Sitaram Iyer
VP Emerging Technologies, Global Architects
Actions
Sitaram is a technology executive with over 25 years in the software industry, including extensive leadership experience in platform engineering, cloud security and developer enablement. As VP of Emerging Technologies & Global Architects at CyberArk, he leads a global team working directly with customers around the world to solve complex security challenges - particularly in the fast evolving areas of Kubernetes, workload identities, and Machine Identity Security.
He is passionate about mentoring technologists, driving secure innovation at scale and helping organizations align platform and security strategies. His current focus lies at the intersection of identity, automation and AI - empowering teams to build resilient , secure-by-design platforms. A recognized speaker and thought leader, he brings practical guidance to some of the industry’s toughest security problems.
Links
Policy enforced identity attestation for Kubernetes workloads with SPIFFE
With rapid increase in adoption of Kubernetes the number of workloads deployed across the enterprise is increasing exponentially. This has led to looking at security with a completely new focus.
- What does it to mean when someone says "we need to secure our workloads"?
- How does an organization ensure that every workload deployed in a cluster has its own identity and that identity is used for mutually authenticating to other workloads?
- How can these workloads be tied to organization's security policies that are managed by the PKI team?
- How can security team build an enterprise security posture that adheres to the compliance models defined within the enterprise?
This talk will give security professionals the ability to define a set a services that can be easily adopted by the platform teams that operate and run Kubernetes.
Specifically, this talk will walk through how to setup workloads deployed in a cluster to utilize organization's CA (Certificate Authority) infrastructure to sign workloads using cert-manager and utilize SPIFFE as a standard way to issue SPIFFE SVIDS.
Please note that Sessionize is not responsible for the accuracy or validity of the data provided by speakers. If you suspect this profile to be fake or spam, please let us know.
Jump to top