies cluster architecture (etcd, API server, scheduler, controller manager). Works with kubectl for problem diagnostics under senior engineer guidance.
DevSecOps Engineer		Studies advanced Kubernetes concepts: Custom Resources, Operators, admission webhooks. Configures Pod Disruption Budgets and Priority Classes. Applies Horizontal Pod Autoscaler. Uses kubectl debug for pod troubleshooting. Understands etcd and control plane principles.
Infrastructure Engineer		Understands core Kubernetes concepts: pods, nodes, namespaces, and labels. Performs basic cluster operations like scaling replicas and restarting deployments under guidance.
MLOps Engineer		Understands basic Kubernetes Advanced concepts. Uses ready-made configurations. Performs simple operations under senior guidance.
Platform Engineer	必要	Works with namespaces and RBAC for team isolation on the platform. Configures ResourceQuotas and LimitRanges for tenants. Understands Ingress controllers and network policies. Uses kubectl for diagnosing cluster problems.
Site Reliability Engineer (SRE)		Works with Kubernetes for SRE: kubectl for diagnostics, pod logs, describe for troubleshooting. Understands deployments, services, configmaps. Follows runbooks during incidents.

角色	必要性	描述
Cloud Engineer	必要	Configures Kubernetes RBAC, network policies, and Ingress controllers for multi-tenant cloud environments. Writes Helm charts and manages cluster upgrades with zero-downtime strategies.
DevOps Engineer		Configures advanced Kubernetes features: HPA/VPA for autoscaling, PodDisruptionBudget, affinity/anti-affinity rules. Manages RBAC policies, configures NetworkPolicy for namespace isolation. Deploys and manages operators (cert-manager, external-dns).
DevSecOps Engineer		Develops Kubernetes Operators with Operator SDK for operations automation. Configures admission webhooks (validating/mutating) for security policy enforcement. Introduces Vertical Pod Autoscaler and KEDA for event-driven scaling. Manages Custom Resources for extending cluster API.
Infrastructure Engineer		Manages Kubernetes clusters with custom resource definitions and operators. Configures persistent storage, resource quotas, and horizontal pod autoscaling for production workloads.
MLOps Engineer		Independently configures and manages Kubernetes Advanced. Writes IaC for typical tasks. Understands networking and security basics.
Platform Engineer	必要	Creates Custom Resource Definitions (CRDs) for automating platform processes. Configures Pod Security Standards and Network Policies for multi-tenant clusters. Manages stateful applications through operators (etcd, PostgreSQL). Optimizes scheduler and affinity rules.
Site Reliability Engineer (SRE)		Administers Kubernetes: RBAC, network policies, resource quotas. Configures HPA/VPA for autoscaling. Diagnoses complex issues: CrashLoopBackOff, evictions, networking issues.

角色	必要性	描述
Cloud Engineer	必要	Designs infrastructure solutions with Kubernetes Advanced. Optimizes cost and performance. Introduces best practices and security hardening.
DevOps Engineer	必要	Designs production cluster architecture: multi-tenancy through namespaces and RBAC, service mesh (Istio/Linkerd), custom controllers. Configures cluster autoscaler, optimizes resources through VPA and Goldilocks. Implements GitOps for cluster management.
DevSecOps Engineer	必要	Designs multi-cluster Kubernetes platform with federation. Introduces service mesh (Istio/Linkerd) with mTLS and traffic management. Develops custom controllers for security workflow automation. Configures cluster autoscaling considering security zones. Optimizes etcd performance and backup.
Infrastructure Engineer	必要	Designs infrastructure solutions with Kubernetes Advanced. Optimizes cost and performance. Implements best practices and security hardening.
MLOps Engineer	必要	Architects infrastructure solutions with Kubernetes Advanced. Optimizes cost and performance. Implements best practices and security hardening.
Platform Engineer	必要	Develops Kubernetes operators for IDP automation (Operator SDK/kubebuilder). Designs multi-tenant architecture with virtual clusters (vCluster). Implements advanced networking (Cilium, eBPF). Creates admission webhooks for platform policy enforcement.
Site Reliability Engineer (SRE)	必要	Designs Kubernetes reliability: pod disruption budgets, topology spread constraints, custom operators for automation. Configures multi-zone deployment, graceful shutdown. Optimizes cluster performance.

