Usage of Kubernetes is expanding at rapid pace and it's quickly becoming the pervasive tool for cloud native computation and application development at a majority of enterprises. It's high time for new approached for security and governance based on pull mechanisms, tight desired state control loops and automated policy enforcement rooted in CI/CD concepts. The talk will walk through the principles of GitOps (operations by pull requests) and how you can leverage to enforce the highest security standard on fleets of clusters.