%term

The latest News and Information on CyberSecurity for Applications, Services and Infrastructure, and related technologies.

5 security hardening CFEngine policy examples

Dec 19, 2022 By Ole Herman Elgesem In CFEngine

Throughout the security holiday calendar, we’ve looked at modules for enforcing security requirements. Writing the policy to achieve these security hardening goals is easy. By learning how, you can write policy (or modules) for any requirements, including those specific to your organization. In this blog post, we’ll take a look at five beginner-level examples to get you started, focusing on the most common resources to manage with CFEngine; files and packages.

Read Post

CFEngine

Read more about 5 security hardening CFEngine policy examples

Should Your Business Use A VPN?

Dec 16, 2022 By OpsMatters In OpsMatters

How we do business is rapidly changing, and companies must adapt to new technologies to stay competitive. As employees increasingly work from home, data security becomes an even greater concern. Therefore, choosing the right Virtual Private Network (VPN) for your small business can greatly impact how secure your employees' data are online. In this blog post, you will learn about the benefit of using a VPN and why it may be worth investing in one for business.

Read Post

OpsMatters

Read more about Should Your Business Use A VPN?

Kentik DDoS Protection in 20 Seconds

Dec 16, 2022 By Kentik In Kentik

DDoS attacks often go completely unnoticed until they finally impact your end users' experience and by that time you're in crisis mode. Kentik identifies patterns in traffic in near real-time so that a brewing attack can be spotted and mitigated before it disrupts services and future attacks can be avoided as well.

View Video

Kentik

Read more about Kentik DDoS Protection in 20 Seconds

LIVE NOW: 2022 State of DevOps

Dec 16, 2022 By Cloudsmith In Cloudsmith

We’ve assembled a panel of experts from the mature DevOps teams of Puppet and Shopify to answer some of your biggest software security questions.

View Video

Cloudsmith

Read more about LIVE NOW: 2022 State of DevOps

Regulations vs DevSecOps Requiem - Diptesh Mishra - CTO - Shoal

Dec 16, 2022 By Kosli In Kosli

Diptesh “Dips” Mishra, CTO for Shoal (a Standard Chartered Venture) will talk about the governance challenges that financial services organisations face when they look to adopt DevSecOps. Dips has worked for Nationwide, Lloyds Banking Group, and RBS and he’ll share key strategies behind successful implementations Filmed at Exploring DevOps, security, audit compliance and thriving in the digital age in Oslo Dec 8th at Rebel.

View Video

Kosli

Read more about Regulations vs DevSecOps Requiem - Diptesh Mishra - CTO - Shoal

How you can do regulated DevOps with Kosli - Mike Long - CEO - Kosli

Dec 16, 2022 By Kosli In Kosli

In this talk Mike will discuss the state of regulated DevOps, share the Kosli startup journey, what we’ve learned along the way, and briefly demo how Kosli helps regulated DevOps teams to deliver software with continuous compliance. Filmed at Exploring DevOps, security, audit compliance and thriving in the digital age in Oslo Dec 8th at Rebel.

View Video

Kosli

Read more about How you can do regulated DevOps with Kosli - Mike Long - CEO - Kosli

DevSecOps The Broken or Blurred Lines of Defense - John Willis - Kosli

Dec 16, 2022 By Kosli In Kosli

With the modern patterns and practices of DevOps and DevSecOps it’s not clear who the front-line owners are anymore. Today, most organizations' internal audit processes have lots of toil and low efficacy. This is something John has referred to in previous presentations as “Security and Compliance Theater.” Filmed at Exploring DevOps, security, audit compliance and thriving in the digital age in Oslo Dec 8th at Rebel.

View Video

Kosli

Read more about DevSecOps The Broken or Blurred Lines of Defense - John Willis - Kosli

How can tech bridge the gap on compliance audit risk and security - Panel Discussion

Dec 16, 2022 By Kosli In Kosli

At Exploring DevOps, security, audit compliance and thriving in the digital age we wrapped up the day with a panel discussion featuring all of our speakers plus Lamisi Gurah - Service Owner / Head of IEP Engineering Productivity at DNB. Come prepared with whatever’s on your mind or follow up on what you’ve heard during the talks. Our speakers would love to take your questions.

View Video

Kosli

Read more about How can tech bridge the gap on compliance audit risk and security - Panel Discussion

How to Monitor kube-controller-manager

Dec 15, 2022 By Carlos Arilla In Sysdig

When it comes to creating new Pods from a ReplicationController or ReplicaSet, ServiceAccounts for namespaces, or even new EndPoints for a Service, kube-controller-manager is the one responsible for carrying out these tasks. Monitoring the Kubernetes controller manager is fundamental to ensure the proper operation of your Kubernetes cluster. If you are in your cloud-native journey, running your workloads on top of Kubernetes, don’t miss the kube-controller-manager observability.

Read Post

Sysdig

Read more about How to Monitor kube-controller-manager

What's new in Calico Enterprise 3.15: FIPS 140-2 compliance, new dashboards, egress gateway pod failover, and more!

Dec 15, 2022 By Joseph Yostos In Tigera

Tigera provides the industry’s only active Cloud-Native Application Security Platform (CNAPP) for containers and Kubernetes. Available as a fully managed SaaS (Calico Cloud) or a self-managed service (Calico Enterprise), the platform prevents, detects, troubleshoots, and automatically mitigates exposure risks of security issues in build, deploy, and runtime stages across multi-cluster, multi-cloud, and hybrid deployments.

Read Post