Engineering the Future of Software
29–31 Oct 2018: Tutorials & Conference
31 Oct–1 Nov 2018: Training
London, UK

Leveraging containers for improved security

Ashley Ward (Twistlock)
14:1515:05 Tuesday, 30 October 2018
Security
 Location: King's Suite - Sandringham
Secondary topics:  Best Practice, Overview
Average rating: ***..
(3.00, 3 ratings)

Who is this presentation for?

  • Those working in security, architecture, and DevOps

Prerequisite knowledge

  • Familiarity with container and security concepts

What you'll learn

  • Understand the technical differences between containers and traditional architectures around vulnerability management, compliance, and runtime security
  • Learn how containerization helps move security upstream in the development life cycle and why that’s such an important benefit, why containers make compliance instantly easier, by enabling organizations to find and correct problems early on, enforce settings, and automatically block noncompliant configurations, and how the predictable nature of containers enables a new approach to runtime defense that improved efficiency and scale by reducing human security management effort
  • Explore lessons learned from a real-world organization’s experience migrating a mission-critical app to containers and how it impacted the company's security approach

Description

Migrating to containers brings with it a whole new set of best practices around security and compliance. Trying to bend traditional security approaches to this cloud-native world leaves you exposed and negates many of the core benefits of containers. But containers are actually fundamentally more secure than traditional virtual machines, and organizations that successfully modernize their security approach enjoy better protection than ever before possible, at a fraction of the overhead.

Ashley Ward details the security advantages of containers relative to traditional architectures using a real-life app as an example. You’ll examine the fundamental characteristics of containers that make them more secure, the changing nature of the threat landscape for cloud-native technology, and how the combination of container platforms like OpenShift with purpose-built security solutions lets organizations deliver more secure software faster than ever before.

Photo of Ashley Ward

Ashley Ward

Twistlock

Ashley Ward is a solution architect at Twistlock, where he aids customers in the secure deployment and scaling of container environments. Ashley has over 15 years’ experience in the operations and infrastructure architect space, from providing Unix administration and scoping private cloud deployments to bringing financial services organizations into public cloud and microservices. Ashley has a boat which he never seems to sail, beer-brewing equipment that he never seems to use, and a family that he loves spending time with. His spare time is spent volunteering as a justice of the peace.