DSC Hungary

Container Constructs, Security Observability and Cloud Security

Date

July 1, 2022

Time

9:30am - 12pm CEST

Location

Virtual

Questions? Join the conversation on Discord channel 🇭🇺-devseccon-hungary

About the event:

In the first part of the workshop you will learn about what are the must know constructs of Container Security (SELinux, Seccomp, Cgroup and Namespace). A container is a runtime process executed within a namespace which is resource managed by cgroups and various other LSMs and security features to ensure complete process isolation during runtime.

In the second part of the workshop you will learn more about eBPF (Extended Berkeley Packet Filter a new kernel technology) and how can Security Observability be achieved with open sourced eBPF-based projects, like Tetragon and it will allows to secure Cloud Native workloads very efficiently.

Join us for an eBPF-based Security Observability and Runtime Enforcement deep dive with a following demo section:

– Inspect system, application, and network behavior via the amazing Tetragon CLI

– Automated detection of I/O & Sensive File Access, Namespace, Capabilities with real-time enforcement

In the last part of the workshop (equally important) you will learn about “Is Cloud (AWS) Secure for mission critical and sensitive data?”

An effective strategy for securing sensitive data in the cloud requires a good understanding of general data security patterns and a clear mapping of these patterns to cloud security controls. As organisations manage growing volumes of data, identifying and protecting their sensitive data at scale can become increasingly complex, expensive, and time-consuming. You will learn how you can leverage AWS Services and avoid these security risks and secure your data.

🗣️ Join the DevSecOps Community on our Discord channel to discuss this talk with other security-focused practitioners!

Shweta Vohra

Senior Architect at IBM

About Shweta Vohra

Senior Architect (IBM) and SME for Cloud, Containers and C(K)ubernetes technologies. With her over two decades of experience in various industries she is pro in designing modern systems and modernizing legacy systems that runs with efficiency and durability. She has led various application transformation projects for large customers in industry domains such as defence, automotive, healthcare and banking. Eminent speaker at various technical conferences and summits such as AWS SheBuild Summit 2021, IBM KubeSummit and CloudNative Summits/ Communities. At core she is Cloud and Kubernetes Expert, Educator, Architect, and a Learner.

Natalia Reka Ivanko

Security Engineer at Isovalent

About Natalia Reka Ivanko

Natalia Reka Ivanko is a security engineer with a strong background in container and cloud native security, and the co-author of “Security Observability with eBPF” published by O’Reilly. She is passionate about building things that matter and working with site reliability and software engineers to develop and apply security best practices. She is inclined towards innovative technologies like eBPF and Kubernetes, loves being hands on, and is always looking for new challenges and growth. She is a big believer in open source and automation. In her free time, she loves flying as a private pilot, experiencing outdoor activities like surfing and running, and getting to know new cultures.

John Mathew George

Senior Cloud Security Architect at T-Systems International

About John Mathew George

John Mathew George is a Security Architect with 16+ years of developing highly secure and compliant computing architectures and implementations. He has led various large scale implementations of the Complex Security Design Architecture for enterprise customers. He is always excited to help organisations understand best practices around advanced cloud-based solutions and how to migrate existing workloads to the cloud in a secure, scalable, and compliant manner. He has a passion for educating, training, designing, and building solutions for a diverse and challenging set of customers. In his free time, he loves to travel and learn about new cultures.

Browse all events