Loading…
In-person
19-22 March
Learn More and Register to Attend

The Sched app allows you to build your schedule but is not a substitute for your event registration. You must be registered for KubeCon + CloudNativeCon Europe 2024 to participate in the sessions. If you have not registered but would like to join us, please go to the event registration page to purchase a registration.

Please note: This schedule is automatically displayed in Central European Standard Time (UTC +1). To see the schedule in your preferred timezone, please select from the drop-down menu to the right, above "Filter by Date." The schedule is subject to change and session seating is available on a first-come, first-served basis. 
Back To Schedule
Thursday, March 21 • 17:25 - 18:00
Running PCI-DSS Certified Kubernetes Workloads in the Public Cloud - Stephen Hoekstra & Marcel Bezemer, Schuberg Philis

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Tweet Share
Feedback form is now closed.


Compliance in the public cloud with Kubernetes can sound difficult and scary, but it doesn’t have to be. In this session I will talk about our experiences running a PCI-DSS certified Kubernetes cluster in AWS, and share some lessons learned to help you achieve the same. This talk will start by covering high-level PCI-DSS requirements and discuss how we addressed them using several CNCF and open source projects: * GitOps with ArgoCD * Network policies and visibility with Cilium * In-cluster image scanning and visualisation with Trivy and Grafana * Open Policy Agent Gatekeeper or Kyverno for Policy as Code * Cilium Tetragon for runtime security visibility By the end of the session, you should walk away with the knowledge of what is needed to run your own PCI-DSS workloads on Kubernetes in the public cloud, with tangible examples and best practice recommendations.
Speakers
avatar for Stephen Hoekstra

Stephen Hoekstra

Mission Critical Engineer, Schuberg Philis
Stephen is a Mission Critical Engineer at Schuberg Philis, with a key focus on helping customers plan, build and run their cloud applications within AWS, and has been involved in building a managed Kubernetes platform for a financial institute in the Netherlands, with his focal points... Read More →
MB

Marcel Bezemer

Mission Critical Engineer, Schuberg Philis

SBPKubeConEU2024 pdf
Thursday March 21, 2024 17:25 - 18:00 CET
Pavilion 7 | Level 7.3 | S02
  Cloud Native Experience