Devconf.US

Rey Lejano

Rey Lejano is Solutions Architect at Red Hat and currently serves as co-chair for Kubernetes Special Interest Group (SIG) Docs and helps maintain the upstream Kubernetes documentation. Rey leads the Kubernetes SIG Security Third-Party Security Audit subproject and helped release the last Kubernetes security audit in April 2023. He is a member of seven Kubernetes Release Teams, including serving as the 1.23 Release Lead and 1.25 Emeritus Adviser. Rey has been a Program Committee member for KubeCon + CloudNativeCon (2022 Detroit, 2023 Amsterdam, 2023 Chicago), a Track Chair for KubeCon + CloudNativeCon Europe 2024 in Paris, and a co-chair of CloudNativeSecurityCon 2024. Rey was awarded the CNCF Community Award for Top Documentarian in 2022 and Kubernetes Contributor Awards in 2021 from SIG Release and 2023 from SIG Security. Rey is a CNCF Ambassador and DevOps Institute Ambassador.


Session

08-14
15:55
80min
Stop Kubernetes' Revolving Door: A Hands-On Workshop to Secure a Kubernetes Cluster
Savitha Raghunathan, Rey Lejano

Out-of-the-box, upstream Kubernetes is not secure by-default. Attendees of this hands-on workshop will walk through the official/upstream Kubernetes Security Checklist to set up a cluster securely.

The workshop starts with an introduction to the critical security considerations for Kubernetes environments. Participants will then embark on a guided journey through practical exercises designed to implement security best practices within Kubernetes clusters.

Throughout the workshop, attendees will gain firsthand experience in securing Kubernetes environments, covering aspects such as authentication, authorization, network policies, pod security, and more. These exercises will provide participants a comprehensive understanding of Kubernetes security principles and practical implementation techniques.

Attendees will walk away equipped with the knowledge and skills necessary to effectively secure Kubernetes clusters in real-world scenarios. Whether you're new to Kubernetes security or seeking to enhance your existing expertise, this workshop offers valuable insights and hands-on experience to strengthen your Kubernetes deployments against potential threats.

Cloud, Hybrid Cloud, and Hyperscale Infrastructure
Terrace Lounge (capacity 48)