Magno Logan is an Information Security Specialist at Trend Micro, focused on application security and DevSecOps. He is the founder of the OWASP Paraíba Chapter and the JampaSec Security Conference located in Brazil. Logan is also a featured speaker at multiple industry conferences, including The Long Con in Canada, RoadSecSP, BSidesSP, MindTheSec RJ, OWASP App Sec Latam, BHack in Brazil and Just4Meeting in Portugal. He studied security and computer forensics at TC3 in New York and currently, his research at Trend Micro focuses on containers and cloud security. Logan is certified in: CompTIA CySA+, Security+, Cloud Essentials, EXIN Secure Programming and Ethical Hacking.

The Four Cs of Cloud-Native Security

Open source container orchestration systems like Kubernetes have gone mainstream. Businesses are moving toward cloud-native technologies, building applications in the cloud to maximize their scalability. While a recent survey indicated cloud-native adoption ...

Magno Logan | September 17, 2021 | cloud native security, container security, KubeCon

How to Secure Your Kubernetes Cluster

Here are some key steps for securing Kubernetes clusters Kubernetes is hot in the DevOps space and is now the third most wanted platform among developers. The appeal of the platform largely ...

Magno Logan | October 12, 2020 | containers, how-to, kubernetes, security

TechStrong TV – Live

Watch latest episodes and shows

SUBSCRIBE TO CJ NEWSLETTER

Get breaking news, free eBooks and upcoming events delivered to your inbox.

Email*
View Container Journal Privacy Policy

4 Container Runtime Projects From CNCF

October 25, 2021 Bill Doerrfeld 0

Container Security Features News Topics

Portworx by Pure Storage Extends K8s Data Protection

October 22, 2021 Mike Vizard 0

Container Management Features Topics

7 Open Source Cloud-Native Tools For Observability and Analysis

October 22, 2021 Bill Doerrfeld 0

Container Management Container Security Features Topics

What Holistic Cloud-Native Security and Observability Look Like

October 21, 2021 Brendan Creane 0

Container Ecosystems Features Topics

Cloud-Native: The Engine Driving a Trillion-Dollar Economy

October 20, 2021 Manish Prasad 0

UPCOMING WEBINARS

DevOps.com
Security Boulevard

Journey to the Cloud: Cloud Migration and Modernization Success & Survival

2 November 2021

Cloud migration and infrastructure modernization are two of the most critical investment areas in digital transformation for IT decision-makers today. For many IT leaders, the issue is no longer about why to leverage the cloud. Instead, it is all about correctly migrating and modernizing their infrastructure to rapidly deploy digital applications, optimize operations with the […] The post Journey to the Cloud: Cloud Migration and Modernization Success & Survival appeared first on DevOps.com. [...]

Release Management Has Progressed, Have You?

2 November 2021

Proven time and again, automating bad processes just helps you do the wrong thing faster! Enter Value Stream Management and the new focus of Release Managers as the guides to improving DevOps capabilities and automation masters in driving efficiency through the software lifecycle. The post Release Management Has Progressed, Have You? appeared first on DevOps.com. [...]

Best Practices for Secure Infrastructure-as-Code Initiatives

1 November 2021

Facilitated by the growth of cloud computing and virtualization, infrastructure-as-code (IaC) has revamped the way that organizations deploy and maintain their IT infrastructure. But IaC initiatives need to be implemented with security and access controls in mind. The post Best Practices for Secure Infrastructure-as-Code Initiatives appeared first on DevOps.com. [...]

Accelerate Your Journey to Hybrid Cloud and Containerization

27 October 2021

Reaching true hybrid cloud at speed requires a level of automation and integration that’s a challenge for many organizations. Our container is pre-enabled with key features. The post Accelerate Your Journey to Hybrid Cloud and Containerization appeared first on DevOps.com. [...]

What’s on the Horizon for the Software Supply Chain?

27 October 2021

Open source and third-party component use is growing. The number of “hands,” pieces and parts that contribute to the life of an application is also increasing. Anything that goes into your code and anyone contributing to it is a link in the supply chain. Your software supply chain risk is inherited from your dependencies. Lack […] The post What’s on the Horizon for the Software Supply Chain? appeared first on DevOps.com. [...]

Modern Ransomware: How We Got Here and Where We’re Going

18 November 2021

If you’re the sort of person who likes attacking people with ransomware, COVID-19 has been a wonderful opportunity. Attack surfaces went up by a factor of 100 while would-be victims scrambled to protect themselves. But if you’re in the crosshairs of these attacks, you want faster ransomware recovery solutions and security strategies that adapt to.. The post Modern Ransomware: How We Got Here and Where We’re Going appeared first on Security Boulevard. [...]

Helping People Adopt DevSecOps in the Federal Government (and the Enterprise)

9 November 2021

Many executives, managers and individual contributors in the federal government and large enterprise spaces may feel overwhelmed with the rate of change in the IT landscape today. From the cloud to DevOps to DevSecOps, it can feel like every day there is something new that you “should be doing” to keep pace with your competitors.. The post Helping People Adopt DevSecOps in the Federal Government (and the Enterprise) appeared first on Security Boulevard. [...]

API Security, Privacy and Governance: Shift Left DevOps and DevSecOps?

9 November 2021

APIs are the fabric of modern service delivery and compartmentalized app development, but the application logic and sensitive data that APIs expose has made them a high-value target of threat actors. Prioritizing API security within modern application development and multi-cloud operations is paramount to mitigate threats and data exposure among the myriad of internal and.. The post API Security, Privacy and Governance: Shift Left DevOps and DevSecOps? appeared first on Security Boulevard. [...]

Fixing Hardcoded Secrets the Developer-Friendly Way

1 November 2021

The practice of hard-coding secrets like passwords, tokens, and API keys is skyrocketing as applications increasingly leverage dependencies that require integration and Infrastructure-as-Code that must authenticate services. Yet, hardcoded secrets have been at the heart of numerous security incidents because they expose access to valuable resources and enable attackers to rapidly “peel the onion.” Furthermore,.. The post Fixing Hardcoded Secrets the Developer-Friendly Way appeared first on Security Boulevard. [...]

How to Give Everyone Access to Your Data and Still Keep it Safe

26 October 2021

As companies become data-driven, they need to make their data accessible to developers, DevOps teams and data engineers to facilitate better applications, compress release cycles and improve productivity. However, managing access to databases is, arguably, still stuck in the stone age. It’s difficult, if not impossible, to integrate with tools like Okta, Auth0 and AD.. The post How to Give Everyone Access to Your Data and Still Keep it Safe appeared first on Security Boulevard. [...]

NetApp Promises Kubernetes-Native Unified Data Store

Siloscape: The Dark Side of Kubernetes

4 Expert-Level Things I Wish I’d Known About Kubernetes

Hardening Kubernetes Beyond NSA, CISA Guidance

Enabling Successful Stateful Kubernetes Deployments