Zero Privilege Architectures Thijs Ebbers Diana Iordan ING
In this talk we'll start out with a bit of Dutch folkore (Hey, we're in Amsterdam :-)), we'll explain what is wrong with typical "Least Privilege" & "Zero Trust" implementations and ask the confronting question: "Are we playing for a Draw or are we playing to Win against our IT security adversaries...? Next we'll use some "classical" laws of war/diplomacy, biology/business and engineering to develop a modern IT architecture suitable for todays challenges.
This architecture is based on desired state infrastructure, built using CI/CD and Infra/Policy-as-code. It stores its data in Data Services. It uses Events, Observability and IAM to operate securely. (In summary: we cover quite a lot of the CNCF landscape...) We'll explain this architecture and show different views of this architecture for: -
Architects/Developers/Engineers - C-level Managers - CISO/Auditors And answer some questions like: - Can it be build ? (spoiler : Yes, ING is running it today, details in previous talks we gave at OpenShift Commons Detroit & San Diego) - My workloads won't fit - We're not a bank, we cannot afford this - Doesn't this collide with current views/implementations of established entities in the security(/compliancy) industry ? To conclude answer any other question the audience asks
Speakers:
Thijs Ebbers - ING Cloud Native Architect
Diana Iordan - ING Engineer
Видео Zero Privilege Architectures Thijs Ebbers Diana Iordan ING канала We are ING Tech
This architecture is based on desired state infrastructure, built using CI/CD and Infra/Policy-as-code. It stores its data in Data Services. It uses Events, Observability and IAM to operate securely. (In summary: we cover quite a lot of the CNCF landscape...) We'll explain this architecture and show different views of this architecture for: -
Architects/Developers/Engineers - C-level Managers - CISO/Auditors And answer some questions like: - Can it be build ? (spoiler : Yes, ING is running it today, details in previous talks we gave at OpenShift Commons Detroit & San Diego) - My workloads won't fit - We're not a bank, we cannot afford this - Doesn't this collide with current views/implementations of established entities in the security(/compliancy) industry ? To conclude answer any other question the audience asks
Speakers:
Thijs Ebbers - ING Cloud Native Architect
Diana Iordan - ING Engineer
Видео Zero Privilege Architectures Thijs Ebbers Diana Iordan ING канала We are ING Tech
Показать
Комментарии отсутствуют
Информация о видео
Другие видео канала
Kubernetes, Resistance Is Futile Adnan Hodzic ING
Challenges of regulated, large enterprises in moving to the public cloud
How are new technologies impacting banking fraud?
Online meetup 'Derive the Fair Value with Kubernetes cluster and build up your Economic ValueUntitl
ING QCon Plus - Ferd Scheepers “A governed Data Mesh needs (open) metadata”
Frontend developers Meet up 2022
Interview with Ron van Kemenade CTO at ING Bank - DevOps Enterprise Summit Europe
Robert van Dalen David van der Leij
How to make your Blockchain apps quantum resistant
Automata Theory by Katja Schuitemaker
How ING Accelerated Kubernetes Deployments Across 500+ Applications: Challenges & lessons learned
A Data Mesh Needs Open Metadata by Ferd Scheepers (WeAreDevelopers conference June 2022)
The security challenges that a software engineer faces in ING
AI for Java developers, how to create responsible value - by Johan Hutting
Januar Wayong Becoming a better developer QConPlus
Meet up KYC Continuous Fight Against Financial and Economic Crime
Driving Business Success: Exploring ING's Tech Strategy for Customer Value Creation
Observability of Streaming Kafka Applications by Tim van Baarsen - Software developer at ING
Tech at ING
Migrating Spring Boot Config Annotations to Functional Kotlin by Nicolas Frankel - ING Tech Meetups