Travis Jeppson
Sr. Director of Engineering - Nav Technologies, Inc.
Actions
Travis Jeppson is the Director of Engineering at Nav, Inc., a venture-backed startup providing free business and personal credit reports for small business owners. Jeppson, a graduate of The University of Utah, has more than 10 years of experience in software development. A lifelong-learner, Jeppson always has a book recommendation if asked. In his spare time, you'll find Jeppson spending time with his kids or tearing apart car engines.
Should I build it or buy it?
Cloud Native software is all the rage right now; Kubernetes, Prometheus, Envoy being some of the top contenders. But, what is the best way to consume some of this open source technology? You can find a vendor for almost anything, but would it be better to buy an implementation or build your own?
In this session, Travis will explore the landscape and the maturity of some of the different solutions. He’ll also discuss some considerations and tips around making these decisions.
Securing container delivery with open source tools
Current security solutions that worked in the VM age aren't adequate anymore to securing our workloads in containers, or their delivery to our environments. How do you deal with patch management, virus scans, vulnerability management, secure application delivery in a containerized world. More and more companies are required to secure their data due to regulations, while more and more companies are being compromised too.
This lab will walk through how to secure the delivery pipeline system, and how to secure your containers during runtime. We'll start by focusing on the container build process and how to simplify patch management for containers; also, container security scanning and how to know if your container is void of malicious code and vulnerabilities. We'll then move on to registries, how to create an environment that developers can use in their workflow and how to secure that for production ready containers. Finally we'll focus on runtime, how to make sure our containers are doing what they're supposed to do, and not what they shouldn't be doing.
There isn't any reason to be afraid of adapting a containerized solution because of security. You can be secure and use a containerized workflow too.
This will be using all open source solutions, you'll be able to see how the world of security continues to improve with open source.
ContainerDays 2019 Sessionize Event
Please note that Sessionize is not responsible for the accuracy or validity of the data provided by speakers. If you suspect this profile to be fake or spam, please let us know.
Jump to top