The self-service and dynamic nature of the Kubernetes creates challenges for risk and compliance professionals tasked with measuring and demonstrating adherence to security and privacy controls. Traditional tools and controls that worked well for security and compliance in the datacenter, fail for Kubernetes.
In this session, we will show the steps to achieving continuous security governance for your Kubernetes clusters and their hosted applications.
- First, we will examine how to discover, visualize, and intuitively audit to uncover existing risks and threats.
- Second, we will implement cloud-native policy guardrails that identify, alert on and remediate risk.
- Third, we will move to automated orchestration and enforcement of these policies within your Kubernetes cluster, as well as with resources outside your cluster in the Cloud (AWS, Azure, GCP, or OpenStack) or datacenter. This session will conclude with a demonstration of these techniques using the Cloudvisory security platform.