18:30-19:15 - Things I wish someone had told me about Istio, Omer Levi Hevroni
We at Soluto decided to give Istio a try, and started to gradually roll it out in our production environment. While doing that, we had a lot of *interesting* experiences that we weren't aware off - and we'll be happy to share it with you so you can learn from our experience. In the talk, I'll cover issues like high availability, reliability and monitoring - and also production issues we encounter. We do hope that until the meetup we can say that we have istio deployed in production :)
19:15-20:00 - Detecting Istio configuration drifts using CI/CD, Gadi Naor
Configuration drifts can happen when your environment changes at runtime, and its actual state becomes different from your desired state. In this session we will dive into the challenges of having multiple stake holders driving changes into applications secured with Istio, and see how we can leverage Continuous Deployment (CD) to intercept security drifts across the board, and how security automation can be implemented effectively without slowing down engineering.
Omer Levi Hevroni I’m coding since 4th grade when my dad taught me BASIC, and I got hooked. From that point, I learned to code in many programming languages (today my favorite is C#). Today I’m working at Soluto by Asurion, and coding is a huge part of my day job. My passion for AppSec started by accident when I was offered the role of security champion. The AppSec journey was (and still is) fascinated, and taught me a lot. OWASP helped me a lot during this journey; This is why I decided to become a paying member and also leading OWASP Glue. My current job is DevSecOps – helping the entire team to produce more secure software. Besides my job, I’m also giving a lot of talks all over the world, and heavy OSS contributor – mainly to Kamus, a secret encryption solution for Kubernetes platform. When I’m not working – I’m enjoying the company of my two beloved kids https://omerlh.info
Gadi Naor Gadi Naor has 18 years of engineering experience , from kernel based development through leading development of cybersecurity products starting his professional career at Check Point. Gadi then joined Altor Networks, a pioneer in virtualized data center security, later acquired by Juniper Networks. Prior to Alcide, Gadi co-founded Fitfully, at which he served as CTO. Gadi holds a B.A in Computer Science from the Technion Institute of Technology.