How to Secure DevOps

All Episodes

July 29, 2020 • 34 mins

Dan “Pop” Papandrea (@danpopnyc, Field CTO @Sysdig Host @PopcastPop) talks about securing DevOps, how to secure containers and runtimes, and the cultural challenges of security in an agile world.

SHOW: 460

SHOW SPONSOR LINKS:

Datadog Security Monitoring Homepage - Modern Monitoring and Analytics
Try Datadog yourself by starting a free, 14-day trial today. Listeners of this podcast will also receive a free Datadog T-shirt
strongDM Homepage
Start your free 14 day trial today at: strongdm.com/cloudcast

CLOUD NEWS OF THE WEEK - http://bit.ly/cloudcast-cnotw

PodCTL Podcast is Back (Enterprise Kubernetes) - http://podctl.com

SHOW NOTES:

Topic 1 - Welcome to the show. I first got to know you through your podcast The POPcast, but you’re been around this evolution of the cloud for quite a while. Tell us a bit about your background.

Topic 2 - There’s a concept that’s now been around a couple years called “DevSecOps”. Originally it was “Sec” being jammed in there because it had been excluded from the early days of DevOps (at least in practice). Where are we with DevSecOps today?

Topic 3 - Let’s talk about DevSecOps in the context of containers. We now have things like Container Scanning, Container Signing, and Immutable Infrastructure and yet security still concerns people. Isn’t the “software supply chain” supposed to weed out the vulnerabilities before they get into the production systems?

Topic 4 - One of the challenges that companies have in adopting containers is that they were used to having root access to hosts, and containers live in the user space. How can security tools fit into a container world?

Topic 5 - As you talk to lots of companies, how are they dealing with the cultural challenges that go along with implementing DevSecOps?

Topic 6 - Any tips or suggestions you can share to help people avoid common DevSecOps mistakes, or accelerate best practices and wider adoption?

FEEDBACK?

Email: show at thecloudcast dot net
Twitter: @thecloudcastnet

Mark as Played

Advertise With Us

Popular Podcasts

Crime Junkie

Does hearing about a true crime case always leave you scouring the internet for the truth behind the story? Dive into your next mystery with Crime Junkie. Every Monday, join your host Ashley Flowers as she unravels all the details of infamous and underreported true crime cases with her best friend Brit Prawat. From cold cases to missing persons and heroes in our community who seek justice, Crime Junkie is your destination for theories and stories you won’t hear anywhere else. Whether you're a seasoned true crime enthusiast or new to the genre, you'll find yourself on the edge of your seat awaiting a new episode every Monday. If you can never get enough true crime... Congratulations, you’ve found your people. Follow to join a community of Crime Junkies! Crime Junkie is presented by audiochuck Media Company.

24/7 News: The Latest

The latest news in 4 minutes updated every hour, every day.

Stuff You Should Know

If you've ever wanted to know about champagne, satanism, the Stonewall Uprising, chaos theory, LSD, El Nino, true crime and Rosa Parks, then look no further. Josh and Chuck have you covered.

.css-15opob5{left:0;position:absolute;top:0.8rem;} All Episodes

.css-14f5ked{margin:0;word-break:break-word;display:-webkit-box;-webkit-box-orient:vertical;box-orient:vertical;-webkit-line-clamp:2;overflow:hidden;}How to Secure DevOps