Bra podd

Are you struggling to implement robust container security at scale without creating friction with your development teams? In this episode, host Ashish Rajan sits down with Cailyn Edwards, Co-Chair of Kubernetes SIG Security and Senior Security Engineer, for a masterclass in practical container security. This episode was recorded LIVE at KubeCon EU, London 2025.

In this episode, you'll learn about:

Automating Security Effectively: Moving beyond basic vulnerability scanning to implement comprehensive automation
Bridging the Security-Developer Gap: Strategies for educating developers, building trust, fostering collaboration, and understanding developer use cases instead of just imposing rules.
The "Shift Down" Philosophy: Why simply "Shifting Left" isn't enough, and how security teams can proactively provide secure foundations, essentially "Shifting Down."
Leveraging Open Source Tools: Practical discussion around tools like Trivy, Kubeaudit, Dependabot, RenovateBot, TruffleHog, Kube-bench, OPA, and more.
The Power of Immutable Infrastructure: Exploring the benefits of using minimal, immutable images to drastically reduce patching efforts and enhance security posture.
Understanding Real Risks: Discussing the dangers lurking in default configurations and easily exposed APIs/ports in container environments.
Getting Leadership Buy-In: The importance of aligning security initiatives with business goals and securing support from leadership.

Guest Socials: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠Cailyn's Linkedin

If you want to watch videos of this LIVE STREAMED episode and past episodes - Check out our other Cloud Security Social Channels:

-⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠Cloud Security Podcast- Youtube⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠

- ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠Cloud Security Newsletter ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠

- ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠Cloud Security BootCamp⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠

If you are interested in AI Cybersecurity, you can check out our sister podcast -⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ AI Cybersecurity Podcast

Questions asked:

(00:00) Intro: Container Security at Scale

(01:56) Meet Cailyn Edwards: Kubernetes SIG Security Co-Chair

(03:34) Why Container Security Matters: Risks & Exposures Explained

(06:21) Automating Container Security: From Scans to Admission Controls

(12:19) Essential Container Security Tools (Trivy, OPA, Chainguard & More)

(19:35) Overcoming DevSecOps Challenges: Working with Developers

(21:31) Proactive Security: Shifting Down, Not Just Left

(25:24) Fun Questions with Cailyn

Resources spoken about during the interview:

Cailyn's talk at KubeCon EU 2025

Senaste avsnitt

Scaling Container Security Without Slowing Developers

Senaste avsnitt

Guide to Hybrid Cloud & Bare Metal Secret Management

"Escape-Proof" Cloud: How Block built an Automated Approach to Egress Control

Prioritizing Cloud Security: How to Decide What to Protect First

Migrating from “Tick Box" Compliance to Automating GRC in a Multi-Cloud World

Using AI Agents to Solve Cloud Vulnerability Overload

Adapting to New Threats, Copilot Risks & The Future of Data (Feat. Matthew Radolec, Varonis)

Securing AI: Threat Modeling & Detection

CYBERSECURITY for AI: The New Threat Landscape & How Do We Secure It?

Cloud Security Evolved: From CNAPP to AI Threats

RSA Conference 2025 Recap: Top Themes, Actionable Insights & Future Trends

Mindset: Modern SOC Strategies for Cloud & Kubernetes (Ft Sergej Epp. Ex-Deutsche Bank)

Scaling Container Security Without Slowing Developers

How Attackers Stay Hidden Inside Your Azure Cloud

How Confluent Migrated Kubernetes Networking Across AWS, Azure & GCP

The New Future of Cloud Security: Vendor Lock-In, Runtime, and SOC Readiness

Detection Engineering with Google Cloud

CNAPPs & CSPMs don’t tell the full cloud security story

Securing AI Applications in the Cloud

Realities of Cloud Networking in AWS

Cloud Incident Response in Microsoft Azure

AWS Multi-Account Security: What Netflix Learned

Cloud Security Detection & Response Strategies That Actually Work

CISO Challenges Across Industries

Why Solving the Data Problem is Key to Cloud Security?

The economics of cybersecurity and trends

The Truth About CNAPP and Kubernetes Security

Cybersecurity Isn’t Crowded: Security Engineering and the 5,000 Vendor Problem

Centralized VPC Endpoints - Why It Works for AWS Networking

What is CADR?

Building Platforms in Regulated Industries

Dynamic Permission Boundaries: A New Approach to Cloud Security

Building a Resilient Cloud Security Program after Merger and Acquisition

Building Data Perimeter in Cloud in 2024

Navigating NIST CSF 2.0: Guide to Frameworks and Governance

Building a SOC Team in 2024 - Automation & AI

Cloud Identity Lifecycle Management Explained!

Traditional PAM vs Cloud CPAM for a cloud first world

The Role of Cloud Security Research in 2024

Edge Security is the Key to Cloud Protection

Is your CI/CD Pipeline your Biggest Security Risk?

State of Cloud Security - Practitioner Edition

BlackHat USA 2024 Highlights and Recap

Building an Incident Response Team for High-Growth Companies

State of Cloud Security 2024 - Leadership Edition

Cloud Native Strategies from a FinTech CISO

Fixing Cloud Security with AWS Lambda

What is confidential computing? Explained for 2024

The Evolution of Infrastructure as Code so far - 2024 Edition

What is AI-SPM?

Creating Effective Sigma Rules with AI

What is the future of security operations with AI in 2024?

Cloud Native Security Strategies for 2024

Real-World Cloud Security Challenges and Solutions Explained for 2024

Why Least Privilege Matters in Cloud Security?

How is Kubernetes Network Security Evolving?

The Future of Software Development with AI

The role of Real Time Defense in Cloud Security

CISO's guide to embracing risk in business

Why Email Breaches Still Happen?

Essential Strategies to master Incident Response in Cloud

From Code Suggestions to Security

Cloud Security Operations for Modern Threats

Understanding Threat Modeling in Cloud

Balancing Efficiency & Security: AI’s Transformation of Legal Data Analysis

Sidecar Container Vulnerability in Kubernetes explained

Role of application security posture management in cybersecurity

Cybersecurity Best Practices and Password Security in Cloud and AI

Multicloud strategy for AWS and GCP

AI's Role in Security Efficiency - Kubernetes Edition

Build an Effective AWS Cloud Security Program in 2024

Offensive Cloud Security Program for 2024

Understand Your Cloud Security Landscape to cut through the noise!

Kubernetes Security Trends 2024 | Software Supply Chain Security, Zero Trust and AI

Kubernetes Network Security for Multi Tenancy

AWS reInvent 2023 - Security highlights and announcements

eBPF - Kubernetes Network Security without the Blind Sides!

Attack Path Analysis for Better Kubernetes Security

Secure your SaaS applications like this!