Home
Contribute Contact Us Browse all meetings
Home Contribute Contact Us Browse all meetings
Cloud Native Computing Foundation / Cloud Native SecurityCon EU 2022 / 19 May 2022
Cloud Native Computing Foundation / Cloud Native SecurityCon EU 2022 / 19 May 2022
Previous Meeting Next Meeting
Add meeting Rate page Subscribe
youtube image
From YouTube: Co-Chair Update- Ragashree MC [Program Committee Member]

Description

Co-Chair Update- Ragashree MC [Program Committee Member]

A

So welcome everybody to the day two of cloud native security con. I hope you enjoyed the day one. Yes, no awesome awesome, so it takes a lot of effort to make such a security con or any event for that matter.

A

So two things that come to my mind when we talk about any event, is the events team and the technical team behind that so kudos to our events, team and kudos to our attack security, so tag security is the mastermind behind this event and we are a bunch of individuals who are focused towards diverse backgrounds and we work towards enabling security for the cloud native ecosystem, and the main intention from our end is the mission itself is to reduce the risk that cloud native ecosystems and applications are exposed to and to reduce the risk of exposing our application end user data.

A

So that is the main intent. What we have and the vision that we have for today is protecting the distributed systems, including the ecosystem entirely and applications, including, and the intent is to provide a common understanding for all the members included in this ecosystem, starting from the developers, operators.

A

Maintainers and end users also, so we do so by providing a list of resources that are today present in the uh industry, but also something we curate for you and also to provide a common tooling, which you all can use in, enabling your security journey in the ecosystem.

A

You can read more at our charter at github, so we have the link pasted here for you and I just want to introduce a little bit of projects that are ongoing in the community. That could be of your interest. So we are looking for any sort of contributors, feedbacks and any development security, folks who are interested to join us and, firstly, for the resources. We have a ton of materials online with cloud native security, white paper, focusing on the entirety of the ecosystem, security right from build, deploy, runtime and to the end user side.

A

We have certain white papers dedicated towards serverless security and supply chain security also, and we have a defined lexicon available to make sure we all have the same understanding of the terminologies we are using and if you are interested, there are also supply chain. Working groups and policy. Working groups and hands-on initiatives are also a part of our initiative.

A

So we have security paths to enable you for reviewing your project and help you with the security journey right from the incubation and towards the graduation phases, and we have certain controls catalog to help you map the security controls implemented towards the standards that is applicable in the industry today, including the list, and we also have a tooling guide available for you to inculcate the industry, best practices tools in your environment right from build to runtime.

A

So if you, if you're interested in what you heard yesterday and what you're hearing now and we'll be hearing the whole of today reach out to us and we are in very open community, we are very helpful- and I joined a year ago as as a newbie with absolutely no knowledge. And here I am today standing before you so reach out to us uh reach out to any of the community members.

A

We have three chairs and a bunch of tech leads available and a lot of contributors available here today with andreas and sripad here before me, raise your hands, please yeah. So we are the community members here and reach out to us for any sort of questions and any help on boarding your project to our tax security review board and we'll be more than happy to help you easiest way to reach out offline uh outside of the conference is by our slack channel.

A

We have a bunch of them on cncf workspace, you can just search for tag security and a bunch of it will pop up check out the ones you are interested and reach out to us. We are also active on twitter, where we post our latest updates working groups and white paper review feedback.

A

Everything is ongoing there so do check it out and if you subs, if you're interested to subscribe more on uh the formal channels, so we have a mailing list of tag security also and all our content is managed via tax securities github, so do check out, uh raise any concerns, raise any issues and provide us with feedback improvements. Any opportunities so we'll be more than happy to look into it and we meet once every week, most probably on the wednesdays.

A

So if you're interested do snoop around and come say hi and if you miss any meetings and you're interested to know what's happening around, we have a channel for tax security and we post there. So thank you so much for listening to me and I hope all of you will connect with each other network and reach out to us for any queries and any interested opportunities. Thank you have a great day.