This month we've organised the meetup to coincide with Birmingham Tech Week (https://birminghamtechweek.com). There's a diverse selection of excellent events all across the city all week, so be sure to check them out!
With increasing adoption and scale of container use there will understandably be a corresponding increase in governance and monitoring requirements. How do you define, deploy and enforce the necessary policies to align compliance with your business risk profile? This event's talks will cover some cutting-edge techniques and tools looking to address these.
18.00 - "Mingle", Drinks & Food (Pizza)
18.30 - Welcome & Into
18.40 - First Talk & Questions
19.30 - Break
19.40 - Second Talk & Questions
20.30 - Pub!
Wil Squires - Enforcing Kubernetes Configuration with OPA
Abstract: "This talk explores how to use Open Policy Agent to enforce your business’ requirements when configuring Kubernetes. It introduces OPA and its language Rego, gives some examples of how OPA can be used both in and out of cluster, and describes a new Jetstack project that uses OPA to assess a cluster’s production readiness.
Bio: Wil is a Solutions Engineer based in Birmingham. His background is in design and control of lighting and video systems for venues, mostly using Raspberry Pis. His interest in automation, containers and scalability led him to Kubernetes.
Chris Kranz - Container Runtime Security with Falco
Abstract: Host intrusion detection (HID) has been around for some time. What if we rethought the problems HID solves in the context of Cloud Native platforms? What if we can detect abnormal behavior in the application, container runtime, & cluster environment as well? In this talk, we’ll present Falco, a CNCF Sandbox project for runtime security. We will show how Falco taps Linux system calls & the Kubernetes API to provide low level insight into application behavior, & how to write Falco rules to detect abnormal behavior. We’ll show how to collect & aggregate alerts using an EFK stack (Elasticsearch, Fluentd, Kibana). Finally we will show how Falco can trigger functions to stop abnormal behavior, & isolate the compromised Pod or Node for forensics. Attendees will leave with a better understanding of what problems runtime security solves, & how Falco can provide runtime security & incident response.
Bio: Chris has been involved in cloud native for around 5 years, both as an end-user and working for vendors. He now work at Sysdig, helping the EMEA team and customers developing their cloud native journey, and building reliable platforms designed to support production workloads.
We're cloud native enthusiasts who meet regularly throughout the year to discuss all things CNCF and are looking to arrange great events and speakers for Birmingham and the wider midlands area community.
The event is kindly sponsored by BlackCat Technology Solutions Ltd.