CI/CD/CS: implementing continuous security across your delivery pipeline and at run-time

Continuous Delivery helps to keep your software and Docker images updated and deploy new versions in production easily. Microservices are great reducing the attack vector and limiting the privileges or credentials access of each piece of your application. Containers provide an opportunity to implement better security, small, immutable, single process and purpose. In this session, we will discover real use case examples on how to make your CI/CD pipeline interact with Docker security tools. But security doesn’t stop where your deployment pipeline ends. How we can prepare for 0-days and policy violations that happen at run-time? Can we make it part of the CI/CD process?



Jorge Salamero Sanz

Jorge enjoys monitoring all the things, from his Kubernetes clusters to DIY projects with Raspberry PI and ESP8266. Currently he is part of the Sysdig team. When away from computers, you will find him ...