Overview
This course covers the theory and practice of container security at a leading tech company. The learning outcomes include understanding container security theory, architecture, practical considerations, and lessons learned from real-world experiences. The course teaches skills such as cloud security, control plane security, identity management for people and services, authorization, secret protection, vulnerability management, and change management. The teaching method includes a mix of theoretical concepts, architectural overviews, and practical considerations. The intended audience for this course includes developers, DevOps engineers, security professionals, and anyone interested in learning about container security in a real-world context.
Syllabus
Intro
Context
Containers at Netflix
Titus: High Level Architecture
Newt
Rapid growth of container use cases
Container Ecosystem Security
Cloud Security
Control Plane Security
Identity for People
Metatron: Identity for Services
Gandalf: Authorization
SSH Access
Secret Protection
Runtime
Vulnerability Management
Change Management
Takeaways
Taught by
Docker