This meetup is brought to you in partnership with the Silicon Valley Cloud Native and Kubernetes Meetup Group.
(This venue requires first and last name for building entry, so please register here so we can put your name on the list.)
6:00 - Doors open. Networking. Food and drinks.
6:30 - Welcome
6:40 - Talk 1: Shift Left ⬅️ Security In a Containerized World 🌎 by Gunjan Patel, Cloud Architect at Palo Alto Networks
7:10 - Q&A
7:20 - Talk 2: Securing data when running applications in containers, by Gou Rao, CTO & Founder, and Aditya Dani, Technical Staff, Portworx
7:50 - Q&A
8:00 - Wrap up!
There has been a movement recently about finding security-related issues earlier in the development and deployment pipeline. It's about catching security issues before things the fan. :)
In this talk, we will talk about what it means to shift left from the container security point of view. Financial benefits and ROI of the shift left security model. We will also discuss some practical examples and best practices to shift security further left for Kubernetes/containerized environment.
As enterprises adopt cloud native infrastructure to run their applications, data security and compliance is becoming a crucial area of interest. When you run your containers in a public cloud, you want to make sure that the data being accessed is secure and that there are no bread crumbs left behind once the container exits. A common mistake many people make is to host-mount a volume directly inside a container, which leaves the container's data behind (directly on the host.)
In this session, we focus on the best practices for ensuring the security and compliance of your applications’ persistent volumes. But ensuring security is an on-going exercise. Ideally you would deploy intelligent software that can constantly monitor and audit the application environment for security holes and breaches.
Autopilot is an automated application runtime management engine built for Kubernetes, and is an open source project sponsored by Portworx: https://github.com/libopenstorage/autopilot
Gunjan Patel is a Cloud ☁️ Architect in the Developer Relations team at Palo Alto Networks. Prior to that Gunjan has worked as a developer at Tigera, working on container networking and security projects such as Project Calico 🐱, flannel, CNI. Prior to Tigera, he has worked at Ciena, and Cisco on container orchestration, SDN, and virtualization technologies.
Gunjan is part of the core team at GoBridge - an organization that helps underrepresented groups in the Go community. He is also the organizer of the Go Remote Meetup group.
Gunjan also loves carrots and explaining technical concepts using emojis. 😀
Gou Rao is the CTO and Co-Founder of Portworx, leading the company’s technology and solution execution strategy. Previously Gou was the CTO of Data Protection at Dell, in charge of the technical direction, strategy and architecture. Gou joined Dell through the acquisition of Ocarina Networks, where Rao was the Co-Founder, CTO and Chief Architect. Gou was also the CTO of the Advanced Solutions Group for Citrix. Gou was the CTO and Co-Founder of Net 6 (acquired by Citrix) where he invented Hybrid VPN. LinkedIn: https://www.linkedin.com/in/gouthamrao/
Aditya Dani is a Member of Technical Staff at Portworx with over 5 years experience building distributed control plane solutions. He has written the Kubernetes in-tree storage plugin for Portworx. He now works on Portworx's distributed control plane, including the integration efforts with Kubernetes and other schedulers. Prior to that Aditya was a Software Development Engineer at Amazon Music. Aditya has a master’s degree in Computer Science from USC. LinkedIn: https://www.linkedin.com/in/aditya-dani-91014b30/