Kubernetes policies are a form of configuration management used to manage other configurations and runtime behaviors. Policies can help simplify security, and also serve as the building blocks for higher level business functions such as Governance, Risk, and Compliance (GRC).

In this panel session, members of the CNCF Policy Working Group will first discuss why Kubernetes requires policy management. Then they will present how policy management works at each phase of the cloud native lifecycle. Finally, they will discuss a policy-as-code based approach for addressing critical business functions of Governance, Risk, and Compliance. Such an approach can transform costly and tedious manual processes into automated and continuous processes with collaboration among various personas. This results in organizational efficiencies and cost-savings.

You will also learn about the Policy WG charter, activities, and how you can contribute to making Kubernetes secure and compliant.