Aqua Security, Technology Evangelist
July 5th, 2019 | 17 mins 33 secs
When asked what makes a solid leader in today’s open source communities, the answer often varies depending on who you ask. In this podcast hosted by TNS Podcast Producer Kiran Oliver, the topic of leadership expanded beyond the basic, “What makes for a competent leader in today’s OSS community?” to encompass the ways in which we as a community can and should do to better help underrepresented minorities become leaders in open source.
CNCF Director of Ecosystem Cheryl Hung, Microsoft Director of Open Source Initiatives Ashley McNamara, Aqua Security Technology Evangelist Liz Rice, and Two Sigma Engineer Leah Petersen all started their journeys in open source at different times, with very different goals in mind.
June 25th, 2019 | 30 mins 5 secs
Kubernetes, Prometheus, Envoy, containerd ... The list of projects managed by the Cloud Native Computing Foundation is quite extensive, and growing by the month it seems.
But how does the CNCF manage its expansive collection of open source cloud native software projects? How does it decide when a project move from incubation to graduation. Many of these decisions are made by the CNCF's Technical Oversight Committee (TOC). We wanted to find out more about how the TOC operates.
August 23rd, 2018 | 32 mins 31 secs
cloud, cloud native, cloud native computing foundation, cloud-native- cncf, cloudnativecon, kubecon
Cloud native isn’t limited to containers and microservices orchestration. This was the main conclusion the Cloud Native Computing Foundation (CNCF) reached when it set out this year to re-define the term “cloud native,” said Justin Garrison, co-author of the book Cloud Native Infrastructure, who was involved in the CNCF’s lengthy process. Under the new definition, CNCF recognizes that cloud native is not just a set of technologies to adopt, but that it also reflects a change in an organization’s structure and processes.
June 26th, 2018 | 22 mins 13 secs
cncf, enterprise software, frameworks, kubecon, kubecon + cloudnativecon, kubecon eu, kubernetes, observability, security, tuf notary, tuf project
With all the excitement around containers and Kubernetes, it can be easy to forget that these systems still require the same types of help that older virtual machine and hardware-based systems needed. Chief among that list of needs is security. We sat down at KubeCon in Copenhagen to discuss this very topic with Liz Rice, Technology Evangelist at Aqua Security, Justin Cappos, Associate Professor Computer Science and Engineering at the NYU - Tandon School of Engineering.
May 24th, 2018 | 24 mins 59 secs
aqua security, ci/cd, cloud-native, cloud-native security, cloudnativecon, continuous deployment, continuous integration, ebook, kubecon, kubernetes, kubernetes ebook series
When it comes to securing an application deployed on Kubernetes, automation through a CI/CD pipeline is key. Using cloud-native security tools that hook right into Jenkins or your favorite CI/CD tool, enterprise security teams can set policies for developers who are building container images. The pipeline enforces those policies through automated vulnerability scanning of each image during the build process. Developers only deploy images that the security team is confident in because they've been scanned.
“CI/CD automation is key because of the scale,” said Liz Rice, technology evangelist at Aqua Security, in this podcast with The New Stack. “You couldn't possibly manually check all these different images when you're shipping potentially hundreds or thousands of deploys in a day.”
April 19th, 2018 | 38 mins 5 secs
cloud native, cloud native technology, cloud platforms, containers, hardware architectures, kubecon, kubecon + cloudnativecon, kubecon eu, kubernetes
The complexities are a given. That can sum up Kubernetes. It's going to take time to unfold. And here's why in this episode of The New Stack Makers that I recorded with Kelsey Hightower and Liz Rice, co-chairs of this year's KubeCon + CloudNativeCon in Copenhagen this coming May 2-4.