Virtual Event
November 17–November 20, 2020
Learn More and Register to Attend This Event

The Sched app allows you to build your schedule but is not a substitute for your event registration. You must be registered for KubeCon + CloudNativeCon North America 2020 - Virtual to participate in the sessions. If you have not registered but would like to join us, please go to the event registration page to purchase a registration.

Please note: This schedule is automatically displayed in Eastern Standard Time (UTC–05:00). To see the schedule in your preferred timezone, please select from the drop-down menu to the right, above "Filter by Date." The schedule is subject to change.
Back To Schedule
Wednesday, November 18 • 3:50pm - 4:25pm
Security Kill Chain Stages in a 100k+ Daily Container Environment with Falco - Natch Ruengsakulrach & Eric Hollis, MathWorks

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Feedback form is now closed.

Security is a vital aspect of a Cloud Native infrastructure. In this talk, Eric and Natch will show how they set up monitoring to identify anomalous system calls and abnormal Kubernetes API events in MathWorks cloud infrastructure hosting 100K+ daily MATLAB containers with Falco, a CNCF Container Runtime Security project. They have mapped their detections to Security Kill Chain to detect threats in the attack lifecycle. The first part of the talk focuses on Falco, including eBPF integration and Falco rules. The second part covers a walkthrough of the event pipeline and how Falco is used to identify activity related to recon, weaponization, delivery, exploitation, installation, command & control, and actions on objectives. Attendees will leave knowing how to integrate Falco, write and test Falco rules to improve their systems’ security observability and detection.

avatar for Natch Ruengsakulrach

Natch Ruengsakulrach

Software Engineer, MathWorks
Natch Ruengakulrach has been developing cloud-native applications and architecting MathWorks cloud infrastructure for four years. In his spare time, he enjoys outdoor running, summer hiking, and watching soccer games.
avatar for Eric Hollis

Eric Hollis

Sr. Security Analyst, MathWorks
Eric Hollis is a Sr. IT Security Analyst for MathWorks, with a focus on cloud security. He has been working in security for five years and has a passion for process improvement, automation, and threat hunting. In his spare time, he enjoys attending security conferences, running ultramarathons... Read More →

Wednesday November 18, 2020 3:50pm - 4:25pm EST
Intrado Virtual Event Platform