George Hulme, Author at Cloud Native Now

Hot Topics

Scheduled Maintenance? That’s Another Way of Saying Technical Debt
Tetrate Streamlines Management of Policies
Upbound Donates Provider Code to Crossplane Project
How to Build and Manage a Cloud Center of Excellence
Oracle Bets on Graal to Run Cloud-Native Java Apps Faster

Sysdig APIs container security Apiiro CrowdStrike kubernetes Unit 42 container containerization security

Container Adoption not Slowed by Supply Chain Attacks

The extensive adoption of containerization and DevOps has changed enterprise software supply chain risks dramatically. In many ways, enterprise software risks have increased considerably because of the rising use of third-party software ...

George Hulme | June 28, 2021 | anchore, container security, containerization, containers

Containers and Security Q&A: Putting a Lid on Risk

There is an ongoing discussion today about how containers impact security. Most every development team is implementing (or at least talking about implementing) containers because there are so many benefits to containers ...

George Hulme | April 13, 2016 | container security, microservices

Techstrong TV – Live

Click full-screen to enable volume control

Watch latest episodes and shows

UPCOMING WEBINARS

CloudNativeNow.com
DevOps.com
SecurityBoulevard.com

Container Management

6 December 2023

Container management automates the creation, deployment and scaling of containers at scale. The great thing about containers is they are easy to rip and replace. The challenge of containers is that a cloud-native application environment can be made up of thousands of them. Keeping track of which ones are running The post Container Management appeared first on Cloud Native Now. [...]

Cloud Security – DevSecOps (NAM/EMEA)

2 November 2023

The post Cloud Security – DevSecOps (NAM/EMEA) appeared first on Cloud Native Now. [...]

Cloud Security – DevSecOps (APAC)

2 November 2023

The post Cloud Security – DevSecOps (APAC) appeared first on Cloud Native Now. [...]

AWS Immersion Day: Secure Container Workloads in Build-Time with Snyk

1 November 2023

With cloud deployments transforming what was traditionally ‘infrastructure’ to code, development and security teams face new, increased pressure in their attempt to build secure applications quickly. With developers in the driver’s seat, organizations are using modern DevOps processes with integration and deployments happening many times a day and at scale. The post AWS Immersion Day: Secure Container Workloads in Build-Time with Snyk appeared first on Cloud Native Now. [...]

Managing Security Posture and Entitlements in the Cloud

19 October 2023

Federating access and ensuring compliance across multi-cloud and hybrid environments is a challenge. This is especially true without proper visibility and processes in place to understand what’s being deployed and how to maintain least-privilege access. Credentials are the number-one attack vector in the cloud, and threat actors are increasingly using The post Managing Security Posture and Entitlements in the Cloud appeared first on Cloud Native Now. [...]

Infrastructure as Code

16 October 2023

Infrastructure-as-code (IaC) tools have transformed how IT environments in the age of the cloud are provisioned. It might also be said that they are now too much of a good thing. Misconfigurations of cloud resources are rife because the developers that provision them using IaC tools have little to no cybersecurity expertise. It is all […] [...]

The Top 5 Use Cases for Internal Developer Portals

12 October 2023

Internal Developer Portals do more than just act as a system of record for your whole stack. They also help drive alignment, improve MTTR, and even reduce cloud spend. In this program we’ll dive into the top 5 use cases we’ve seen across Cortex customers, and what measurable outcomes they’ve achieved. Learn the top 5 […] [...]

Mastering Project Governance: Empowering Effective Decision-Making for Project Success

12 October 2023

Join our team of experts to discover how Prince2 helps you to make better decisions that keep your projects and initiatives to delivery what your organization set out to do. [...]

ASPM: Leveling the AppSec Playing Field

11 October 2023

Modern applications are more complex, interconnected, and distributed than ever—and they’re changing at breakneck speed. To keep up, AppSec teams rely on disparate tools (SAST, SCA, DAST, container, IaC security, etc.) and processes (security questionnaires, pen tests, threat models, etc.) that are incredibly time-consuming, noisy, and still leave gaps. Application security posture management (ASPM) promises […] [...]

Scaling API Security Design Patterns With Kong And AWS

10 October 2023

As organizations increasingly rely on APIs to power their applications and services, API security has become a top priority. But making sure your APIs are secure from the very beginning – from the design stage – can be complicated. There are numerous architectural designs available when designing and building applications and it can be challenging […] [...]

AppSec 101: Complete Application Security Across the SDLC

31 October 2023

Whether you create your applications in-house or through a third party, testing for vulnerabilities early before production is essential to save time and reduce cost. In this Techstrong Learning Experience, we’ll explore the fundamental components of building a scalable and secure SDLC, from code inception to deployment. Enhance your application security knowledge and learn how.. The post AppSec 101: Complete Application Security Across the SDLC appeared first on Security Boulevard. [...]

Zero-Trust

30 October 2023

Zero trust approaches to cybersecurity are all the age these days as cyberattacks continue to increase in volume and sophistication. The challenge is zero-trust isn’t something that can be achieved by buying a platform off-the-shelf. Cybersecurity teams need to integrate multiple platforms and technologies to ensure zero-trust policies are enforced from the endpoint to the.. The post Zero-Trust appeared first on Security Boulevard. [...]

How to Shift Left the Right Way

26 October 2023

Application Security isn’t just a security problem. It’s a business problem. While many organizations understand the benefits of shifting security left, they fail to consider the platforms and fuel needed to make it truly work. Shifting Left is just as much about coordination and collaboration as finding and fixing. Join AppSec experts Scott Gerlach, co-founder.. The post How to Shift Left the Right Way appeared first on Security Boulevard. [...]

Reporting From the Pipeline: The State of Software Security in DevOps

24 October 2023

Requisite for proper DevSecOps, integrated security controls across the development lifecycle and CI pipelines establish mechanisms for rapid risk detection, accelerated remediation, and automated security gates. But aligning software development, AppSec, and DevOps teams to realize a vision for secure DevOps requires a clear strategy. This year’s DevSecOps Report defines a vivid image of organizations’.. The post Reporting From the Pipeline: The State of Software Security in DevOps appeared first on Security Boulevard. [...]

When Seconds Matter: Real-Time Cloud Security With AWS and Sysdig

24 October 2023

Security leaders are wrestling with managing and mitigating cloud risk. Cloud brings speed and automation, but adversaries are moving faster than ever. Seconds matter. Organizations are finding that a disjointed patchwork of tools slows response and leaves too many security gaps. A new approach is needed to streamline cloud security operations, reduce alert fatigue and.. The post When Seconds Matter: Real-Time Cloud Security With AWS and Sysdig appeared first on Security Boulevard. [...]

	Currently	Planned	N.A.
Artificial Intelligence / Machine Learning (AI/ML)
Generative AI (GenAI)
IoT Interconnectivity management
Location services (geo-fencing, beacons)
Physiological biometrics (face/voice/fingerprint/iris recognition)
Other

Container Adoption not Slowed by Supply Chain Attacks

Containers and Security Q&A: Putting a Lid on Risk

Kubernetes: The ‘All Things’ Platform

Top 9 Microservices Design Patterns

Stop Turning Success Into Failure With Microservices

Cosmonic Commits to Next Iteration of Wasm Standard

CNCF Survey Surfaces Cloud-Native Training Conundrum

Mobile Application Development PulseMeter