Protecting Your Crown Jewels with External Secrets Operator

Discover effective secrets management strategies for Kubernetes environments in this 39-minute conference talk. Learn how to leverage External Secrets Operator to integrate existing solutions like HashiCorp Vault or AWS Secrets Manager with Kubernetes, addressing the challenges of creating, rotating, and managing access to secrets at scale. Gain insights into implementing secrets management in highly regulated environments, balancing developer productivity with information security concerns. Explore how to manage secrets using GitOps principles for self-sufficient teams, satisfying developers, auditors, and product managers alike. Examine various threat models to identify key areas of concern in secrets management. Understand the evolution of External Secrets Operator as a community-driven, vendor-neutral project that emerged from multiple open source initiatives, providing a consistent custom resource API across different cloud vendors and secret management APIs.

Protecting Your Crown Jewels with External Secrets Operator - Moritz Johner, Form3