eBPF is a technology that allows dynamic, bespoke programs to change the way the kernel behaves. This talk introduces eBPF and shows how the Tetragon open source project applies it to provide powerful runtime security capabilities that can detect and even prevent malicious activities such as suspicious file access, network connections, and privilege escalation, with very low overhead. In the financial sector, security is paramount, and this talk will explore the likely evolution for standardized security tooling based on eBPF and Tetragon.