Name: Securing the Istio Service Mesh: Twistlock Compliance Checks
Start: 2019-03-27T17:00:00Z
End: 2019-03-27T17:40:26.000Z
Location: BrightTALK
Rating: 4

Twistlock is the leading provider of container and cloud native cybersecurity solutions for the modern enterprise.  From precise, actionable vulnerability management to automatically deployed runtime protection and firewalls, Twistlock protects applications across the development lifecycle and into production.  Purpose built for containers, serverless, and other leading technologies - Twistlock gives developers the speed they want, and CISOs the control they need.

While the cloud native continuum evolves to include CaaS, PaaS, and serverless architectures, VMs continue to be a vital part of the modern software stack. Whether you are running your workloads on a single platform or have embraced a hybrid cloud approach, integrating host security alongside visibility and protection for containers and serverless provides incredible benefits.
 
Protecting standalone VMs, especially for teams managing their hosts like cattle rather than pets, requires a modern security approach; integrating vulnerability management and compliance across the application lifecycle while combining powerful runtime protection and microsegmentation capabilities. 
 
 In this webinar, we will cover: 

•How VMs fit into the cloud native continuum
•Security requirements for vulnerability management and compliance across the workload lifecycle 
•Runtime protection demo, covering application control, file integrity monitoring, host forensics, and network micro-segmentation

Host Security and Cloud Workload Protection for the Modern Enterprise

Increasingly, organizations are looking to containers and microservices to provide the agility and scalability needed to satisfy their customers. While doing so, modern enterprises also need the ability to demonstrate and maintain compliance and be aware of common violations and costs associated with compliance issues.

The number one business issue CISOs face, at a macro level, is managing an organization's cyber risk. You can state this in a bunch of different ways, but everything the CISO does is to manage risk to information in a digital context.CIS plays a vital role in providing organizations with clear, specific, and measurable compliance requirements for the cloud, native stack and Twistlock provides world-class cloud native cybersecurity.

Watch this webinar to learn:
•How Twistlock checks its customers’ cloud native applications and infrastructure against the consensus-based best practice standards contained in Kubernetes, Docker, Linux, and AWS benchmarks
•Why organizations that leverage Twistlock can ensure that the configurations of their critical assets align with the CIS Benchmarks consensus-based practice standards  
• Twistlock's CIS Security Software Certificatied Benchmarks

Cloud Native Compliance: CIS Certified Benchmarks

Modern enterprises are implementing both the tools and the cultural changes required to embrace a DevSecOps mindset and approach. 

This webinar will highlight:

•Risks you can avoid by embracing DevSecOps
•DevSecOps as it relates to your container development pipeline
•How to integrate and automate key steps of the process

Join Twistlock Principal Solution Architect Ashley Ward for this live webinar presentation.

Operationalising DevSecOps: 7 Best Practices for Cloud Native Applications

Enterprises across government, healthcare, financial services, and the intelligence community that use Red Hat OpenShift to build, deploy, and manage their containers also use Twistlock to provide complete security protection for their environments. Twistlock open source contributions are already part of OpenShift, and since Twistlock runs as a native OpenShift app, it’s easy to deploy. As a Red Hat OpenShift Primed partner and Kubernetes Technology Partner, you can trust Twistlock to provide reliable, well-integrated defense for OpenShift.

Join Twistlock Director of Product Marketing and Evangelism Sonya Koptyev for this live webinar featuring RedHat Principal Technical Marketing Manager Jason Dobies and Twistlock Principal Solution Architect James Jones to learn more about:

•Vulnerability Prevention from Development to Runtime 
•OpenShift Security During Runtime 
•Enterprise Compliance 
•Risk Prioritization Tailored to Your Environment
•Advanced Threat Intelligence

Full Lifecycle Security with OpenShift + Twistlock

Today, infrastructure teams have more options than ever before for running cloud workloads to enable developers to build and deploy modern applications faster than ever before. The rise in container adoption, and adjacent cloud native technologies like Kubernetes, serverless, and on-demand container platforms such as AWS Fargate and Microsoft ACI, presents new security challenges.

Cloud native computing truly encompasses a continuum, spanning VMs, containers, serverless, and other emerging technologies. In this webinar, we hope to shine a light on ways security can protect the full cloud native continuum -- with speed to enable devops while providing security depth and control required by today’s enterprises.

