opa gatekeeper and policy controller during continuous integration (ci) pipelines

let’s see how to shift left on security by catching opa gatekeeper policy violations during continuous integration (ci) pipelines.
read more →

secure your apps and your cluster with anthos service mesh

let’s see how you could protect and secure both your apps and your cluster with anthos service mesh (asm)
read more →

gke cos version

let’s see how to get the cos version of your gke nodes
read more →

container scanning

let’s see how to scan your containers with gcp
read more →

cloud armor to protect your apps deployed on gke

let’s see how you could protect your apps deployed on gke against denial of service and web attacks
read more →

ebpf and cilium, to bring more security and more networking capabilities in gke

let’s see ebpf and cilium on gke and how they are bringing more security and networking capabilities
read more →

opa gatekeeper with policy controller

let’s see in actions how we could easily leverage opa gatekeeper on any kubernetes cluster via policy controller
read more →

fasten your seatbelt, and turn autopilot mode on

let’s see in actions the new gke’s autopilot mode
read more →

gitops on gke with config sync

let’s see gitops in actions with gke’s config sync
read more →

container linter for compliances and security

let’s see how to use open policy agent or dockle to check your containers on a security and compliances perspectives.
read more →

advanced continuous integration pipeline for containers

let’s setup an advanced continuous integration pipeline for containers
read more →

my capture the flag (ctf) and kubecon na 2020 experiences

let’s see what I have learned during my first kubecon conference as well as my first capture the flag (ctf) experience to improve my knowledge about security with containers and kubernetes.
read more →

online boutique demo

let’s see how to deploy the online boutique solution on gke, w/ or w/o workload identity
read more →

binary authorization on gke

let’s see how you can only run what you trust (tl;dr whitelisted registries and signed containers) on gke with binauthz
read more →

demo bank on gke

let’s see how to deploy the demo bank (aka bank of anthos) solution on gke, w/ or w/o workload identity
read more →

confidential computing with gke

let’s see how easy it is to enable confidential computing on a gke cluster
read more →

gke’s service account

let’s discuss about how to deal with gke’s service account and few tips to improve your security posture, especially with fine-grained identity and authorization for applications with workload identity
read more →

zero trust security model with google’s beyondcorp

let’s see how google shared best practices and technologies about its own zero trust security model, beyondcorp
read more →

build and deploy a containerized app on gke with cloud build

let’s see how to use google cloud build to build and deploy a containerized app on gke
read more →

my second week with gcp

let’s share some learnings during my second week leveraging gcp, focused on gke
read more →

advanced aks cluster setup with terraform

let’s see advanced terraform templates around my aks cluster setup
read more →

hello, cloud native hugo blog!

let’s discuss why my new blog is a containerized hugo website hosted on kubernetes
read more →

container security context on kubernetes

let’s add more security context to your containers on kubernetes
read more →

private aks and private acr, safer you are

let’s setup azure private endpoint for both azure kubernetes service (aks) and azure container registry (acr)
read more →

protect your terraform state files with azure private endpoints for azure storage

let’s leverage azure private endpoint to protect the azure blob storage account used to store the terraform state file
read more →

flexible kured deployment with its helm chart

let’s be more flexible while deploying kured thanks to its helm chart
read more →

scanning container images for vulnerabilities in acr with asc

let’s use azure security center (asc) to scan your containers in azure container registry (acr)
read more →

kubernetes network policies, how to secure the communications between your pods

let’s secure the communications between your pods with calico kubernetes network policies
read more →

my preparation for exam az-500, microsoft azure security technologies

let’s share the resources available to you to prepare the exam az-500
read more →

security with microsoft azure

let’s go through all the security concept in azure to nurture your security posture
read more →