In-person + Virtual
October 24-28
Learn More and Register to Attend

The Sched app allows you to build your schedule but is not a substitute for your event registration. You must be registered for KubeCon + CloudNativeCon North America 2022 to participate in the sessions. If you have not registered but would like to join us, please go to the event registration page to purchase a registration.

Please note: This schedule is automatically displayed in Eastern Daylight Time (UTC -4). To see the schedule in your preferred timezone, please select from the drop-down menu to the right, above "Filter by Date." The schedule is subject to change.
Back To Schedule
Thursday, October 27 • 11:55am - 12:30pm
Path To Production: Sustainable Compliance In Strict Environments - Chip Zoller, Nirmata & Brandt Keller, Defense Unicorns

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Feedback form is now closed.

Getting an environment approved for production can be a painful process, case in point government and Department of Defense (DoD) which require the strictest of controls be met, however this is true for other highly-regulated industries. Engineering and security teams must validate that the security controls are satisfied while continuing to audit, except these are often siloed teams. Reviewing these standards is still an archaic and painful process of managing a spreadsheet or checking text boxes. In this talk, we will share how the Department of Defense is solving this by ensuring compliance through policy in order to capitalize on the promise of DevSecOps. Using Big Bang, a tool for providing secure-by-default environments with pre-integrated tools, and Iron Bank, a DoD repository of signed and hardened application images, along with Kyverno, a Kubernetes-native policy engine, teams are able to get compliant faster and reach mission-ready status sooner.

avatar for Chip Zoller

Chip Zoller

Principal Solutions Architect, Stackwatch
Chip Zoller is a technologist, maintainer, and contributor to the Kyverno project where his primary focus is on process, enablement, documentation, automation, policy design and authoring, and community. He is a maintainer and contributor to several other open source projects in the... Read More →
avatar for Brandt Keller

Brandt Keller

Software Engineer, Defense Unicorns
Brandt is a Software Engineer with a passion for Kubernetes/Open Source. His work has ranged from full-stack web development of micro-services at scale, to building and architecting Enterprise DevSecOps platforms for Fortune 100 companies. He considers himself a lifetime learner... Read More →

Thursday October 27, 2022 11:55am - 12:30pm EDT
420 AB
  Security + Identity + Policy