角色	必要性	描述
Cloud Engineer	必要	Defines multi-cluster Kubernetes strategy across cloud providers. Establishes GitOps workflows with ArgoCD/Flux, implements service mesh policies, and optimizes cluster costs with FinOps practices.
DevOps Engineer	必要	Defines organizational Kubernetes platform architecture: cluster standards, multi-cluster management (Rancher/Tanzu), federation. Designs platform engineering layer: Kubernetes abstractions for developers, CIS benchmark security standards.
DevSecOps Engineer	必要	Defines Kubernetes platform architecture for the organization. Manages platform engineering team. Builds Internal Developer Platform (IDP) with self-service and guardrails. Introduces GitOps with ArgoCD/Flux for all environments. Defines multi-tenancy standards and resource quotas.
Infrastructure Engineer	必要	Defines Kubernetes platform strategy including cluster provisioning automation, security hardening standards, and disaster recovery procedures. Conducts architecture reviews for workload placement and resource optimization.
MLOps Engineer	必要	Defines infrastructure strategy with Kubernetes Advanced. Establishes IaC standards. Conducts architecture reviews. Optimizes FinOps.
Platform Engineer	必要	Defines multi-cluster Kubernetes strategy for organization: federation, fleet management (Rancher/Tanzu). Leads platform API development through CRDs and controllers. Designs cluster lifecycle management with automatic upgrades and disaster recovery.
Site Reliability Engineer (SRE)	必要	Defines K8s standards: cluster configuration baselines, security hardening, upgrade procedures. Implements policy engines (Kyverno/OPA Gatekeeper). Coordinates cluster lifecycle management.

角色	必要性	描述
Cloud Engineer	必要	Shapes Kubernetes platform evolution strategy: multi-cluster federation, service mesh (Istio/Linkerd), GitOps through ArgoCD/Flux. Designs custom operators, admission webhooks, scheduler extensions. Defines multi-tenancy architecture and resource governance.
DevOps Engineer	必要	Develops organizational container orchestration strategy: multi-cloud Kubernetes clusters, service mesh architecture, platform engineering vision. Defines platform evolution from Kubernetes to Internal Developer Platform, mentors platform engineering teams.
DevSecOps Engineer	必要	Architecturally designs enterprise Kubernetes platform: multi-cluster, multi-region, multi-cloud. Defines Platform Engineering strategy for the organization. Develops reference architecture for secure container platform. Influences investment in platform tools and teams.
Infrastructure Engineer	必要	Defines advanced Kubernetes pattern architecture for the organization: custom operators with controller-runtime, CRD design for internal abstractions, multi-cluster federation through Liqo or Admiralty. Designs Kubernetes extension strategy through admission webhooks, scheduler extenders and custom CNI plugins.
MLOps Engineer	必要	Defines the strategy for advanced Kubernetes capabilities in the MLOps platform: custom operators for ML model lifecycle management, CRDs for describing training pipelines. Designs GPU scheduling architecture with device plugins, configures topology-aware scheduling for distributed training, and defines autoscaling policies for inference based on GPU utilization.
Platform Engineer	必要	Shapes architectural strategy for Kubernetes platform: edge computing, serverless on K8s (Knative), WebAssembly workloads. Influences upstream Kubernetes through KEPs and community contributions. Defines 3-5 year roadmap for organizational container platform evolution.
Site Reliability Engineer (SRE)	必要	Designs Kubernetes platform: multi-cluster management (fleet), federation, cluster-as-a-service. Defines K8s evolution strategy: version upgrades, feature adoption, vendor evaluation.

Junior 7 要求

Cloud Engineer
必要

Understands Kubernetes resource types (Deployments, Services, ConfigMaps). Uses kubectl to inspect pod status, view logs, and apply existing manifests in cloud environments.
DevOps Engineer

Understands advanced Kubernetes concepts: CustomResourceDefinitions, operators, admission webhooks. Studies cluster architecture (etcd, API server, scheduler, controller manager). Works with kubectl for problem diagnostics under senior engineer guidance.
DevSecOps Engineer

Studies advanced Kubernetes concepts: Custom Resources, Operators, admission webhooks. Configures Pod Disruption Budgets and Priority Classes. Applies Horizontal Pod Autoscaler. Uses kubectl debug for pod troubleshooting. Understands etcd and control plane principles.

Middle 7 要求

Cloud Engineer
必要

Configures Kubernetes RBAC, network policies, and Ingress controllers for multi-tenant cloud environments. Writes Helm charts and manages cluster upgrades with zero-downtime strategies.
DevOps Engineer

Configures advanced Kubernetes features: HPA/VPA for autoscaling, PodDisruptionBudget, affinity/anti-affinity rules. Manages RBAC policies, configures NetworkPolicy for namespace isolation. Deploys and manages operators (cert-manager, external-dns).
DevSecOps Engineer

Develops Kubernetes Operators with Operator SDK for operations automation. Configures admission webhooks (validating/mutating) for security policy enforcement. Introduces Vertical Pod Autoscaler and KEDA for event-driven scaling. Manages Custom Resources for extending cluster API.

