Session Description

Across the software industry, there has been a renewed focus on finding security-related issues earlier in the development and deployment pipeline.

This session will explain what it means to shift security coverage to the development and CI pipeline (left) from the container security point of view. It will educate attendees on what kind of security issues can be fixed in CI before these bugs make it into production and end up costing a lot more when there is a breach. The session will also include an overview of some open source projects that provide succesful examples of the shift-left security approach. Attendees will walk away having learned best practices to shift security further left for Kubernetes/containerized environments.