Forwarded from Kube Careers
This week's 6 best Kubernetes vacancies that focus on security are:
DevSecOps Engineer with Plaid
💰 $215.3K to $322.9K a year
👨💻 Remote from the United States
→ https://kube.careers/t/82ecabe4-3ee3-408e-9e59-de3130fd3475?s=55
DevSecOps Engineer with Applied Intuition
💰 $65K to $400K a year
🏠 From the office in Mountain View, CA, USA
→ https://kube.careers/t/c6291093-2e86-4446-aab7-7f34af1a3112?s=55
DevSecOps Engineer with PagerDuty
💰 $176K to $277K a year
🏠 From the office in Atlanta, GA, USA
→ https://kube.careers/t/f7204480-93a6-477a-996f-eee9e4c5f9bd?s=55
DevSecOps Engineer with Hyperscience
💰 $190K to $260K a year
👨💻 Remote from the United States
→ https://kube.careers/t/ab01bf82-75af-4610-ba58-d58cd09f529a?s=55
Security Architect with Collectors
💰 $160K to $250K a year
🏠 From the office in Santa Ana, CA, USA
→ https://kube.careers/t/b13459c6-6642-4c50-bdc0-c95a11cdd990?s=55
👉 Browse all 449 Kubernetes jobs on Kube Careers https://kube.careers
DevSecOps Engineer with Plaid
💰 $215.3K to $322.9K a year
👨💻 Remote from the United States
→ https://kube.careers/t/82ecabe4-3ee3-408e-9e59-de3130fd3475?s=55
DevSecOps Engineer with Applied Intuition
💰 $65K to $400K a year
🏠 From the office in Mountain View, CA, USA
→ https://kube.careers/t/c6291093-2e86-4446-aab7-7f34af1a3112?s=55
DevSecOps Engineer with PagerDuty
💰 $176K to $277K a year
🏠 From the office in Atlanta, GA, USA
→ https://kube.careers/t/f7204480-93a6-477a-996f-eee9e4c5f9bd?s=55
DevSecOps Engineer with Hyperscience
💰 $190K to $260K a year
👨💻 Remote from the United States
→ https://kube.careers/t/ab01bf82-75af-4610-ba58-d58cd09f529a?s=55
Security Architect with Collectors
💰 $160K to $250K a year
🏠 From the office in Santa Ana, CA, USA
→ https://kube.careers/t/b13459c6-6642-4c50-bdc0-c95a11cdd990?s=55
👉 Browse all 449 Kubernetes jobs on Kube Careers https://kube.careers
Forwarded from LearnKube news
Master Kubernetes with Learnk8s' Advanced Kubernetes workshops!
What should you expect?
- Learn how to architect and design clusters from the ground up (in the cloud or on-prem).
- Explore the Kubernetes internal component and how the system is designed with resiliency in mind.
- Deep-dive into the networking components and observe the packets flowing into the cluster.
- Hands-on labs to test the theory with real-world scenarios!
- And more.
The next course starts on the 18th of April: https://learnk8s.io/online-advanced-april-2024
We also run in-person courses and corporate training: https://learnk8s.io/corporate-training
What should you expect?
- Learn how to architect and design clusters from the ground up (in the cloud or on-prem).
- Explore the Kubernetes internal component and how the system is designed with resiliency in mind.
- Deep-dive into the networking components and observe the packets flowing into the cluster.
- Hands-on labs to test the theory with real-world scenarios!
- And more.
The next course starts on the 18th of April: https://learnk8s.io/online-advanced-april-2024
We also run in-person courses and corporate training: https://learnk8s.io/corporate-training
This article discusses how the Sonatype Security Research team uncovered a malware campaign using npm packages to target Kubernetes configurations and SSH keys.
More: https://blog.sonatype.com/npm-packages-caught-exfiltrating-kubernetes-config-ssh-keys
More: https://blog.sonatype.com/npm-packages-caught-exfiltrating-kubernetes-config-ssh-keys
In this tutorial, you'll learn how to set up a cert-manager to create and renew certifications automatically.
You'll also set up a
More: https://medium.com/@kevinlutzer9/managed-ssl-certs-for-a-private-kubernetes-cluster-with-cloudflare-cert-manager-and-lets-encrypt-7987ba19044f
You'll also set up a
hello-world deployment and service to test HTTPS traffic via a Kubernetes Ingress.More: https://medium.com/@kevinlutzer9/managed-ssl-certs-for-a-private-kubernetes-cluster-with-cloudflare-cert-manager-and-lets-encrypt-7987ba19044f
AWS EKS Security Groups Per Pod is a feature that allows you to assign security groups to individual Kubernetes pods.
