In this virtual event, we will focus on security, and we are thrilled to have two awesome speakers join us. Matt will kick off the show by focusing on how we can integrate security at all stages of our pipelines. Dan "POP" will continue with the natural next step, runtime security. Dan will show runtime security capabilities with Falco. And also, there will be cookies (at least virtually)
About this event
In this virtual event, we will focus on security, and we are thrilled to have two awesome speakers join us. Matt Jarvis will kick off the show by focusing on how we can integrate security at all stages of our pipelines and how we can ensure that our developers and engineering teams have the tools and data that enable them to make correct decisions on security. Dan "POP" Papandrea will continue with the natural next step, runtime security. Dan will show runtime security capabilities with Falco and its uses. And also, there will be cookies (at least virtually)
Time in CET
20:00: Welcome to Cloud Native Nordics by Kasper Nissen
20:05: "Continuous Security - Building Security into your Pipelines" by Matt Jarvis, Senior Developer Advocate at Snyk
20:30: "Runtime Security is like making småkakor (cookies)... you need the right ingredients" by Dan "POP" Papandrea, Lead-Open Source Community and Ecosystem @Sysdig
21:00: Thank you and good night!
Continuous Security - Building Security into your Pipelines
Matt Jarvis, Senior Developer Advocate at Snyk
In the world of continuous delivery and cloud native, the boundaries between what is our application and what constitutes infrastructure is becoming increasingly blurred. Our workloads, the containers they ship in, and our platform configuration is now often developed and deployed by the same teams, and development velocity is the key metric to success. This presents us with a challenge which the previous models of security as a final external gatekeeper step cannot keep up with. To ensure our apps and platforms are secure, we need to integrate security at all stages of our pipelines and ensure that our developers and engineering teams have tools and data with enable them to make decisions about security on an ongoing basis. In this session I will talk through the problem space, look at the kinds of security issues we need to consider, and look at where the integration points are to build in security as part of our CI/CD process.
Bio Matt Jarvis is a Senior Developer Advocate at Snyk. Matt has spent more than 15 years building products and services around open source software, on everything from embedded devices to large scale distributed systems. Most recently he has been focused on the open cloud infrastructure space, and in emerging patterns for cloud native applications. Matt is a regular speaker at conferences across the world, including Open Infrastructure Summit, FOSDEM and All Things Open, a past winner of the OpenStack Outstanding Community Contributor award, and in 2021 was named one of the Top 100 influencers in Open Technologies in the UK. Matt has also served on program committees for several international conferences, including OpenStack Summits and MesosCon, and is a board director of OpenUK.
Runtime Security is like making småkakor (cookies)... you need the right ingredients
Dan "POP" Papandrea, Lead-Open Source Community and Ecosystem @Sysdig
Description in this talk we will show runtime security capabilities with Falco and its uses by:
an attack to a pod and or kubernetes service
rule violation and how to create rules
remediation (using Falcosidekick/Functions) to various outputs and actions
You will come out of this with an appreciation of Falco... and perhaps more importantly COOKIES!
Dan "POP" Papandrea is the Lead-Open Source Community and Ecosystem @ Sysdig and is a CKA (Certified Kubernetes Administrator) and CNCF Ambassador and CDF Ambassador POP spends his days learning and contributing to the orchestration and container ecosystem as well as working with customers on understanding their unique environments and how Sysdig can help them with their end project goals. Prior to Sysdig, POP was a lead solution architect for Hewlett Packard Enterprise's Helion business unit as well as the Director of IT, Principal Solutions Architect, Product Manager at SS&C Technologies a multinational financial services solution company. POP is the host of the hit podcast The POPCAST by Dan POP which explores the leaders and creators and stories behind the code.