18 min listen
AppSec Tips & Tricks for Cloud Native and Kubernetes Environments - Kiran Kamity - ASW #209
AppSec Tips & Tricks for Cloud Native and Kubernetes Environments - Kiran Kamity - ASW #209
ratings:
Length:
38 minutes
Released:
Aug 24, 2022
Format:
Podcast episode
Description
The unique nature of cloud native apps, Kubernetes, and microservices based architectures introduces new risks and opportunities that require AppSec practitioners to adapt their approach to security tooling, integration with the CI/CD pipeline, and how they engage developers to fix vulnerabilities. In this episode, we’ll discuss how AppSec teams can effectively manage the transition from securing traditional monolithic applications to modern cloud native applications and the types of security tooling needed to provide coverage across custom application code, dependencies, container images, and web/API interfaces. Finally, we’ll conclude with tips and tricks that will help make your developers more efficient at fixing vulnerabilities earlier in the SDLC and your pen testers more effective. Segment Resources: https://www.deepfactor.io/kubernetes-security-essentials-securing-cloud-native-applications/ https://www.deepfactor.io/resource/observing-application-behavior-via-api-interception/ https://www.deepfactor.io/developer-security-demo-video/ Visit https://www.securityweekly.com/asw for all the latest episodes! Show Notes: https://securityweekly.com/asw209
Released:
Aug 24, 2022
Format:
Podcast episode
Titles in the series (100)
NSA, Google, & Microsoft - Application Security Weekly #05: In the news, NSA Exploits Ported to Work on All Windows Versions Released Since Windows 2000, beware the looming Google Chrome HTTPS certificate apocalypse, Microsoft open sources a new Kubernetes GPU and device scheduling extension, and more on this... by Application Security Weekly (Video)