Raúl Garcia Sanchez
Lead Application Platform at DE-CIX
Frankfurt am Main, Germany
Actions
Hi, I'm Raúl! I've been exploring the world of cloud-native tech for over 6 years since my first dive into KubeCon Copenhagen back in 2018. I love tackling new challenges and finding creative solutions in the world of cloud native technologies. Right now, I'm leading a team at DE-CIX, working on a platform to make the transition to cloud-native smoother for other teams.
Area of Expertise
Topics
From Open to Secure: Implementing Default Deny Network Policies with Calico
While many teams understand the importance of transitioning to a default-deny network posture in Kubernetes, only a few manage to fully realize this vision. Using Calico, an open-source networking and security solution, this session details our journey from an open network setup to a fully secured, default-deny environment. We’ll walk through each step of the migration, from planning and implementation to user support and policy fine-tuning. This session offers practical, real-world insights on turning the concept into reality, highlighting the challenges faced and the solutions implemented.
From Chaos to Control: Cloud Native Governance with Kyverno!
With the cloud-native paradigm shift towards everything-as-code, Kubernetes policies are no exception. Kyverno, a policy engine for Kubernetes, offers low-code declarative policies. In its CNCF incubation status, Kyverno is actively deployed in production environments across various organizations. The tutorial extends beyond fundamentals, exploring real-world applications and offering hands-on exercises mimicking production workflows.
In this session I will provide end-user perspectives on Kyverno for policy-as-code workflows and guide the audience through examples which are used at DE-CIX for RBAC, resource protection and Day 1 operations.
From Chaos to Control: Cloud Native Governance with Kyverno!
Kyverno started life as a Kubernetes policy engine and has quickly evolved into a set of widely adopted tools for cloud native policy and governance.
In the session, Raul, a Kyverno end user and platform lead at DE-CIX, will introduce the project for new users and discuss his organization's journey with policy as code. Next, Kyverno maintainers Mariam and Charles-Edouard will provide key updates and discuss advanced features including new sub-projects like Kyverno JSON and Kyverno Chainsaw, and share the project roadmap.
If you want to learn how to automate security concerns, or offer guardrails as part of your Kubernetes platform, then this session is for you!
Mastering Kyverno: From Fundamentals to Production-Ready Workflows
With the cloud-native paradigm shift towards everything-as-code, Kubernetes policies are no exception. Kyverno, a policy engine for Kubernetes, offers low-code declarative policies. In its CNCF incubation status, Kyverno is actively deployed in production environments across various organizations. The tutorial extends beyond fundamentals, exploring real-world applications and offering hands-on exercises mimicking production workflows.
In this session, Anusha, Raúl, and Anushka provide both end-user and contributor perspectives on Kyverno for policy-as-code workflows. They will guide the audience to set up a CI pipeline using the Kyverno CLI, which is a crucial first step in any DevOps pipeline. Following this, they will demonstrate the creation of policies for RBAC, resource protection, and other Day 1 operations. Finally, they will explore some of the advanced use cases like time-bound policy exceptions, and periodic pod restarts which come in handy during Day 2 operations.
Please note that Sessionize is not responsible for the accuracy or validity of the data provided by speakers. If you suspect this profile to be fake or spam, please let us know.
Jump to top