Hot Topics

Docker, Inc. Celebrates 10th Anniversary With Alliances
Backslash Security Unveils Tool to Visualize Cloud-Native Code Flows
SRE Use Cases for AI-Assisted Kubernetes
Rafay Systems Adds Templates to Provision Kubernetes Environments
Holding Retrospectives in a Cloud-Native World

Magno Logan is an Information Security Specialist at Trend Micro, focused on application security and DevSecOps. He is the founder of the OWASP Paraíba Chapter and the JampaSec Security Conference located in Brazil. Logan is also a featured speaker at multiple industry conferences, including The Long Con in Canada, RoadSecSP, BSidesSP, MindTheSec RJ, OWASP App Sec Latam, BHack in Brazil and Just4Meeting in Portugal. He studied security and computer forensics at TC3 in New York and currently, his research at Trend Micro focuses on containers and cloud security. Logan is certified in: CompTIA CySA+, Security+, Cloud Essentials, EXIN Secure Programming and Ethical Hacking.

retrospectives cloud-native Chronosphere cloud-native security Spectro

The Four Cs of Cloud-Native Security

Open source container orchestration systems like Kubernetes have gone mainstream. Businesses are moving toward cloud-native technologies, building applications in the cloud to maximize their scalability. While a recent survey indicated cloud-native adoption ...

Magno Logan | September 17, 2021 | cloud native security, container security, KubeCon

security Veracode key management container security CNCF security secure Kubernetes

How to Secure Your Kubernetes Cluster

Here are some key steps for securing Kubernetes clusters Kubernetes is hot in the DevOps space and is now the third most wanted platform among developers. The appeal of the platform largely ...

Magno Logan | October 12, 2020 | containers, how-to, kubernetes, security

Techstrong TV – Live

Click full-screen to enable volume control

Watch latest episodes and shows

UPCOMING WEBINARS

DevOps.com
SecurityBoulevard.com

Malicious Packages Special Report: Attacks Move Beyond Vulnerabilities

11 April 2023

Threat actors are after our sensitive data. In 2023, the number of malicious packages published to Node Package Manager (npm) and RubyGems ballooned 315% compared to 2021, and 85% of malicious packages discovered in existing applications were capable of exfiltration – meaning they could cause an unauthorized transmission of information. Software packages containing malicious code […] The post Malicious Packages Special Report: Attacks Move Beyond Vulnerabilities appeared first on DevOps.com. [...]

The Impact of Low-Code/No-Code on DevOps

10 April 2023

Regardless of which low-code or no-code tool is used, chances are good that the individual building an application using that tool is a professional developer. The simple fact is, it’s faster to build applications using low-code tools. Rather than allowing the application development backlog to become worse than it already is, many professional developers have […] The post The Impact of Low-Code/No-Code on DevOps appeared first on DevOps.com. [...]

Using LaunchDarkly Feature Flags in AWS Serverless

6 April 2023

In this AWS-sponsored webinar, Brian Rinaldi (LaunchDarkly) and Welly Siauw (AWS) will share best practices for implementing feature flags into the release of a serverless web application. They will also discuss important considerations when adding flags to ephemeral serverless functions. The post Using LaunchDarkly Feature Flags in AWS Serverless appeared first on DevOps.com. [...]

Using Value Stream Automation Patterns and Analytics to Accelerate DevOps

6 April 2023

In this program, we will highlight the importance of eliminating waste by automating the flow of information between systems and people in the DevOps pipeline and how to use the data collected across the value stream for metrics and analytics. The post Using Value Stream Automation Patterns and Analytics to Accelerate DevOps appeared first on DevOps.com. [...]

Key Strategies for a Secure and Productive Hybrid Workforce

4 April 2023

In the current hybrid workforce environment, organizations are in a constant battle to balance security and productivity. Legacy architectures aren’t sufficient for today’s work-from-anywhere, distributed teams, but most organizations struggle to modernize to address security and productivity challenges. To optimize for remote and in-office users, organizations need to provide secure and consistent access from any […] The post Key Strategies for a Secure and Productive Hybrid Workforce appeared first on DevOps.com. [...]

Ransomware

22 May 2023

Ransomware continues to be the most disruptive and pernicious of all cyberattacks. There’s still not a lot that can be done to prevent these attacks, but it’s apparent that the scourge requires a different approach to cybersecurity if attacks are to be thwarted. A defense-in-depth approach to cybersecurity is quickly evolving to better combat the.. The post Ransomware appeared first on Security Boulevard. [...]

https://webinars.securityboulevard.com/ciso-panel-tips-for-optimizing-cloud-native-security-stack-in-2023?utm_campaign=2023.05.03_Aqua_Webinar_SB&utm_source=BMRegister

3 May 2023

In this session, our CISO panel will discuss how they evaluate their current security tech stack and the paths they have taken to consolidate and optimize the tools they use. They will share their tips for building an effective cloud-native security practice and how a platform approach delivers business value beyond cost savings without sacrificing.. The post https://webinars.securityboulevard.com/ciso-panel-tips-for-optimizing-cloud-native-security-stack-in-2023?utm_campaign=2023.05.03_Aqua_Webinar_SB&utm_source=BMRegister appeared first on Security Boulevard. [...]

Securing Open Source

24 April 2023

It’s not just small startups that are dependent on open source software—enterprises and even many federal agencies are increasingly relying on open source software and applications. Following an executive order from the Biden administration that requires federal agencies to secure software supply chains, organizations of all sizes are revisiting how they consume open source software.. The post Securing Open Source appeared first on Security Boulevard. [...]

Case Study: Improving Code Security With Continuous Software Modernization

13 April 2023

In this program, Choice Hotels explains how they overcame these challenges for their development teams with Moderne’s remediation automation. With this solution, they applied the principles and practices of continuous software modernization and kept their code in a more secure state. The post Case Study: Improving Code Security With Continuous Software Modernization appeared first on Security Boulevard. [...]

The State of Cloud-Native Security 2023

12 April 2023

Learn what’s keeping 2,500 of your peers awake at night. Stay informed with empirical insights to inform your cloud-native security decisions. The State of Cloud-Native Security Report 2023 is the result of a months-long survey traversing seven countries and five sectors of industry to consult with 2,500 cloud security and DevOps professionals—from chief executives to.. The post The State of Cloud-Native Security 2023 appeared first on Security Boulevard. [...]

VMware Extends Kubernetes Reach to Bare Metal Platforms

Principle of Shared Responsibility in Cloud-Native Applications

Red Hat Pushes OpenShift to the Network Edge

Advanced Container Security: Auto-Benchmarking, Pentesting, XDR and More

3 Miniaturized Kubernetes Distros to Manage Compact Containers