Join featured speaker 451 Research Senior Analyst Fernando Montenegro and Twistlock CTO John Morello in this webinar to learn:

•Trends in modern infrastructure adoption and how this impacts the enterprise
•Challenges for IT teams and security leaders when protecting cloud native applications and workloads at scale
•Use cases and advice for implementing security best practices 

Register for this webinar to learn more.

Cloud Native: Infrastructure Trends, Security Challenges, and Best Practices

According to The New Stack, over 75 percent of organizations are already using or planning to use serverless in the next 18 months.* From AWS Lambda to Google Cloud Functions to Microsoft Azure Functions and KNative, enterprises have more cloud provider options than ever before when integrating serverless into their application portfolio.

In this webinar learn: 

•What security concerns there are for serverless applications 
•Why serverless adoption is growing 
•How to implement best practices for maximizing serverless security

Understanding Risks and How to Secure Serverless Applications

In this webinar, learn a helpful model of viewing the different cloud-native technologies as a continuum, to address different scenarios and efficiently choose which combination of technologies work best for running different workloads. 

The continuum starts with bare metal and VMs on the left, continues into “light” hypervisors (like Canonical’s LXD), and extends into containers and services like AWS Fargate and then, ultimately, serverless. Technologies to the left provide the most isolation and control with the tradeoff of greater management and performance overhead. Those to the right facilitate more agile development and app density with the tradeoff of less control.

The Continuum of Cloud Native Topologies

If you ask DevOps engineers about the benefits of containers and microservices, their responses will center on the agility, modularity, and scalability that microservices-based architectures provide.
Security is a crucial and often overlooked advantage of migrating to containers and microservices. 

Containers allow enterprise to secure applications and environments at a more granular and nuanced level. They also empower enterprises to identify and resolve potential security threats before they disrupt workflows, rather than having to adopt a defensive stance oriented around addressing attacks once they are fully underway. 

Watch this webinar to learn:

•Challenges with traditional security strategies

•What a proactive approach to security for a microservices-based environment looks like

•How your organization can adopt a proactive security stance when it makes the migration to containers.

Proactive Security: Revamp Your Security Strategy with Containers

Are you are a Security Expert, DevOps resource, or Dev at a large Enterprise?  Do you want to migrate your applications to containers and take them to production?  Learn how to avoid some of hurdles that you will you have to overcome in your enterprise. 

Modern enterprises have fully embraced the practicality of containers in their application development, but some are still lagging when it comes to operationalizing security in their container environments.

This webinar will highlight:

•How to implement controls to reduce risk, from build all the way to runtime
•How to integrate and automate key steps of the process
•Anecdotal examples of Twistlock customers challenges/successes from the front lines of container security operationalizing efforts

 Join Twistlock Solution Architect Michael Withrow for a presentation and platform demonstration.

Operationalizing Container Security: How to Standardize Container Security

Since the announcement of AWS Fargate at AWS re:Invent 2018, enterprises have been working with their development and devops teams to explore how this new technology aligns with their application modernization strategy. With this new CaaS platform comes new operational concerns and security threats.

Join Principal Solution Architect Kevin Lewis to learn more about:
• How enterprises are beginning to leverage AWS Fargate
• Potential risk and security concerns from this emerging paradigm
• Different security approaches and how Twistlock looks to provide runtime protection for applications using Fargate

Securing AWS Fargate from Build to Runtime

With the rapid increase in containers and cloud native applications at the enterprise, security teams and incident responders are continually tasked with new requirements and challenges for detecting and investigating security incidents. 

In this webinar, Neil Carpenter from Twistlock will discuss what a transition to containers means for incident response teams and how Twistlock can help to ease the pain. 

Register for this webinar to learn:
• Approaches to gathering incident data from Cloud Native applications
• Examples of incidents and investigations
• Details on Twistlock's brand-new Cloud Native Forensics Platform

Incident Response and Forensics in a Cloud Native World

Modern enterprises are implementing both the tools and the cultural changes required to embrace a DevSecOps mindset and approach. 

This webinar will highlight:

•Risks you can avoid by embracing DevSecOps
•DevSecOps as it relates to your container development pipeline
•How to integrate and automate key steps of the process

Join Twistlock Product Marketing Manager Keith Mokris for a presentation and platform demonstration.

Operationalizing DevSecOps: 7 Best Practices for Cloud Native Applications

As more organizations deploy containers across the enterprise, network security needs to become more automated and less dependent on static configurations. However, organizations’ network security practices have often not kept pace with the evolution of cloud native technology, and expertise on network security for containers and microservices is lacking.

Companies often rely primarily on static perimeter based defenses and manually defined VLANs which don’t work well in a cloud native environments because there is no reliable perimeter.