This gives you more granular control over the network traffic flowing to and from each pod.
Learn how to use it in this guide.
More: https://medium.com/@seifeddinerajhi/aws-eks-security-groups-per-pod-improve-the-security-of-your-kubernetes-clusters-a23a961793dc
This gives you more granular control over the network traffic flowing to and from each pod.
Learn how to use it in this guide.
More: https://medium.com/@seifeddinerajhi/aws-eks-security-groups-per-pod-improve-the-security-of-your-kubernetes-clusters-a23a961793dc
Kubeconform is a Kubernetes manifests validation tool.
Similar to Kubeval, but with the following improvements:
1. High performance.
2. Remote or local schema locations
3. Up-to-date schemas for all recent versions of Kubernetes.
More: https://github.com/yannh/kubeconform
Similar to Kubeval, but with the following improvements:
1. High performance.
2. Remote or local schema locations
3. Up-to-date schemas for all recent versions of Kubernetes.
More: https://github.com/yannh/kubeconform
Kubeconform is a Kubernetes manifests validation tool.
Similar to Kubeval, but with the following improvements:
1. High performance.
2. Remote or local schema locations
3. Up-to-date schemas for all recent versions of Kubernetes.
More: https://github.com/yannh/kubeconform
Similar to Kubeval, but with the following improvements:
1. High performance.
2. Remote or local schema locations
3. Up-to-date schemas for all recent versions of Kubernetes.
More: https://github.com/yannh/kubeconform
Forwarded from LearnKube news
This week on the Learn Kubernetes Weekly:
👀 How we preview Kubernetes changes
🎬 ArgoCD finalizer
🥷 Npm packages caught exfiltrating Kubernetes Config
🎫 Managed SSL certs for a private cluster
📊 Kubernetes Resource Recommender
Read it now: https://learnk8s.io/issues/73
👀 How we preview Kubernetes changes
🎬 ArgoCD finalizer
🥷 Npm packages caught exfiltrating Kubernetes Config
🎫 Managed SSL certs for a private cluster
📊 Kubernetes Resource Recommender
Read it now: https://learnk8s.io/issues/73
This article describes the nuances of users and groups in Kubernetes and how the RBAC mechanism applies to them.
More: https://adityasamant.medium.com/users-groups-roles-and-api-access-in-kubernetes-10216cfab335
More: https://adityasamant.medium.com/users-groups-roles-and-api-access-in-kubernetes-10216cfab335
Forwarded from Kube Careers
This week's 6 best Kubernetes vacancies that focus on security are:
DevSecOps Engineer with Plaid
💰 $215.3K to $322.9K a year
👨💻 Remote from the United States
→ https://kube.careers/t/82ecabe4-3ee3-408e-9e59-de3130fd3475?s=55
DevSecOps Engineer with Applied Intuition
💰 $65K to $400K a year
🏠 From the office in Mountain View, CA, USA
→ https://kube.careers/t/c6291093-2e86-4446-aab7-7f34af1a3112?s=55
DevSecOps Engineer with PagerDuty
💰 $176K to $277K a year
🏠 From the office in Atlanta, GA, USA
→ https://kube.careers/t/f7204480-93a6-477a-996f-eee9e4c5f9bd?s=55
DevSecOps Engineer with Hyperscience
💰 $190K to $260K a year
👨💻 Remote from the United States
→ https://kube.careers/t/ab01bf82-75af-4610-ba58-d58cd09f529a?s=55
DevSecOps Engineer with GitLab
💰 $140K to $270K a year
👨💻 Remote from the United States
→ https://kube.careers/t/306ef9e5-04ad-467c-9838-ae768f566e45?s=55
👉 Browse all 449 Kubernetes jobs on Kube Careers https://kube.careers
DevSecOps Engineer with Plaid
💰 $215.3K to $322.9K a year
👨💻 Remote from the United States
→ https://kube.careers/t/82ecabe4-3ee3-408e-9e59-de3130fd3475?s=55
DevSecOps Engineer with Applied Intuition
💰 $65K to $400K a year
🏠 From the office in Mountain View, CA, USA
→ https://kube.careers/t/c6291093-2e86-4446-aab7-7f34af1a3112?s=55
DevSecOps Engineer with PagerDuty
💰 $176K to $277K a year
🏠 From the office in Atlanta, GA, USA
→ https://kube.careers/t/f7204480-93a6-477a-996f-eee9e4c5f9bd?s=55
DevSecOps Engineer with Hyperscience
💰 $190K to $260K a year
👨💻 Remote from the United States
→ https://kube.careers/t/ab01bf82-75af-4610-ba58-d58cd09f529a?s=55
DevSecOps Engineer with GitLab
💰 $140K to $270K a year
👨💻 Remote from the United States
→ https://kube.careers/t/306ef9e5-04ad-467c-9838-ae768f566e45?s=55
👉 Browse all 449 Kubernetes jobs on Kube Careers https://kube.careers
Forwarded from LearnKube news
Master Kubernetes with Learnk8s' Advanced Kubernetes workshops!
