Securing Microservices in Containerized Environments

  • Webcast Aired Tuesday, 10 Dec 2019 3:30PM EDT (10 Dec 2019 20:30 UTC)
  • Speakers: Jacob Williams, Tim Buntel

Modern software development involves breaking applications up into smaller microservices deployed in containers. In this microservice world, teams focus on the higher, more abstracted tiers of the stack - the application, the container, and the orchestrator - with the cloud infrastructure provider handling everything else. That may make it seem like security should be easier for these layers; after all, there are fewer tiers in the stack to monitor. In reality, it can actually be more challenging because they rely on frequently changing, de-coupled ephemeral services communicating over unreliable networks.

Cloud security requires an understanding of the movement of data into and out of the application from the internet, the movement of information between services at runtime, and the way the services run atop the abstracted layers of infrastructure (container host, container orchestrator). This webinar will explain these challenges and suggest steps that security teams can take to overcome them.