Kuberentes adoption is growing by the day. As the pace and complexity of Kubernetes deployments are increasing, misconfiguration drifts translate into security risks. DevOps, who are now also tasked with security responsibilities, are dealing, on a daily basis, with questions like:
Am I pulling software from an approved list of Image registries?
Can I prevent tainted CI/CD deployments?
Are my all of my clusters conform to X?
In this presentation we will talk about the unique challenges of this use case, such as how to automatically generate ‘good’ profile/baseline for each cluster, and make sure your continuous cluster hygiene level checks are automatically tuned.