YoVDO

Secure Configuration in the Cloud

Offered By: LASCON via YouTube

Tags

LASCON Courses DevOps Courses Kubernetes Courses Cloud Security Courses Configuration Management Courses HashiCorp Vault Courses

Course Description

Overview

Explore secure configuration management in cloud environments through this comprehensive LASCON conference talk. Delve into the challenges of protecting sensitive assets in DevOps environments, including database credentials, API tokens, and private keys. Learn about the importance of secure mechanisms for asset protection throughout the deployment cycle. Discover strategies for managing sensitive configuration data, including creation, renewal, and expiration processes. Examine access control techniques, usage audits, monitoring, and secure backups. Compare various market solutions for configuration data protection, understanding their strengths and weaknesses. Gain insights into different types of configuration secrets and their lifecycles. Explore best practices and common pitfalls in cloud DevOps security. Analyze specific solutions like Kubernetes secrets, Keywhiz, and Hashicorp Vault. Conclude with practical recommendations for implementing secure configuration management in cloud environments.

Syllabus

Introduction
Agenda
Expectations
Configuration Management
Secret Management
Secret Manager
Ansible


Taught by

LASCON

Related Courses

Comparing WAF and RASP - Why?
LASCON via YouTube API Security - Is it the New Application Attack Surface and How to Secure at Enterprise Scale
LASCON via YouTube Privacy Impact Assessments - How Much Privacy Is Enough?
LASCON via YouTube Your Frontier Defense - Understanding Web Application Firewalls
LASCON via YouTube Doing This One Crazy Thing Will Change Your AppSec Program Forever
LASCON via YouTube