![Cloud Security Podcast artwork](https://is5-ssl.mzstatic.com/image/thumb/Podcasts123/v4/16/a6/05/16a60571-4c72-5aa1-25c9-3593a319b7c2/mza_10336764897511393432.jpg/100x100bb.jpg)
KUBERNETES BEST PRACTICES 2022
Cloud Security Podcast
English - October 10, 2022 08:39 - 50 minutes - 46.4 MB - ★★★★★ - 52 ratingsEducation Homepage Download Apple Podcasts Google Podcasts Overcast Castro Pocket Casts RSS feed
In this episode of the Virtual Coffee with Ashish edition, we spoke with Jimmy Mesta (Jimmy's Twitter) about OWASP Kubernetes Top 10 and best practices for securing Kubernetes
Episode ShowNotes, Links and Transcript on Cloud Security Podcast: www.cloudsecuritypodcast.tv
Host Twitter: Ashish Rajan (@hashishrajan)
Guest Twitter: Jimmy Mesta (Jimmy's Twitter)
Podcast Twitter - @CloudSecPod @CloudSecureNews
If you want to watch videos of this LIVE STREAMED episode and past episodes - Check out our other Cloud Security Social Channels:
Spotify TimeStamp for Interview Questions
(00:00) Ashish's Intro to the Episode
(01:39) https://snyk.io/csp
(03:55) What is Kubernetes?
(05:15 )Kubernetes vs Containers
(06:38) Kubernetes and Docker
(09:08) Unmanaged Kubernetes
(11:14) Managed Kubernetes
(13:39) Security for Kubernetes Clusters
(15:42) OWASP top 10 Web Application
(17:59) Starting to build Kubernetes Cluster or Pod
(23:09) Security Misconfigurations in Kubernetes
(28:42) Supply Chain Vulnerabilities in Kubernetes
(32:06) RBAC and Policy Enforcement
(33:32) Logging and Monitoring in Kubernetes
(34:30) Broken Authentication
(35:17) Missing network segment approach
(36:07) Secrets Management Failure
(37:09) Misconfigured Cluster Components
(38:15) Outdated and vulnerable kubernetes component
(42:37) Asset Inventory for Kubernetes Cluster
(44:53) Threat Modelling in Kubernetes
(46:20)Cert management in Kubernetes
(48:02) Learn more about securing Kubernetes