Doron Caspin
Doron Caspin is the Senior Manager of Product Management for Red Hat Advanced Cluster Security, based in Chapel Hill, NC.
Chapel Hill, North Carolina, United States
Actions
Doron Caspin is the Senior Manager of Product Management for Red Hat Advanced Cluster Security, where he leads the product management and security initiatives for Kubernetes and OpenShift. With over 20 years of experience spanning Red Hat, IBM, Dell-EMC, and IBI, Doron brings deep expertise in cloud-native security, compliance, and enterprise software. He holds an MBA from NC State and a CSSLP certification. Based in Chapel Hill, NC, Doron enjoys the outdoors, building things, and life with his four daughters.
Area of Expertise
Topics
Securing Enterprise AI: A Panel on Open Source Alignment with MITRE ATLAS
AI security is crucial for mission-critical applications. The MITRE ATLAS framework helps identify and defend against AI attacks; however, practical tools are also essential in cloud-native environments. This panel brings together open source and enterprise security leaders to explore the operationalization of AI security using open source technologies aligned with the MITRE ATLAS. Key topics include an MITRE ATLAS overview, how tools such as Kubescape, Kubeflow, RHACS, Clair, and Kyverno support threat detection and prevention throughout the AI lifecycle, utilizing Kyverno for policy-as-code, Kubescape for ATLAS-aligned security, the alignment of MITRE ATLAS with other frameworks, and valuable lessons learned. This session fosters open dialogue and the sharing of insights among AI, security, and platform engineering communities to explore open-source solutions for ensuring trustworthy AI.
Open, Secure, and Ready: Red Hat’s Approach to AI Security, Zero Trust, and Post-Quantum Defense
As threat actors evolve and AI reshapes how we build and defend systems, the security community needs open, transparent, and future-proof solutions. At Red Hat, we’re embedding security into every layer of the stack—from containers to cryptography—so developers, platform teams, and security pros can move fast without breaking trust.
In this session, we’ll walk through how Red Hat is advancing security across:
AI Workloads: How we secure the AI lifecycle—from training to inference—with Red Hat OpenShift AI
Confidential Computing: Using hardware-backed isolation (AMD SEV, Intel TDX, IBM Secure Execution) to protect sensitive data and models in use
Zero Trust: SPIFFE/SPIRE-based workload identity, least privilege, microsegmentation, and continuous policy enforcement
Post-Quantum Cryptography (PQC): How Red Hat is preparing for crypto-agility and quantum-resilient architectures
Software Supply Chain Security: Image signing, SBOMs, provenance tracking, and open-source integrity using Sigstore
Red Hat Advanced Cluster Security (RHACS): Real-world detection, response, and prevention in Kubernetes environments
DevSecOps + GitOps: Automating guardrails across build, deploy, and runtime
You’ll leave with practical ideas, demos, and architecture examples—plus a clear picture of how open source can lead the way in building secure, scalable systems.
Aligning Enterprise AI Security with MITRE ATLAS Using Open Source Technologies
As AI becomes integral to enterprise applications, securing AI/ML systems is paramount. While MITRE ATLAS provides a robust framework for understanding adversarial threats to AI, enterprises often struggle to adopt it in cloud-native
environments. This session demonstrates practical strategies for using open-source tools to operationalize AI security and align with the MITRE ATLAS framework.
We'll explore real-world use cases illustrating how tools like Kubeflow, Clair, Falco, StackRox, and Kubescape can be combined to detect and mitigate threats such as data poisoning, model extraction, and evasion attacks throughout the AI
lifecycle—from training to inference.
Attendees will gain insights into:
Understanding the MITRE ATLAS framework and its significance for AI/ML security, Mapping open-source tools to the ATLAS matrix for actionable, layered defenses, Integrating security controls into MLOps pipelines using Kubernetes-native tooling.
Please note that Sessionize is not responsible for the accuracy or validity of the data provided by speakers. If you suspect this profile to be fake or spam, please let us know.
Jump to top