Jim Bugwadia
Founder and CEO at Nirmata
San Jose, California, United States
Actions
Jim Bugwadia is a co-founder and the CEO of Nirmata, the Kubernetes policy and governance company. Jim is an active contributor in the cloud native community and currently serves as co-chair of the Kubernetes Policy and Multi-Tenancy Working Groups. Jim is also a co-creator and maintainer of Kyverno, the policy engine built for Kubernetes.
Links
Badges
Area of Expertise
Topics
Shift Down Security! How Platform Teams Can Help Break the Logjam
Lets face it, the current approaches to security are not working. Centralized security teams are not the domain experts, and yet are tasked with securing highly dynamic cloud native environments. And, “Shift Left” just adds more burden to already busy developers, who may not have context or proper training in security best practices.
The emergence of platform engineering, along with cloud native best practices of codification and automation, offers a new way: automating security and compliance using cloud native policy as code!
In this session, Poonam and Jim will present both the security and operations teams perspective on adopting policy as code combined with cloud native best practices, to implement guardrails in the platform layer, so both developers and security teams can focus on what they do best.
Policy-Based Kubernetes Governance, Risk, and Compliance
Kubernetes policies are a form of configuration management used to manage other configurations and runtime behaviors. Policies can help simplify security, and also serve as the building blocks for higher level business functions such as Governance, Risk, and Compliance (GRC).
In this panel session, members of the CNCF Policy Working Group will first discuss why Kubernetes requires policy management. Then they will present how policy management works at each phase of the cloud native lifecycle. Finally, they will discuss a policy-as-code based approach for addressing critical business functions of Governance, Risk, and Compliance. Such an approach can transform costly and tedious manual processes into automated and continuous processes with collaboration among various personas. This results in organizational efficiencies and cost-savings.
You will also learn about the Policy WG charter, activities, and how you can contribute to making Kubernetes secure and compliant.
Network Policy Nirvana: Automating Security & Self-Service with Kyverno
Platform engineers face the daunting challenge of building and securing shared Kubernetes clusters. Network policies are the cornerstone of robust security, enabling micro-segmentation and multi-tenancy. However, manually managing these policies at scale is a recipe for complexity and potential security gaps.
This session demonstrates how Kyverno, a Kubernetes-native policy engine, empowers platform engineers to achieve "Network Policy Nirvana." We'll explore practical, real-world scenarios showcasing how Kyverno automates the entire network policy lifecycle, from generation and validation to enforcement and lifecycle management.
Micro-Segmentation and Multi-Tenancy: The Brown M&Ms of Platform Engineering
A key requirement for internal developer platforms is that they serve multiple workloads. The reality of platform engineering is that while it seeks to lower the barrier to entry for teams to deliver applications, it must also balance cost and ensure appropriate levels of security.
It’s therefore essential to consider how application components running on shared infrastructure are allowed to communicate with each other and weigh up the cost of each architecture. In industry, we have seen differing approaches to deploying Kubernetes to achieve these goals, from multiple single-tenant clusters through to shared clusters that deliver namespaces-as-a-service.
Rachael and Jim will define the concepts of multi-tenancy and micro-segmentation for cloud native systems, explain why they are critical to success with platform engineering. They will also show real-world examples of how they can be implemented, and demonstrate full automation using best practices like GitOps and Policy as Code.
Level Up Your Cluster: 5 Kyverno Policies You Need Now!
Struggling to secure your Kubernetes clusters and automate workloads? Kyverno offers a unique solution to combat configuration complexity! This fast-paced talk presents five real-world examples to show you how Kyverno can automate security and simplify workload management.
Kyverno: Lets Build Together!
Come meet the Kyverno maintainers and community for an hands-on, interactive, workshop and session where we deep dive into the Kyverno project.
Kyverno is a cloud native policy as code solution that elegantly solves critical challenges across security, automation, and compliance.
You will learn about Kyverno’s architecture, the role of each component, how to try Kyverno, and set up your environment to contribute to the project.
This hands-on session will be led by Kyverno maintainers and organized so that both developers as well as non-developers can learn, explore, and contribute!
Kubernetes Policy Time Machine: Where To Next?