In this session, Paul Fox, Principal Solution Architect at Twistlock, will:
• Explain why cloud native environments require a new approach for firewalls
• Share specific tactics IT and security teams can implement to ensure security across the stack
• Conduct a live demonstration of Windows to linux container network traffic firewalling

Why Cloud Native Requires a New Approach to Firewalls

Join this live panel discussion with experts at DockerCon to learn how containers and microservices can help modernize your IT infrastructure and increase application security.

Tune into this interactive Q&A session to hear from Docker, Infrastructure, Cloud and DevOps experts while they discuss the following:

- The pros and cons to modernizing your monolithic applications
- Trends and technologies in application security
- The security risks associated with open source and cloud native applications
- How containers and microservice architectures can increase security and modernize your IT infrastructure

This live panel will be streamed directly from DockerCon 2018 in San Francisco! Join us live from the comfort of your desk.

Moderated by: Lee Calcote, Head of Technology Strategy, SolarWinds
Panelists: Jim Bugwadia, Founder, Nirmata, Robert Starmer, Cloud Advisor & Founding Partner, Kumulus Technologies and John Morello, CTO, Twistlock

How to Modernize Your IT Infrastructure & Secure Your Applications

The journey to cloud native can be a winding road, and with more and more organizations starting on this journey, companies are being taken far beyond just simply containerizing applications.

Join this live Q&A with John Morello, CTO of Twistlock as he discusses how server-less and container-as-a-service platforms like AWS Fargate are changing how organizations deploy applications - and what this means for security.

Beyond Containers: Going Cloud Native with Serverless Architectures

In late 2017, The National Institute of Standards and Technology (NIST) released Special Publication (SP) 800-190, the Container Security Guide, a set of guidelines for securing container applications and infrastructure.

This panel webinar, hosted by NIST SP 800-190 co-authors, John Morello (CTO, Twistlock), and Murugiah Souppaya (Computer Scientist, NIST) will cover:

• Why NIST SP 800-190 was created, the open process used to develop it, and how all organizations can benefit from it
• Some of the specific container risks identified in the SP
• Top recommended countermeasures for each risk
Implementation guidance and best practices

In addition, the session will highlight how organizations can leverage functionality provided by container-focused orchestration and security platforms to automate compliance across the development lifecycle - reducing overall attack surface and delivering comprehensive threat protection.

Securing Containers w/ NIST SP 800-190

As software eats the world, cloud native tools and methodologies — like containers and devops— are continuously evolving. Organizations that can identify the major trends in this ever-changing landscape and then successfully secure a new cloud native environment will have an advantage in the market.

Join Twistlock's VP of Marketing, Josh Thorngren, as he shares the macro trends he’s seeing in the cloud native security space and the extended cloud native ecosystem in 2018.

Specifically, we’ll cover:
* Rethinking your organization’s approach to defend against the proliferation of easy-to-use, easy-to acquire hacks, exploits and malware
* How to shift security left by developing an entirely new paradigm and set of principles for software delivery and protection
* How to modernize legacy workloads with containers

Trends in Container and Cloud Native Cybersecurity

Service meshes are one of the newest innovations in the world of microservices and cloud-native computing. They’re a critical tool for making microservices applications feasible to implement and manage.

At the same time, however, service meshes — like all components of the software stack — must be properly secured. Without sufficient security oversight, service meshes run the risk of becoming a vector for attack into software infrastructure, as well as a compliance liability.

Register now to learn more about:

•How service meshes work and which security considerations apply to them
•Why Twistlock identified Istio compliance checks as an important gap to address for the cloud native community
•The official Twistlock compliance checks for Istio, including proper configurations, risk severity, major threats, and countermeasures

Securing the Istio Service Mesh: Twistlock Compliance Checks

Microservices

Containerization

Istio

Service Mesh

Cyber Security

Cloud Native

Application Lifecycle Management

Kubernetes

Infrastructure

Architecture

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

The application development community features top thought leadership focusing on optimal practices in software development, SDLC methodology, mobile app development and application development platforms and tools. Join top software engineers and coders as they cover emerging trends in everything from enterprise app development to developing for mobile platforms such as Android and iOS.

Application Development

Join thousands of engaged IT professionals in the application management community on BrightTALK. Interact with your peers in relevant webinars and videos on the latest trends and best practices for application lifecycle management, application performance management and application development.

Application Management

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Securing the Istio Service Mesh: Twistlock Compliance Checks

Presented by

About this talk

More from this channel