From Policy to Production: Implementing ISO27001/BSI IT-Gr... Marcus Ross, Hamburg Port Authority
Kyverno Kubernetes Iso27001 Bsi it Grundschutz Compliance automation Network policy Policy As Code Cloud native security Cncf Container security Devops Infrastructure security
This practical tutorial demonstrates how to automate ISO27001/BSI IT-Grundschutz compliance controls in Kubernetes using Kyverno policy engine. Marcus Ross from Hamburg Port Authority presents three key IT-Grundschutz building blocks: network separation, automated configuration auditing, and pod restart policies, with real-world implementation examples. DevOps engineers and platform security teams working with Kubernetes will learn how to enforce compliance without sacrificing deployment agility.
Related videos
Poison Control: Unifying Software and Content... Anmol Krishan Sachdeva & Ankit Kotnala, Google
Welcome & Opening Remarks - Cortney Nickerson, CNCF Ambassador
Cloud Native Live: Falco's Nest & the Evolution of Runtime Security
Webhook Topology and Admission Latency: Lessons from Migration - Tanat Lokejaroenlarb, Adevinta
Policy-as-Code for LLM Inference: Cost & Security Guardrails - Sakalya Deshpande, SAP Labs
From YAML to CEL: Understanding Kyverno’s New Policy Model - Kirti Goyal, DevRel @Keploy
ReBAC with Kyverno: Automating Multi-Tenant RBAC at Scale - Pavan Madduri, W.W.Grainger.Inc
Beyond Dashboards: Cultivating the Observability Mindset - O. Hope Amaechi-Okorie, JSON Schema
Making the Most of Your Docker Hardened Images (Docker Tutorial)
Cloud Native Live: Kubernetes v1.36 Release
MCP support in Envoy - Boteng Yao, Google, Software Engineer
