BeerSecOps
By Aqua Security
BeerSecOpsApr 06, 2020
EP15: Cheryl Hung - The CNCF End User Community and Virtual KubeCon 2020
Cheryl Hung (@oicheryl) has recently been promoted to the CNCF's VP of Ecosystem after growing their end user community into the largest of of any open source foundation or standards body. In this episode she speaks to Steve Giguere (@_SteveGiguere_) about the creation of community, the results of her latest initiative in the space called the CNCF Technology Radar, and of course the upcoming Virtual KubeCon 2020.
Learn more about Cheryl:
https://oicheryl.com
https://twitter.com/oicheryl
https://linkedin.com/in/cheryljhung
The CNCF End User Community:
https://cncf.io/people/end-user-community/
https://cncf.io/blog/2020/06/12/introducing-the-cncf-technology-radar/
https://cncf.io/tech-radar
KubeCon 2020:
https://events.linuxfoundation.org/kubecon-cloudnativecon-europe/
EP14: The Evolution of CSPM with CloudSploit Founders Matthew Fuller and Josh Rosenthal
Public cloud misconfigurations have already led to some high profile data breaches. As complexity of cloud native increases, so do the hours dedicated creating and enforcing best practices across IaaS and SaaS providers. Matt Fuller (@matthewdfuller) and Josh Rosenthal got out in front of that curve early founding CloudSploit, a CSPM tool that automates the pain of cloud security posture management. Both founders spent time with Steve Giguere (@_SteveGiguere_) discussing the evolution of CloudSploit and the establishment of CSPM from both a technological and business perspective.
EP13: Security for Serverless Functions with Dean Bryen
Dean Bryen (@deanbryen) is a developer advocate working for Microsoft with a focus on serverless security. He is very active in the community in London having worked on the London 2012 Olympics, was part of the early serverless at AWS and is now talking to Steve (@_SteveGiguere_) bringing clarity to the definition of serverless itself as well as the new attack surface it brings.
EP12: Michael Hausenblas on Software Supply Chain Management (via GitOps)
In this episode, Michael @mhausenblas and Steve ( @_SteveGiguere_ of Aqua Security) talk specifically about Software Supply Chain Management. We dive into what that means (or at least should mean) to us, and how, via open source tooling and gitops, we can create a secure cloud native software supply chain.
EP11: Liz Rice - The Container Security Book
Liz Rice @lizrice, VP of Open Source Engineering at Aqua makes a second appearance on BeerSecOps with Steve Giguere @_SteveGiguere_of Aqua Security @aquasecteam to discuss her new book from O’Reilly, diving deep into Container Security.
EP10: Tanya Janca – AppSec Education
Steve Giguere @_SteveGiguere_ of Aqua Security @aquasecteam met with fellow Canadian and application security thought leader Tanya Janca @SheHacksPurple!
They talk about how the current global pandemic is affecting us and our industry, her career path into application security, past initiatives like Women in Security (WoSec) and SheHacksPurple, and finally her new passion in creating educational content for developers and tech enthusiasts on security.
EP09: Gene Kim – The Unicorn Project
Steve Giguere @_SteveGiguere_ of Aqua Security met with Gene Kim @RealGeneKim to discuss his personal experiences surrounding the core tenets of his new book the "Unicorn Project", some of the difficulties as an author, and his experience with DevOps research.
Gene Kim is a Wall Street Journal bestselling author, researcher, and multiple award-winning CTO. He has been studying high-performing technology organizations since 1999 and was the founder and CTO of Tripwire for 13 years. He is the author of six books, The Unicorn Project (2019), and co-author of the Shingo Publication Award winning Accelerate (2018), The DevOps Handbook (2016), and The Phoenix Project (2013). Since 2014, he has been the founder and organizer of DevOps Enterprise Summit, studying the technology transformations of large, complex organizations.
In 2007, ComputerWorld added Gene to the “40 Innovative IT People to Watch Under the Age of 40” list, and he was named a Computer Science Outstanding Alumnus by Purdue University for achievement and leadership in the profession.
EP08: Kelsey Hightower – The Future of Kubernetes
Kelsey Hightower describes himself as “a technologist attempting to keep things simple while learning in public.”
Steve Giguere @_SteveGiguere_ of Aqua Security met with Kelsey @kelseyhightower to discuss Kelsey's holistic approach to the future of cloud native technology and security, and get a glimpse into his day-to-day activities beyond the cloud native space.
EP07: Adrian Goins, Rancher, Rio & Farming
Steve Giguere of Aqua Security met with Adrian Goins of Rancher. The two of them talk Adrian's experience with recording videos on tech subjects, a lifecycle overview of Rancher's open source project "Rio", K3s and more.
Related Links:
Rancher's Open Source Project "Rio" Git
https://github.com/rancher/rio
Follow Adrian Goins on Twitter
https://twitter.com/adriandotgoins
Follow Adrian Goins on LinkedIn
https://linkedin.com/in/adrian-goins
Watch Adrian's YouTube Videos
https://www.youtube.com/channel/UCjjwExYSPRWwjj9WwydrVmA
EP 06: Meet Elissa Shevinsky, Founder & CEO of Faster Than Light, Author of "Lean Out"
Steve Giguere of Aqua Security met up with Elissa Shevinsky, a tech enthusiast and author of the book "Lean Out" with a new startup called Faster Than Light. Learn about her startup Faster Than Light and immerse yourself in all things tech and cyber security.
Related Links:
Faster Than Light
https://fasterthanlight.dev/
Read About Elissa's Book "Lean Out"
https://en.wikipedia.org/wiki/Lean_Out:_The_Struggle_for_Gender_Equality_in_Tech_and_Start-up_Culture
Follow Elissa Shevinsky on Twitter
https://twitter.com/ElissaBeth
Follow Elissa Shevinsky on LinkedIn
https://www.linkedin.com/in/elissashevinsky/
EP05: With Michael Man, The Creator and Organizer of The DevSecOps London Gathering
Steve Giguere of Aqua Security met Michael Man, the creator and organizer of the DevSecOps London Gathering Meetup, who just won the DevSecCon Security leadership award for OUTSTANDING DEVSECOPS COMMUNITY OF 2019. Listen to this podcast to learn about these London-based events, how it all started and where it's going.
Related Links:
DevSecOps London Gathering Meetup
https://www.meetup.com/DevSecOps-London-Gathering/
Follow Michael Man on Twitter
https://twitter.com/DevSecOps_LG
Follow Michael Man on LinkedIn
https://www.linkedin.com/in/michael-man-3851734
EP04: All About OWASP with Sam Stepanyan
Steve Giguere of Aqua Security sits down with Sam Stepanyan, the London OWASP chapter leader, to talk about "all things OWASP".
EP03: DevSecOps - Humans Vs Non-Humans with Josh Kirkwood
Stephen Giguere and Josh Kirkwood discuss the meaning and challenges of DevSecOps and the integration and adoption of security culture.
EP02: Cloud Native and Open Source with Liz Rice
Steve Giguere, a DevSecOps engineer, sat down with Liz Rice, the VP of Open Source Engineering at Aqua and the chair of the CNCF’s Technical Oversight Committee, to discuss Open Source tools and Cloud Native subjects.
EP01: Discussing GitOps with Andy Martin (Control Plane)
Steve Giguere of Aqua Security sat down with Andy Martin (Control Plane) to discuss GitOps and other subjects related to Cloud Native Security.