Senior 7 要求

Cloud Engineer
必要

Designs infrastructure solutions with Kubernetes Advanced. Optimizes cost and performance. Introduces best practices and security hardening.
DevOps Engineer
必要

Designs production cluster architecture: multi-tenancy through namespaces and RBAC, service mesh (Istio/Linkerd), custom controllers. Configures cluster autoscaler, optimizes resources through VPA and Goldilocks. Implements GitOps for cluster management.
DevSecOps Engineer
必要

Designs multi-cluster Kubernetes platform with federation. Introduces service mesh (Istio/Linkerd) with mTLS and traffic management. Develops custom controllers for security workflow automation. Configures cluster autoscaling considering security zones. Optimizes etcd performance and backup.

Infrastructure Engineer
必要

Designs infrastructure solutions with Kubernetes Advanced. Optimizes cost and performance. Implements best practices and security hardening.
MLOps Engineer
必要

Architects infrastructure solutions with Kubernetes Advanced. Optimizes cost and performance. Implements best practices and security hardening.
Platform Engineer
必要

Develops Kubernetes operators for IDP automation (Operator SDK/kubebuilder). Designs multi-tenant architecture with virtual clusters (vCluster). Implements advanced networking (Cilium, eBPF). Creates admission webhooks for platform policy enforcement.
Site Reliability Engineer (SRE)
必要

Designs Kubernetes reliability: pod disruption budgets, topology spread constraints, custom operators for automation. Configures multi-zone deployment, graceful shutdown. Optimizes cluster performance.

Lead / Staff 7 要求

Cloud Engineer
必要

Defines multi-cluster Kubernetes strategy across cloud providers. Establishes GitOps workflows with ArgoCD/Flux, implements service mesh policies, and optimizes cluster costs with FinOps practices.
DevOps Engineer
必要

Defines organizational Kubernetes platform architecture: cluster standards, multi-cluster management (Rancher/Tanzu), federation. Designs platform engineering layer: Kubernetes abstractions for developers, CIS benchmark security standards.
DevSecOps Engineer
必要

Defines Kubernetes platform architecture for the organization. Manages platform engineering team. Builds Internal Developer Platform (IDP) with self-service and guardrails. Introduces GitOps with ArgoCD/Flux for all environments. Defines multi-tenancy standards and resource quotas.

Infrastructure Engineer
必要

Defines Kubernetes platform strategy including cluster provisioning automation, security hardening standards, and disaster recovery procedures. Conducts architecture reviews for workload placement and resource optimization.
MLOps Engineer
必要

Defines infrastructure strategy with Kubernetes Advanced. Establishes IaC standards. Conducts architecture reviews. Optimizes FinOps.
Platform Engineer
必要

Defines multi-cluster Kubernetes strategy for organization: federation, fleet management (Rancher/Tanzu). Leads platform API development through CRDs and controllers. Designs cluster lifecycle management with automatic upgrades and disaster recovery.
Site Reliability Engineer (SRE)
必要

Defines K8s standards: cluster configuration baselines, security hardening, upgrade procedures. Implements policy engines (Kyverno/OPA Gatekeeper). Coordinates cluster lifecycle management.

Principal 7 要求

Cloud Engineer
必要

Shapes Kubernetes platform evolution strategy: multi-cluster federation, service mesh (Istio/Linkerd), GitOps through ArgoCD/Flux. Designs custom operators, admission webhooks, scheduler extensions. Defines multi-tenancy architecture and resource governance.
DevOps Engineer
必要

Develops organizational container orchestration strategy: multi-cloud Kubernetes clusters, service mesh architecture, platform engineering vision. Defines platform evolution from Kubernetes to Internal Developer Platform, mentors platform engineering teams.
DevSecOps Engineer
必要

Architecturally designs enterprise Kubernetes platform: multi-cluster, multi-region, multi-cloud. Defines Platform Engineering strategy for the organization. Develops reference architecture for secure container platform. Influences investment in platform tools and teams.

Infrastructure Engineer
必要

Defines advanced Kubernetes pattern architecture for the organization: custom operators with controller-runtime, CRD design for internal abstractions, multi-cluster federation through Liqo or Admiralty. Designs Kubernetes extension strategy through admission webhooks, scheduler extenders and custom CNI plugins.
MLOps Engineer
必要

Defines the strategy for advanced Kubernetes capabilities in the MLOps platform: custom operators for ML model lifecycle management, CRDs for describing training pipelines. Designs GPU scheduling architecture with device plugins, configures topology-aware scheduling for distributed training, and defines autoscaling policies for inference based on GPU utilization.
Platform Engineer
必要

Shapes architectural strategy for Kubernetes platform: edge computing, serverless on K8s (Knative), WebAssembly workloads. Influences upstream Kubernetes through KEPs and community contributions. Defines 3-5 year roadmap for organizational container platform evolution.
Site Reliability Engineer (SRE)
必要

Designs Kubernetes platform: multi-cluster management (fleet), federation, cluster-as-a-service. Defines K8s evolution strategy: version upgrades, feature adoption, vendor evaluation.

社区

👁 关注 ✏️ 建议修改

正在加载评论...