Kubernetes Risk Assessment - Going One Level Deeper

Dive into a comprehensive exploration of Kubernetes security risks and assessment methodologies in this 26-minute conference talk by Ariel Shuper from Cisco. Examine the dynamic components of Kubernetes and understand the Cisco Security Benchmark. Analyze security misconfigurations and consider three crucial factors in risk assessment. Explore the MITRE ATT&CK framework, including its metrics and methodology, and learn how to construct an attack chain. Evaluate the benefits and challenges of various approaches, and gain insights into ideal risk assessment frameworks and practices. Enhance your understanding of Kubernetes security to better protect your containerized environments.

Introduction
What are the risks
The dynamic parts of Kubernetes
Cisco Security Benchmark
Security Misconfiguration
Three Factors to Consider
The MITRE Attack
MITRE Metrics
MITRE Methodology
Attack Chain
Benefits
Challenges
Ideal Work
Ideal Framework
Summary