All OpsCast Conversations
Search and filter through the complete archive of DevOps, Cloud Security, and Kubernetes discussions.
Unlocking EKS in Production: Mastering Security, Networking, and Cost Optimization
In this 30-minute episode, senior cloud architects and DevOps engineers will dive into the intricacies of running AWS EKS in production, exploring security, networking, cost optimization, and observability best practices. From EKS managed node groups to GuardDuty for runtime threat detection, our expert hosts will cover the essential considerations for a secure, efficient, and scalable Kubernetes deployment. Tune in for actionable insights and real-world examples to elevate your EKS practice.
Mastering GCP GKE: Autopilot, Security, and Cost Optimization
Join Daniel and Diana as they dive into the latest GKE features, including Autopilot, Workload Identity Federation, and Binary Authorization, to help senior cloud architects and DevOps engineers optimize their Kubernetes deployments on GCP. This episode covers the benefits and trade-offs of GKE Autopilot vs Standard mode, and explores the latest tools for supply chain security and cost control. From GKE Dataplane V2 to Anthos Service Mesh, our hosts will share expert insights and best practices for securing and optimizing hybrid workloads.
Scaling HashiCorp Vault for Enterprise Security: Zero-Trust Architecture and Automation
In this episode, we dive into the advanced deployment and management of HashiCorp Vault at enterprise scale, focusing on dynamic secrets, PKI automation, and zero-trust architecture. Our expert hosts explore the intricacies of Vault's capabilities in securing modern cloud-native applications. Tune in for a deep dive into Vault's integration with Kubernetes, namespace isolation, and Sentinel policies for compliance.
Unlocking Runtime Security with Falco: Threat Detection and Automation
In this episode, we delve into the world of runtime security with Falco, exploring its eBPF probe and kernel module architecture, and discussing how to write custom rules for enhanced threat detection. We'll also cover Falco's integration with popular tools like Slack, PagerDuty, and SIEM platforms. Join us as we navigate the complexities of incident response automation and declarative threat response with Falco Talon.
Securing the Software Supply Chain with Trivy: A Shift-Left Approach
In this episode, we dive into the world of software supply chain security, exploring how Trivy can be used for vulnerability management, and delving into SBOMs, SLSA, and container image signing. Join us as we discuss the integration of these tools in CI pipelines and the importance of shift-left security practices. From Kubernetes to IaC, we'll cover the essential tools and frameworks for securing your enterprise's software supply chain.
Unlocking Policy as Code: Mastering Open Policy Agent and Gatekeeper for Kubernetes
In this episode, we dive into the world of policy as code, exploring Open Policy Agent and Gatekeeper for Kubernetes and enterprise compliance. Tune in for a deep dive on Rego language, testing, and policy distribution. Our hosts discuss real-world applications and best practices for implementing policy as code in your organization.