February 11, 2020

194 words 1 min read

A DevOps State of Mind: Continuous Security with DevSecOps + Containers

A DevOps State of Mind: Continuous Security with DevSecOps + Containers

With the rise of DevOps, containers are at the brink of becoming a pervasive technology in Enterprise IT to accelerate application delivery for the business. When it comes to adopting containers in th …
Talk Title A DevOps State of Mind: Continuous Security with DevSecOps + Containers
Speakers Chris Van Tuin (Chief Technologist, NA West, Red Hat)
Conference Automotive Linux Summit & Open Source Summit Japan
Conf Tag
Location Tokyo, Japan
Date Jun 19-22, 2018
URL Talk Page
Slides Talk Slides
Video

With the rise of DevOps, containers are at the brink of becoming a pervasive technology in Enterprise IT to accelerate application delivery for the business. When it comes to adopting containers in the enterprise, Security is the highest adoption barrier. In this presentation, you’ll learn about DevSecOps + Containers, including: - Best practices for addressing the top container security risks in a container environment including images, builds, registry, deployment, hosts, network, storage, APIs, monitoring & logging, and federation. - Automating and integrating security vulnerability management & compliance checking for container images in a DevOps CI/CD pipeline - Deployment strategies for deploying container security updates including recreate, rolling, blue/green, canary and a/b testing.

container api automating devsecops secops management vulnerability security network monitoring pipeline devops ci/cd
comments powered by Disqus
Jumpstarting your DevSecOps pipeline with IAST and RASP (sponsored by Contrast Security)

Jumpstarting your DevSecOps pipeline with IAST and RASP (sponsored by Contrast Security)

December 21, 2019

Jeff Williams explains how to layer security tools on a CI/CD pipeline without disrupting it and demonstrates a fast, effective, scalable DevSecOps pipeline using free tools.
Kernel advantages for Istio realized with Cilium

Kernel advantages for Istio realized with Cilium

December 29, 2019

BPF technology is bringing Linux kernel capabilities up to speed with modern workload requirements. Cilium helps make BPF consumable for microservices architectures and enables Istio with the most powerful security solution by way of the kernel. Cynthia Thomas and Romain Lenglet explain why you should use Cilium to enforce API-aware policy while coordinating with Istio.
Automating Enterprise Governance Using the CI/CD Pipeline

Automating Enterprise Governance Using the CI/CD Pipeline

December 27, 2019

ANZ bank has been on a transformation journey to achieve greater business agility. A key initiative in that journey has been the creation of ANZ flavoured "paved roads" (inspired by Netflix), realis …
Continuous Delivery Meets Custom Kubernetes Controller: A Declarative Configuration Approach to CI/CD

Continuous Delivery Meets Custom Kubernetes Controller: A Declarative Configuration Approach to CI/CD

December 5, 2019

Building and maintaining streamlined continuous integration and delivery (CI/CD) pipelines is often challenging. It is even harder on Kubernetes since the deployments are, rightfully so, safely guarde …
Are microservices a security threat?

Are microservices a security threat?

February 9, 2020

Liz Rice explores the security implications of microservices, containers, and serverless and addresses the questions you need answers to: Will your deployments be less secure or more? How do DevOps processes like CI/CD and cluster orchestration affect your security profile? And what can we all do to minimize the risk of exploits?
Writing a Kubernetes operator to deploy a complex system

Writing a Kubernetes operator to deploy a complex system

February 9, 2020

The Kubernetes API is extensible, allowing you to create your own resources that behave like native ones. Philippe Martin explores the tools, concepts, and a real example of a custom resource that simplifies the deployment of a complete content delivery network (CDN).