What should you expect?
- Learn how to architect and design clusters from the ground up (in the cloud or on-prem).
- Explore the Kubernetes internal component and how the system is designed with resiliency in mind.
- Deep-dive into the networking components and observe the packets flowing into the cluster.
- Hands-on labs to test the theory with real-world scenarios!
- And more.
The next course starts on the 18th of April: https://learnk8s.io/online-advanced-april-2024
We also run in-person courses and corporate training: https://learnk8s.io/corporate-training
What should you expect?
- Learn how to architect and design clusters from the ground up (in the cloud or on-prem).
- Explore the Kubernetes internal component and how the system is designed with resiliency in mind.
- Deep-dive into the networking components and observe the packets flowing into the cluster.
- Hands-on labs to test the theory with real-world scenarios!
- And more.
The next course starts on the 18th of April: https://learnk8s.io/online-advanced-april-2024
We also run in-person courses and corporate training: https://learnk8s.io/corporate-training
This tutorial outlines securing a cluster with Kubescape, Prometheus, and Grafana for proactive risk identification, trend analysis, and improved audit processes.
A setup guide includes Terraform deployment and log management with Loki and Promtail.
More: https://araji.medium.com/proactive-kubernetes-security-unlocking-threat-detection-with-kubescape-prometheus-and-grafana-ad69593998fd
A setup guide includes Terraform deployment and log management with Loki and Promtail.
More: https://araji.medium.com/proactive-kubernetes-security-unlocking-threat-detection-with-kubescape-prometheus-and-grafana-ad69593998fd
The article delves into Google Kubernetes Engine's Workload Identity Federation and highlights the security benefits, operational simplicity, and importance of annotations and policy bindings in managing access control.
More: https://medium.com/google-cloud/whoami-the-quest-of-understanding-gke-workload-identity-federation-e951e5e4a03f
More: https://medium.com/google-cloud/whoami-the-quest-of-understanding-gke-workload-identity-federation-e951e5e4a03f
KubeMod is a universal Kubernetes mutating operator.
It introduces Custom Resource Definition (
More: https://github.com/kubemod/kubemod
It introduces Custom Resource Definition (
ModRule) that can intercept the deployment of any Kubernetes object and apply modifications or reject it before it is deployed to the cluster.More: https://github.com/kubemod/kubemod
The article discusses enhancing Kubernetes network security using iptables, covering its setup, configuring rules for different nodes, and ensuring persistent configurations for continuous protection.
More: https://dev.to/docteurrs/shielding-your-kubernetes-network-mastering-iptables-for-enhanced-security-39o7
More: https://dev.to/docteurrs/shielding-your-kubernetes-network-mastering-iptables-for-enhanced-security-39o7
Forwarded from LearnKube news
This week on the Learn Kubernetes Weekly:
🐾 Journey with Cluster API
📏 Horizontal Autoscaling
⏱️ Testing Service Mesh performance
🥷 Escaping the OOM Killer
💡 From on-premise to GKE
Read it now: https://learnk8s.io/issues/74
🐾 Journey with Cluster API
📏 Horizontal Autoscaling
⏱️ Testing Service Mesh performance
🥷 Escaping the OOM Killer
💡 From on-premise to GKE
Read it now: https://learnk8s.io/issues/74
If you are an admin running a Kubernetes cluster on AWS, you already need to manage AWS IAM credentials to provision and update the cluster.
You avoid managing a separate credential for Kubernetes access by using AWS IAM Authenticator for Kubernetes.
More: https://github.com/kubernetes-sigs/aws-iam-authenticator
You avoid managing a separate credential for Kubernetes access by using AWS IAM Authenticator for Kubernetes.
