Magno Logan is an Information Security Specialist at Trend Micro, focused on application security and DevSecOps. He is the founder of the OWASP Paraíba Chapter and the JampaSec Security Conference located in Brazil. Logan is also a featured speaker at multiple industry conferences, including The Long Con in Canada, RoadSecSP, BSidesSP, MindTheSec RJ, OWASP App Sec Latam, BHack in Brazil and Just4Meeting in Portugal. He studied security and computer forensics at TC3 in New York and currently, his research at Trend Micro focuses on containers and cloud security. Logan is certified in: CompTIA CySA+, Security+, Cloud Essentials, EXIN Secure Programming and Ethical Hacking.

How to Secure Your Kubernetes Cluster

Here are some key steps for securing Kubernetes clusters Kubernetes is hot in the DevOps space and is now the third most wanted platform among developers. The appeal of the platform largely ...

Magno Logan | October 12, 2020 | containers, how-to, kubernetes, security

DevOps Experience 2020 – Live Streaming

SUBSCRIBE TO CJ NEWSLETTER

Get breaking news, free eBooks and upcoming events delivered to your inbox.

Email*
View Container Journal Privacy Policy

Alcide Brings Kubernetes Threat Detection and Policy Monitoring for Cloud-Native Applications to AWS Security Hub

October 22, 2020 Deborah Schalm 0

Diamanti Unifies Storage and Networking Across Kubernetes Clusters

October 22, 2020 Mike Vizard 0

Container Management Features Topics

Fairwinds Integrates Kubernetes Config Tool With CI/CD Platforms

October 21, 2020 Mike Vizard 0

Container Management Features Topics

Survey Sees Kubernetes Challenges Taking a Toll

October 21, 2020 Mike Vizard 0

News Releases

Alluxio Accelerates Scale, Introduces Data Orchestration Console to Advance Hybrid and Multi-cloud Data Orchestration

October 21, 2020 Deborah Schalm 0

DOWNLOAD EBOOK COLLECTION

UPCOMING WEBINARS

DevOps.com
Security Boulevard

Building Reliable and Observable APIs on OpenShift

23 October 2020

In the past few years containers and orchestrators, like OpenShift, have enabled developers to release API-driven services faster than ever. Developers are able to package their code as a container, expose their endpoints as Kubernetes services, and the orchestrator would do the rest, right? Not quite so. There are a lot other concerns that developers […] The post Building Reliable and Observable APIs on OpenShift appeared first on DevOps.com. [...]

Measure Customer Value with Self-Service Observability

27 October 2020

Today’s digital economy and customer experience demands flawless service availability and reliability whilst delivering customer value at ever increasing pace. This rate and scale of change requires automation to assist teams as they continuously evolve digital products and services. Any compromised reliability or availability along the way means fundamentally taking two steps backwards in terms […] The post Measure Customer Value with Self-Service Observability appeared first on DevOps.com. [...]

Deploying, Monitoring and Securing Applications on Kubernetes

27 October 2020

As organizations scale their Kubernetes implementation and the number of applications deployed, developer experience is going down as they are now forced to deal with infrastructure-related components to deploy and manage their application, which at scale, becomes complex. On the other side, the platform engineering team still has to maintain security and controls around all […] The post Deploying, Monitoring and Securing Applications on Kubernetes appeared first on DevOps.com. [...]

Integrating SAP into DevOps Pipelines: Why and How

28 October 2020

Teams practicing DevOps don’t usually have to spend much time thinking about applications like SAP, and SAP often remains a DevOps-free zone that is resolutely difficult to change. But SAP systems enable critical operational processes and in an increasingly interconnected technology stack, need to adapt at high speed if a business is going to be […] The post Integrating SAP into DevOps Pipelines: Why and How appeared first on DevOps.com. [...]

Don’t Let Security Trip You Up—DevOps and Security

28 October 2020

Static analysis tools can’t understand business logic. Security analysts doing manual secure code review can trace business logic but can’t hope to trace all tainted user data in a complex application. Penetration testing can’t find architecture issues. No single testing method finds all the vulnerabilities firms want to prevent. Looking for critical vulnerabilities in any modern […] The post Don’t Let Security Trip You Up—DevOps and Security appeared first on DevOps.com. [...]

More Than Monitoring: How Observability Takes You From Firefighting to Fire Prevention

27 October 2020

For some, observability is just a hollow rebranding of monitoring, for others it’s monitoring on steroids. But what if we told you observability is the new way to find out why—not just if—your distributed system or application isn’t working as expected? Today, we see that traditional monitoring approaches can fall short if a system or.. The post More Than Monitoring: How Observability Takes You From Firefighting to Fire Prevention appeared first on Security Boulevard. [...]

Best Practices for Driving Software Quality through a Federated Application Security Responsibility Model

28 October 2020

For DevSecOps to become a reality there must be a fundamental shift in mindset and approach to application security – moving from ownership solely within corporate security to a federated, shared model of responsibility that spans both security and software engineering teams. The post Best Practices for Driving Software Quality through a Federated Application Security Responsibility Model appeared first on Security Boulevard. [...]

How to Make the Promise of Machine Learning a Reality

29 October 2020

Machine learning is often discussed as a silver bullet solution to every cloud security challenge, but when push comes to shove it has fallen short of delivering on that promise. That’s because marketing hype has led to unrealistic expectations of machine learning. The reality is that machine learning is just one piece of the puzzle. The post How to Make the Promise of Machine Learning a Reality appeared first on Security Boulevard. [...]

Cyber Threat Intelligence: Highlights and Trends for 2020

3 November 2020

Get a comprehensive view of today’s threat landscape — and a deeper understanding of the biggest cyber risks facing organizations today — with new insights from the Nokia Threat Intelligence Lab. The post Cyber Threat Intelligence: Highlights and Trends for 2020 appeared first on Security Boulevard. [...]

The DevSecOps Showdown: How to Bridge the Gap Between Security and Developers

10 November 2020

DevSecOps requires processes and tools that enable weaving security throughout the DevOps pipeline. It is much more than a buzzword, and if you’d ask most organizations, well, they believe they are in the process of adopting DevSecOps tools and practices. But, are they? The post The DevSecOps Showdown: How to Bridge the Gap Between Security and Developers appeared first on Security Boulevard. [...]

How to Secure Your Kubernetes Cluster

10 Best Practices Worth Implementing to Adopt Kubernetes

2nd Watch Adds Hybrid Anthos Practice to IT Services Portfolio

Microsoft to Bring AKS Service to HCI Platforms

Docker & Kubernetes: Essential for Transformation

Misconfigurations Tops List of Security Issues Hampering Kubernetes