Containerized environments can be incredibly difficult to secure and even more difficult to measure from a compliance perspective. So many of the compliance and regulatory standards that we deal with on a regular basis don’t easily apply to cloud computing, much less containerization. The goals of this talk are to share my experiences in preparing these environments to be audited in a highly regulated space, help you understand how containerization security controls work, and give you guidance on how to secure and audit containerized environments.
Andy Barrett is the Director of Information Security, aka "Security Person," for PayIt. Prior to joining the company, Andy was a Principal Consultant with Fishtech in Kansas City and served in various security-related roles in the public sector, telecommunications, financial services, and healthcare industries. When he's not doing security stuff, he's hanging out with his family or screaming obscenities at golf balls.