Hey, Did You Hear About This New CVE? - A Vulnerability Response Playbook
Offered By: CNCF [Cloud Native Computing Foundation] via YouTube
Course Description
Overview
Discover a comprehensive vulnerability response playbook for Kubernetes infrastructure in this 22-minute conference talk. Learn how to prepare for, mitigate, and clean up after complex vulnerabilities, drawing from experiences with the GKE fleet. Explore the development of response strategies, balancing security and reliability of workloads. Gain insights into Kubernetes tools like audit logs, network policies, and RBAC that can streamline vulnerability response. Delve into topics such as pre-incident checklists, auditing, detection opportunities, and network policies. Follow a step-by-step approach to incident response, including reproduction, patching, and investigation. Enhance your ability to handle security incidents and develop effective contingency plans for your Kubernetes infrastructure.
Syllabus
Introduction
Boeing Model 299
Checklists in Mitigation
Security Incidents
Challenges
Preincident checklists
Audit
Opportunity for Detection
Network Policies
Host Network
Build Manifest
Docker Image ID
Exercise
PreIncident vs Incident
Step 1 Reproduce
Hierarchy
Patch
Investigation
Conclusion
Taught by
CNCF [Cloud Native Computing Foundation]
Related Courses
Azure Infrastructure FundamentalsLearnQuest via Coursera Identifying Roles and Responsibilities in Microsoft Azure
Pluralsight Microsoft Azure Solutions Architect: Implement a Governance Strategy
Pluralsight Microsoft Azure Security Engineer: Manage Access Control
Pluralsight Microsoft Azure Administrator: Manage Role-Based Access Control (RBAC)
Pluralsight