As more teams run databases, AI pipelines, and other stateful workloads on Kubernetes, persistent storage has become one of the most important and most overlooked parts of cluster security. Snapshots, backups, and volume mounts often go unprotected, even though they contain the data your business depends on.

This session takes a clear look at how to secure Kubernetes storage in production environments. You'll learn how to use CSI driver features like encryption, mount options, and identity-aware access, how to monitor and audit usage with tools like Falco and Kubescape, and how to protect snapshots and backups from common threats like ransomware and insider risk.

Whether you're running Postgres in production, building ML pipelines, or just adding persistent volumes to your apps, this talk will give you a practical checklist to strengthen your storage layer without adding unnecessary complexity.