More: https://github.com/kubernetes-sigs/aws-iam-authenticator
Forwarded from Kube Careers
This week's 6 best Kubernetes vacancies that focus on security are:
DevSecOps Engineer with Anthropic
💰 $300K to $405K a year
🏠🏃🏻♂️🌎 San Francisco, CA / New York, NY, USA
→ https://kube.careers/t/6a4b5616-64d0-4855-9e10-a0c2b7cefcca?s=55
DevSecOps Engineer with Plaid
💰 $215.3K to $322.9K a year
👨💻 Remote from the United States
→ https://kube.careers/t/82ecabe4-3ee3-408e-9e59-de3130fd3475?s=55
DevSecOps Engineer with Applied Intuition
💰 $65K to $400K a year
🏠 From the office in Mountain View, CA, USA
→ https://kube.careers/t/c6291093-2e86-4446-aab7-7f34af1a3112?s=55
DevSecOps Engineer with PagerDuty
💰 $176K to $277K a year
🏠 From the office in Atlanta, GA, USA
→ https://kube.careers/t/f7204480-93a6-477a-996f-eee9e4c5f9bd?s=55
DevSecOps Engineer with Hyperscience
💰 $190K to $260K a year
👨💻 Remote from the United States
→ https://kube.careers/t/ab01bf82-75af-4610-ba58-d58cd09f529a?s=55
👉 Browse all 453 Kubernetes jobs on Kube Careers https://kube.careers
DevSecOps Engineer with Anthropic
💰 $300K to $405K a year
🏠🏃🏻♂️🌎 San Francisco, CA / New York, NY, USA
→ https://kube.careers/t/6a4b5616-64d0-4855-9e10-a0c2b7cefcca?s=55
DevSecOps Engineer with Plaid
💰 $215.3K to $322.9K a year
👨💻 Remote from the United States
→ https://kube.careers/t/82ecabe4-3ee3-408e-9e59-de3130fd3475?s=55
DevSecOps Engineer with Applied Intuition
💰 $65K to $400K a year
🏠 From the office in Mountain View, CA, USA
→ https://kube.careers/t/c6291093-2e86-4446-aab7-7f34af1a3112?s=55
DevSecOps Engineer with PagerDuty
💰 $176K to $277K a year
🏠 From the office in Atlanta, GA, USA
→ https://kube.careers/t/f7204480-93a6-477a-996f-eee9e4c5f9bd?s=55
DevSecOps Engineer with Hyperscience
💰 $190K to $260K a year
👨💻 Remote from the United States
→ https://kube.careers/t/ab01bf82-75af-4610-ba58-d58cd09f529a?s=55
👉 Browse all 453 Kubernetes jobs on Kube Careers https://kube.careers
Forwarded from LearnKube news
Master Kubernetes with Learnk8s' Advanced Kubernetes workshops!
What should you expect?
- Learn how to architect and design clusters from the ground up (in the cloud or on-prem).
- Explore the Kubernetes internal component and how the system is designed with resiliency in mind.
- Deep-dive into the networking components and observe the packets flowing into the cluster.
- Hands-on labs to test the theory with real-world scenarios!
- And more.
The next course starts next week: https://learnk8s.io/online-advanced-april-2024
We also run in-person courses and corporate training: https://learnk8s.io/corporate-training
What should you expect?
- Learn how to architect and design clusters from the ground up (in the cloud or on-prem).
- Explore the Kubernetes internal component and how the system is designed with resiliency in mind.
- Deep-dive into the networking components and observe the packets flowing into the cluster.
- Hands-on labs to test the theory with real-world scenarios!
- And more.
The next course starts next week: https://learnk8s.io/online-advanced-april-2024
We also run in-person courses and corporate training: https://learnk8s.io/corporate-training
The article compares three policy engines: OPA, Gatekeeper, Kyverno, and jsPolicy.
More: https://blogs.aftabs.co/enforcing-security-and-compliance-with-kubernetes-policy-engines
More: https://blogs.aftabs.co/enforcing-security-and-compliance-with-kubernetes-policy-engines
Forwarded from Kube Events
Kubernetes Community Days Romania starts in less than 2 weeks!
A one-day technical event loaded with exciting Kubernetes talks and networking opportunities.
📆 Thu, 25th Apr
⏰ 8am EET
📍 Bucharest, RO
👉 https://kube.events/t/b08aa779-8760-45e7-a493-4dc023871777
A one-day technical event loaded with exciting Kubernetes talks and networking opportunities.
📆 Thu, 25th Apr
⏰ 8am EET
📍 Bucharest, RO
👉 https://kube.events/t/b08aa779-8760-45e7-a493-4dc023871777