CONTINUOUS KUBERNETES SECURITY IN 2023
Cloud Security Podcast14 Huhti 2023

CONTINUOUS KUBERNETES SECURITY IN 2023

Cloud Security Podcast - This month we are talking about "Kubernetes Security & KubeCon EU 2023" and for the second episode in this series, we spoke to Andrew Martin (Andrew's Linkedin). Kubernetes Security Best practices built using the OWASP Top 10 for Kubernetes is not enough to deal with new and unknown attack vectors for your Kubernetes deployment. In this episode we have Andrew Martin on how you can deal with Kubernetes attack vectors including supply chain issues.


Episode ShowNotes, Links and Transcript on Cloud Security Podcast: ⁠⁠⁠www.cloudsecuritypodcast.tv⁠⁠⁠


FREE CLOUD BOOTCAMPs on ⁠⁠⁠www.cloudsecuritybootcamp.com⁠⁠⁠


Host Twitter: Ashish Rajan (⁠⁠⁠@hashishrajan⁠⁠⁠)

Guest Socials: Andrew Martin (Andrew's Linkedin)

Podcast Twitter - ⁠⁠⁠@CloudSecPod⁠⁠⁠ ⁠⁠⁠@CloudSecureNews⁠⁠⁠


If you want to watch videos of this LIVE STREAMED episode and past episodes - Check out our other Cloud Security Social Channels:

- ⁠⁠⁠Cloud Security News ⁠⁠⁠

- ⁠⁠⁠Cloud Security BootCamp⁠⁠⁠


Spotify TimeStamp for Interview Questions

(00:00) Introduction

(00:15) A word from our sponsors - head over to snyk.io/csp to find out more

(02:50) A bit about Andrew Martin

(03:33) What is cloud native security?

(06:31) What is Kubernetes Security?

(10:23) Kubernetes Security vs Cloud Native Security

(11:52) Why is Kubernetes so popular?

(16:20) What are the components of Kubernetes security?

(21:43) Container security in Kubernetes landscape

(26:34) Common attack vectors for Kubernetes

(32:16) Impact of cloud in attack vectors

(35:38) Managed Kubernetes

(38:13) Rationale for using multi cluster

(41:11) Should everyone use Kubernetes?

(44:18) Is Serverless still relevant ?

(47:38) Where can people learn about Kubernetes security?

(53:01) The fun questions


See you at the next episode!

Jaksot(345)

Navigating NIST CSF 2.0: Guide to Frameworks and Governance

Navigating NIST CSF 2.0: Guide to Frameworks and Governance

In this episode, we sat down with Lukasz Gogolkiewicz, an Australia-based Cybersecurity Leader and former pentester, to explore his journey from offensive security into cybersecurity leadership. Lukas...

22 Loka 202436min

Building a SOC Team in 2024 - Automation & AI

Building a SOC Team in 2024 - Automation & AI

What is the future of SOC? In this episode Ashish sat down with Allie Mellen, Principal Analyst at Forrester, to explore the current state of security operations and the evolving role of AI in cyberse...

15 Loka 202456min

Cloud Identity Lifecycle Management Explained!

Cloud Identity Lifecycle Management Explained!

In this episode Ashish Rajan sits down with Shashwat Sehgal, co-founder and CEO of P0 Security, to talk about the complexities of cloud identity lifecycle management. Shashwat spoke to us about why tr...

8 Loka 202433min

Traditional PAM vs Cloud CPAM for a cloud first world

Traditional PAM vs Cloud CPAM for a cloud first world

In this episode of the Cloud Security Podcast, Ashish sat down with Art Poghosyan, CEO and co-founder of Britive, to explore the changing world of identity and access management (IAM) in the cloud era...

4 Loka 202434min

The Role of Cloud Security Research in 2024

The Role of Cloud Security Research in 2024

Why does Cloud Security Research matter in 2024? At fwd:cloudsec EU in Brussels, we sat down with Scott Piper, a renowned cloud security researcher at Wiz, to discuss the growing importance of cloud s...

2 Loka 202435min

Edge Security is the Key to Cloud Protection

Edge Security is the Key to Cloud Protection

How does Edge Security fit into the future of Cloud Protection ? In this episode, we sat down with Brian McHenry, Global Head of Cloud Security Engineering at Check Point at BlackHat USA, to chat abou...

20 Syys 202426min

Is your CI/CD Pipeline your Biggest Security Risk?

Is your CI/CD Pipeline your Biggest Security Risk?

How CI/CD Tools can expose your Code to Security Risks? In this episode, we’re joined by Mike Ruth, Senior Staff Security Engineer at Rippling and returning guest, live from BlackHat 2024. Mike dives ...

13 Syys 202429min

State of Cloud Security - Practitioner Edition

State of Cloud Security - Practitioner Edition

In this episode of the Cloud Security Podcast, we bring together an incredible panel of experts to explore the evolving landscape of cloud security in 2024. Hosted by Ashish Rajan, the discussion dive...

4 Syys 202456min