Security remains one of the persistent challenges of building and running containerized applications in Kubernetes. That’s because when working with Kubernetes, security is no longer the job of an isolated team. It involves multiple teams across development, operations, and security roles.
Security implementation also looks different in Kubernetes environments. Due to the fast pace of application development, security checks and controls must be embedded at each phase of the development life cycle such that it:
This O’Reilly report will walk you through the basics of implementing DevSecOps in Kubernetes, starting at the beginning with generating requirements and cascading through the rest of the life cycle.