No YOLO: Containers, Governance, and You - Seguridad Mania.com - España y América Latina

As you lead your organization to adopt containers and Kubernetes at scale, maintaining compliance with security policy and IT governance becomes increasingly complex. The idea of hundreds of thousands of containers in unmanaged repositories on the internet is especially unnerving to security and operations teams. Bad things can happen when developers and app operators use the wrong containers, so why would they do such a thing? They are under pressure to innovate rapidly, and by circumventing IT governance they can ship faster. “What’s in that database I got online? Who knows, but I have a deadline to hit! YOLO, right?” But there’s good news for those worried about YOLO ops. New approaches to software packaging with automated tooling and self-service models can make compliance frictionless and eliminate the need to go rogue. Join VMware Principal Engineer Joe Beda and VP of Product Graham Siener as they sit down with Stephen O’Grady from RedMonk to discuss how a new approach to the secure software supply chain can deliver superior outcomes on Kubernetes without sacrificing efficiency or security. Attend this webinar to hear a discussion about: - How container metadata enables information about the origin, contents, and security attributes of every container to travel with it through the software supply chain - How you can bake compliance into all of the software you run on Kubernetes, whether it is built in-house or consumed from external sources - How VMware is helping customers solve IT governance challenges with products and services in the Tanzu portfolio and through partnership with the broader cloud-native community