Prevent Embarrassing Cluster Takeovers with This One Simple Trick!
38 min

Prevent Embarrassing Cluster Takeovers with This One Simple Trick!

KubeCon + CloudNativeCon - KubeCon + CloudNativeCon Europe 2023
Daniele de Araujo dos Santos Shane Lawrence
kubernetes security cloud-native container-security kubeaudit least-privilege devsecops ci-cd vulnerability-management runtime-security cluster-security
Automating Configuration and Permissions Testing for GitOps with OPA Conftest
30 min

Automating Configuration and Permissions Testing for GitOps with OPA Conftest

KubeCon + CloudNativeCon - KubeCon + CloudNativeCon Europe 2023
Eve Ben Ezra Michael Hume
gitops opa conftest kubernetes policy-as-code ci-cd configuration-management testing automation validation devsecops argo-cd
Fight Back Against Cyber Risk in the Software Supply Chain with a Secure and Compliant DevSecOps Pipeline for Regulated Environments
32 min

Fight Back Against Cyber Risk in the Software Supply Chain with a Secure and Compliant DevSecOps Pipeline for Regulated Environments

KubeCon + CloudNativeCon - KubeCon + CloudNativeCon Europe 2023
Krishna Rajeesh Nallur Valiyaveettil Brendan Kelly
devsecops supply-chain-security cyber-risk regulated-environments ci-cd continuous-compliance tekton terraform sonarqube oasis-zap cyclonedx gitops
Let’s Go Backstage: IDP Security for Platform Engineers
24 min

Let’s Go Backstage: IDP Security for Platform Engineers

KubeCon + CloudNativeCon - KubeCon + CloudNativeCon Europe 2023
Rotem Refael Suzanne Daniels
backstage idp platform-engineering kubernetes security cncf open-source developer-portal plugin-development devsecops kubescape
Policy Matters! A Policy Working Group Introduction and Deep Dive
34 min

Policy Matters! A Policy Working Group Introduction and Deep Dive

KubeCon + CloudNativeCon - KubeCon + CloudNativeCon Europe 2023
Jim Bugwadia Frank Jogeleit
kubernetes policy-working-group policy-api policy-reporter admission-control security governance compliance devsecops cncf observability
MLOps on Highly Sensitive Data - Strict Confinement, Confidential Computing, and Tokenization Protecting Privacy
14 min

MLOps on Highly Sensitive Data - Strict Confinement, Confidential Computing, and Tokenization Protecting Privacy

KubeCon + CloudNativeCon - KubeCon + CloudNativeCon Europe 2023
Maciej Mazur Andreea Munteanu
mlops kubernetes kubeflow confidential-computing tokenization data-privacy strict-confinement apparmor intel-sgx amd-trusted-zones devsecops ai-ml
Total Clarity on Your Application Security
7 min

Total Clarity on Your Application Security

KubeCon + CloudNativeCon - KubeCon + CloudNativeCon Europe 2023
Guillaume Sauvage de Saint Marc
application-security cloud-security open-source devsecops vulnerability-management kubernetes container-security vm-scanning api-security supply-chain-security security-posture