Sitaram Iyer
VP Emerging Technologies, Global Architects
Actions
Sitaram is primarily focused on bringing security teams and developers closer. He works closely with customers worldwide to help drive the adoption of cloud native security strategy leading with cert-manager in Kubernetes and various other CNCF projects to bridge the gap between security and development teams. Kubernetes security is the large part of time where he spends his time on - primarily in the area of machine identity. He is currently VP Emerging Technologies, Global Architects at Venafi, A CyberArk Company
For more than 10+ years, Sitaram has led teams of highly experienced technologists with primary focus on influencing developers to become champions. Before Venafi, Sitaram spent over 16 years at TIBCO in various roles, most recently as Director, Digital Content Strategy where he was responsible for creating an ecosystem in which developers built rich applications that solved the challenges of large enterprises
Links
Policy enforced identity attestation for Kubernetes workloads with SPIFFE
With rapid increase in adoption of Kubernetes the number of workloads deployed across the enterprise is increasing exponentially. This has led to looking at security with a completely new focus.
- What does it to mean when someone says "we need to secure our workloads"?
- How does an organization ensure that every workload deployed in a cluster has its own identity and that identity is used for mutually authenticating to other workloads?
- How can these workloads be tied to organization's security policies that are managed by the PKI team?
- How can security team build an enterprise security posture that adheres to the compliance models defined within the enterprise?
This talk will give security professionals the ability to define a set a services that can be easily adopted by the platform teams that operate and run Kubernetes.
Specifically, this talk will walk through how to setup workloads deployed in a cluster to utilize organization's CA (Certificate Authority) infrastructure to sign workloads using cert-manager and utilize SPIFFE as a standard way to issue SPIFFE SVIDS.
Please note that Sessionize is not responsible for the accuracy or validity of the data provided by speakers. If you suspect this profile to be fake or spam, please let us know.
Jump to top