Struggling to navigate the fast paced world of Kubernetes policies? Join members of the Kubernetes Policy Working Group (WG) for a deep dive into each available flavor of policy, from built-in API resources and admission controls, to the new ValidatingAdmissionPolicies which are customizable using the Common Expressions Language (CEL), and powerful policy as code OSS projects that leverage dynamic admission controls. They will dissect the pros and cons of each approach helping you choose the right tools for securing your clusters, optimizing resource usage, and simplifying day-to-day management. They will also discuss current and upcoming activities in the Policy WG, like the Policy Reports API, and how you can get involved.
From Chaos to Control: Cloud Native Governance with Kyverno!
Kyverno started life as a Kubernetes policy engine and has quickly evolved into a set of widely adopted tools for cloud native policy and governance.
In the session, Raul, a Kyverno end user and platform lead at DE-CIX, will introduce the project for new users and discuss his organization's journey with policy as code. Next, Kyverno maintainers Mariam and Charles-Edouard will provide key updates and discuss advanced features including new sub-projects like Kyverno JSON and Kyverno Chainsaw, and share the project roadmap.
If you want to learn how to automate security concerns, or offer guardrails as part of your Kubernetes platform, then this session is for you!
Elevate Your Kubernetes Policy Game with Kyverno!
Struggling to find the balance between robust security and empowering developers? Join Robinhood's platform engineers Karen and Lanting as they share their migration journey from custom solutions and PSPs, to policy as code with Kyverno. Go beyond the basics of resource validation and enforcement, and learn the power of Kyverno for policy as code lifecycle management, including testing, deployment, performance optimizations, exception management, and reporting. Plus, Vishal, a Kyverno maintainer, will present a game-changing new feature in Kyverno 1.12: etcd offloading for policy reports, which is critical for large production workloads. This session is a must-attend for platform engineers and Kubernetes administrators looking to leverage policy as code for self-service automation, security, and compliance.
Contribfest: Kyverno - Let's build together!
This hands-on session is designed to enable end-users and ecosystem partners to contribute to Kyverno, a CNCF policy as code engine that elegantly solves critical challenges across security, automation, and compliance, by understanding the internals of the project and its governance.
You will learn about Kyverno’s architecture, the role of each policy type, the components, how to set up your development environment, and how to contribute to the project.
This session will be led by Kyverno maintainers and contributors and is organized so that both developers as well as non-developers can contribute across the software base, sample policies, and documentation.
Join us to shape the future of cloud native governance together!
Cloud Native Policy as Code: Principles and Best Practices
Cloud Native promises agility, speed, and self-service. But those very strengths often collide with robust security. Traditional security approaches struggle to keep pace with dynamic cloud-native environments, leaving you facing a dilemma: slow down for security or risk attacks.
This session is for platform engineers, looking to deliver self-service without compromising security. It introduces key Policy as Code concepts and demonstrates them using Kyverno, a CNCF policy management tool.
A Practical Guide to Kubernetes Policy as Code
Policies play a critical role in ensuring Kubernetes security, compliance, and governance in your clusters. However, navigating the evolving array of options and implementation strategies can be overwhelming.
Join Rita (Gatekeeper, SIG-Auth), Joe (ValidatingAdmissionPolicy, SIG-API-Machinery), Jim (Kyverno, Policy WG), and Andy (Goldilocks, Policy WG) as they share their collective expertise to help you build a robust Policy as Code (PaC) solution for your organization.
In this session, they’ll explain what PaC is, why it’s essential, and demonstrate how to effectively use built-in Kubernetes features like ValidatingAdmissionPolicy and MutatingAdmissionPolicy alongside CNCF policy engines such as OPA/Gatekeeper and Kyverno to manage your PaC lifecycle.
KubeCon + CloudNativeCon North America 2024 Sessionize Event
Project Lightning Talk + ContribFest + Maintainer Track: KubeCon + CloudNativeCon North America 2024 Sessionize Event
KubeCon + CloudNativeCon North America 2023 Sessionize Event
Jim Bugwadia
Founder and CEO at Nirmata
San Jose, California, United States
Links
Actions
Please note that Sessionize is not responsible for the accuracy or validity of the data provided by speakers. If you suspect this profile to be fake or spam, please let us know.
Jump to top