OPEN TALK: Batten Down The Hatches: Using Open Source for Smooth (and Secure) Sailing Through K8s


Steve Giguere
Bridgecrew, Developer Advocate

Steve is a Developer Advocate with Bridgecrew by Prisma Cloud specialising in cloud and infrastructure security automation. Steve started his cybersecurity life by being kicked out of his high school computing class for privilege escalation on the school linux system and changing all passwords to ""peaches"" (his friend’s dog's name). But that was a long time ago. Since then he has worked as a Solution Architect for StackRox and Aqua Security, specialising in container and Kubernetes security, and has spent time with Synopsys establishing DevSecOps best practices for enterprise CI/CD pipelines.

Steve started his cybersecurity life by being kicked out of his high school computing class for privilege escalation on the school linux system and changing all passwords to "peaches" (his friend’s dog's name). But that was a long time ago.

Since then he has experienced a wide breadth of technologies throughout his career in the aero, telecoms and automotive industry improving quality, safety, velocity and efficiency.

Currently he is a Developer Advocate with Bridgecrew (by Palo Alto) specialising in Cloud and Infrastructure Security Automation. Prior to this he was a Solution Architect for StackRox and Aqua Security specialising in container and kubernetes security and spent time with Synopsys establishing DevSecOps best practices for enterprise CI/CD pipelines. 


Creating functional deployments for k8s is hard enough without even beginning to think about doing it securely. Part of your team are at war backing Helm vs Kustomize and your dirty secret is that you love straight up yaml!

As a security fan you’re looking for an easy win with zero budget to help make sure the “Department of No” doesn’t block the deployment regardless of your Infrastructure as Code choice.

In this live demo, we’ll see how Checkov (you love Star Trek too!), the open source IaC scanning tool by Bridgecrew, can handle all of that AND do so right in your IDE.

DevOps + Security = SomethingSomething… let’s figure it out together.