Top Trends in Kubernetes Security: TalosCon 2025
CherylHung4
24 views
32 slides
Oct 17, 2025
Slide 1 of 32
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
About This Presentation
In this talk I discuss some of the fundamental challenges of security in a Kubernetes, cloud native environment, and how Shift-Down Security can help.
Reading: https://github.com/kubernetes/sig-security/blob/main/sig-security-docs/papers/shift-down/shift-down-security.md#shift-down-security
Slide Content
SideroLabs 2025 | All rights reserved. Top Trends in K 8 s Security Space Cheryl Hung, 17 Oct 2025, Amsterdam
‹#› oicheryl.com Independent P reviously Sr Director, Ecosystem at Arm Cheryl Hung
‹#›
‹#› What are your challenges when using/deploying containers?
‹#› What % said security ? What are your challenges when using/deploying containers?
‹#› % say security is a challenge when using containers
‹#› % say security is a challenge when using containers
‹#› % say security is a challenge when using containers
‹#› % say security is a challenge when using containers
‹#› % say security is a challenge when using containers
‹#› % say security is a challenge when using containers
‹#› Why is security so tricky?!
‹#› Shared responsibility leads to gaps
‹#› Shared responsibility leads to gaps Misconfiguration is the killer
‹#› Shared responsibility leads to gaps Misconfiguration is the killer Identity is the new perimeter
‹#› Shared responsibility leads to gaps Misconfiguration is the killer Identity is the new perimeter Speed vs security tensions
‹#› So what now?
‹#› “Shift Down” Kubernetes Security Paper Published Feb 2025
‹#› ✨ Application team Develop features Fix defects
‹#› ✨ Application teams Develop features Fix defects ✨ Application teams Develop features Fix defects ✨ Application team s Develop features Fix defects
‹#› ✨ Application teams Develop features Fix defects ✨ Application teams Develop features Fix defects ✨ Application teams Develop features Fix defects 🔒 Security team Runtime security Compliance Vulnerabilities Misconfigurations SW supply chain
‹#› ✨ Application teams Develop features Fix defects ✨ Application teams Develop features Fix defects ✨ Application teams Develop features Fix defects 🤖 Platform team Self-service / Automation 🔒 Security team Runtime security Compliance Vulnerabilities Misconfigurations SW supply chain
‹#› ✨ Application teams Develop features Fix defects ✨ Application teams Develop features Fix defects ✨ Application teams Develop features Fix defects 🤖 Platform team Self-service / Automation Vulnerabilities Misconfigurations Supply chain 🔒 Security team Runtime security Compliance Vulnerabilities Misconfigurations SW supply chain
‹#› ✨ Application teams Develop features Fix defects ✨ Application teams Develop features Fix defects ✨ Application teams Develop features Fix defects 🔒 Security team Runtime security Compliance Vulnerabilities Misconfigurations SW supply chain 🤖 Platform team Self-service / Automation Vulnerabilities: Manage base images Misconfigurations Supply chain
‹#› ✨ Application teams Develop features Fix defects ✨ Application teams Develop features Fix defects ✨ Application teams Develop features Fix defects 🔒 Security team Runtime security Compliance Vulnerabilities Misconfigurations SW supply chain 🤖 Platform team Self-service / Automation Vulnerabilities: Manage base images Misconfigurations: Manage policies Supply chain
✨ Application teams Develop features Fix defects ✨ Application teams Develop features Fix defects ‹#› ✨ Application teams Develop features Fix defects 🔒 Security team Runtime security Compliance Vulnerabilities Misconfigurations SW supply chain 🤖 Platform team Self-service / Automation Vulnerabilities: Manage base images Misconfigurations: Manage policies Supply chain: Secure, attest, verify
✨ Application teams Develop features Fix defects ✨ Application teams Develop features Fix defects ‹#› ✨ Application teams Develop features Fix defects 🤖 Platform team Self-service / Automation Vulnerabilities: Manage base images Misconfigurations: Manage policies Supply chain: Secure, attest, verify 🔒 Security team Runtime security Compliance Vulnerabilities Misconfigurations SW supply chain
‹#› Embrace the chaos - platform team manages common concerns
‹#› Embrace the chaos - platform team manages common concerns Automate trust - Policy as Code
‹#› Embrace the chaos - platform team manages common concerns Automate trust - Policy as Code Less is more - complements Shift Left, but reduces developer overhead
‹#› github.com/kubernetes/sig-security/blob/main/sig-security-docs/papers/shift-down/shift-down-security.md
Thank you ‹#› oicheryl.com
Tags
Categories
TechnologyDownload
Download Slideshow Get the original presentation fileQuick Actions
Statistics
- Views 24
- Slides 32
- Age 46 days
Related Slideshows
11
8-top-ai-courses-for-customer-support-representatives-in-2025.pptx
JeroenErne2
45 views
10
7-essential-ai-courses-for-call-center-supervisors-in-2025.pptx
JeroenErne2
45 views
13
25-essential-ai-courses-for-user-support-specialists-in-2025.pptx
JeroenErne2
36 views
11
8-essential-ai-courses-for-insurance-customer-service-representatives-in-2025.pptx
JeroenErne2
33 views
21
Know for Certain
DaveSinNM
20 views
17
PPT OPD LES 3ertt4t4tqqqe23e3e3rq2qq232.pptx
novasedanayoga46
24 views