Loading…
Virtual Event
November 17–November 20, 2020
Learn More and Register to Attend This Event

The Sched app allows you to build your schedule but is not a substitute for your event registration. You must be registered for KubeCon + CloudNativeCon North America 2020 - Virtual to participate in the sessions. If you have not registered but would like to join us, please go to the event registration page to purchase a registration.

Please note: This schedule is automatically displayed in Eastern Standard Time (UTC–05:00). To see the schedule in your preferred timezone, please select from the drop-down menu to the right, above "Filter by Date." The schedule is subject to change.
Back To Schedule
Friday, November 20 • 5:05pm - 5:40pm
Using Open Policy Agent to Meet Evolving Policy Requirements - Jeremy Rickard, VMware

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Tweet Share
Feedback form is now closed.
Video Stream


Our team runs a Kubernetes platform for 30+ teams in a variety of commercial and government environments. Each of these environments has different security and compliance requirements, such as PCI and FedRAMP. We must deal with evolving requirements as our tenants pursue new accreditations. While we could implement a variety of mutating and validating webhook implementations to meet our needs, we instead turned to Open Policy Agent (OPA). OPA has allowed us to quickly develop and deploy new policies as these requirements shift and evolve. In this talk, we will look at several concrete examples of how we used OPA to implement our changing kubernetes policy requirements and help our tenants achieve a variety of compliance certifications, while at the same time striving to make these security policies as unobtrusive to their existing CI/CD pipelines and workflows.
Speakers
avatar for Jeremy Rickard

Jeremy Rickard

Principal Software Engineer, Microsoft Azure
Jeremy Rickard is a principal software engineer at Microsoft, where he works on supply chain security projects in the Azure Container Upstream team. He is also a chair for SIG Release, a co-chair for the Long Term Support (LTS) working group, and was the release lead for Kubernetes... Read More →

KubeCon NA Virtual 2020 using open policy agent rickard jeremy pdf
Text Transcript PQLK 7745 txt
Friday November 20, 2020 5:05pm - 5:40pm EST
Intrado Virtual Event Platform
  Security + Identity + Policy