Steve Jarvis
Steve Jarvis's journey in tech spans about 14 years, from his early work building key management software to developing services in networking, IAM, and infrastructure management. That background in creating security-related software naturally led him to his current focus as a security engineer. Still a programmer at heart, he tackles security challenges with that developer's mindset. Outside of work, he's kept busy by an adorable 3-year-old daughter and the ongoing pursuit of being a pretty okay bike racer.
Session
Tired of the secret sprawl? You're not alone. This talk tosses the outdated playbook of endless key rotations and credential tracking and exposes a better way: delete the darn secrets in the first place. Or where they can’t be deleted, choose a solution that offers better protection as a matter of course.
Learn concrete 'Do This, Not That' guidance with actionable examples for common use cases that typically involve static, manually managed secrets. Move on to a safer and more maintainable architecture by making manually managing secrets the exception, not the default.
See a live demonstration of two Kubernetes clusters – one in AWS and one in Azure – securely authenticating to the other cloud provider with zero manually managed secrets. We'll dive into the AWS IRSA and Azure Workload ID services that unlock this. You'll even get the full Terraform source code to play with this yourself, highlighting the emergent wins for resiliency and maintainability when your entire infrastructure is defined in code.
Leave this session equipped with practical examples to immediately reduce your secrets footprint and a deeper understanding of building secure, secret-free systems.