XTO-3874 Kubernetes security 101 | Voxxed Days

Voxxed Days Melbourne 2019
from Monday 13 May to Tuesday 14 May 2019.

   Kubernetes security 101


Automate all the things
Automate all the things
Beginner & novice level
MAIA Tuesday from 10:15 til 11:05

In this talk, we will look at the different layers of security that can be applied to a Kubernetres orchestrated container environment and the different team's responsibility in the platform to deliver security. From the sysadmin's point of view, how do I make sure Kubernetes is secured, what official hardening guides are out there to follow. From an application developers point of view, how does secomp/appapparmor work ? To make sure that only the right processes from the application have access to the host machine. Now that we have the local container secured, how do we make sure our deployments follow the same structure and security profiles. Can we add security checks to our container CD pipeline like we would quality gates? Lastly, we will look at it from the point of the security team. How can they have input to all the steps we have taken from the beginning of the process and not the end? Allowing all the teams to work together breaking down silo to deliver a solution.

Kubernetes   AppSec   Container deployment  
Scott Coulton
Scott Coulton
From Microsoft

Scott Coulton is a Developer Advocate and Docker captain with 10 years of experience as a software engineer in the managed services and hosting space. He has extensive experience in architecture and rolling out distributed compute systems and network solutions for national and multinational companies with a wide variety of technologies, including Azure, Kubernetes, Puppet, Docker, Cisco, VMware, Microsoft, and Linux. His design strengths are in cloud computing, automation, and security space.

Make sure to download the Android or iOS mobile schedule.