Security Symposium, Charlotte 2019

Overview

Presentations

SECURING THE MODERN ENTERPRISE USING OPEN SOURCE

Join the Security Symposium, where cybersecurity professionals can learn and network alongside Red Hat and Intel security experts, partners, and industry peers. No one can solve IT security issues alone. Solving problems together as a community is the future of technology.

WHAT TO EXPECT

The Security Symposium is a full-day event with industry experts covering the latest upstream and enterprise security developments. Attendees will network and collaborate with peers and Red Hat engineers to discuss security challenges open source organizations face.

WHO SHOULD ATTEND

IT business leaders, security professionals, operations professionals, and application developers who are focused on securing their organization’s infrastructure and applications.

FSI Security, Risk and Compliance breakfast

Financial institutions are expected to address the ever-increasing number of security challenges and stringent security regulations, such as 23 NYCRR 500, while also enabling innovative, differentiated experiences for their customers.
As the industry grows more interconnected and complex, security vulnerabilities can increase risks. The adoption of new technologies such as biometrics, blockchain, machine learning, and APIs innovations present additional challenges.

Security experts Lucy Kerner and Justin Goldsmith will lead the roundtable to discuss the state of security, risk, and compliance in this new environment, and have you share thoughts on how we can make sure security does not become an afterthought. This discussion will allow attendees to share methodologies to foster an innovation development lifecycle that is secure, reliable, and resilient and exchange and discuss the latest real-world security automation and orchestration techniques for today’s complex hybrid environments.

This event has ended. For information about the event, or registration for the next event, please contact the event registration service.

Agenda

8:00 a.m. – 8:45 a.m.	Financial Services Security, Risk and Compliance Automation Roundtable Breakfast *Registration is optional. Seating is limited
8:30 a.m. - 9:00 a.m.	Registration and breakfast
9:00 a.m. - 9:15 a.m.	Welcome - Michael Solberg, chief architect, Red Hat
9:15 a.m. - 9:45 a.m.	Featured speaker: The future of automation, cybersecurity, and artificial intelligence Jeff Towle Global Security Architect, Intel
9:45 a.m. - 10:30 a.m.	Top 10 Security Changes in Red Hat Enterprise Linux 8 Mark Thacker principal technical product manager, Red Hat
10:30 a.m. - 10:45 a.m.	Break
10:45 a.m. - 11:45 a.m.	Automating security and compliance for hybrid environments Lucy Kerner senior principal security global technical evangelist and strategist, Red Hat
11:45 a.m. - 12:30 p.m	Lunch
12:30 p.m. - 1:15 p.m.	Network security for containerized applications Veer Muchandi senior principal architect, Red Hat
1:15 p.m. - 2:00 p.m.	Security first: Automating continuous integration/continuous delivery (CI/CD) pipelines and policing applications Justin Goldsmith senior architect, Red Hat
2:00 p.m. - 3:00 p.m.	Security concerns in the container runtimes Dan Walsh senior consulting engineer, Red Hat
3:00 p.m. - 3:15 p.m.	Wrap up - Michael Solberg, chief architect, Red Hat
3:15 p.m. - 4:30 p.m.	Happy hour, networking, & mingle with speakers

Travel Information

Location:
Mint Museum Uptown
500 South Tryon Street
Charlotte, North Carolina 28202

Time: 8:30 a.m. – 3:30 p.m.

Parking: Parking is complimentary at Levine Center for the Arts Parking Garage. Address is 130 West Stonewall Street, Charlotte, NC 28202. Located on Stonewall Street between Tryon and Church Streets. After you park your vehicle, head for the Plaza Elevators (as opposed to the Duke Energy Tower Elevators). The P★ level will take you to the street level and the museum store. The 2 level will take you to the Halcyon and the entrance to the museum.

Any questions? Please contact infrastructure@redhat.com

Abstracts

Jeff Towle

Cybersecurity has traditionally been focused on endpoints and network traffic (both on the Cloud and on premises) inspection with security controls that feed events back to be scored and made actionable with a Security Information Event Management (SIEM) method. While useful for rules-based violations that can be programmed into sensors and malware listeners, there are myriad of threats that can evade these controls or circumvent them altogether. Equally as important, the volume and velocity of data has increased such that it is very difficult to understand what constitutes a risky behavior with a person, software, or system. This is where artificial intelligence can become an equalizer. This presentation will talk about use cases around cyber risk that have been solved with powerful perception, logic, and learning with machine and deep learning precision.

Lucy Kerner

Maintaining visibility, control, and security, and ensuring governance and compliance remains paramount. But it becomes more difficult and time consuming in a hybrid infrastructure consisting of physical, virtual, cloud, and container environments. Also, it's becoming more and more challenging for security teams to examine and respond to the growing number of security alerts coming in from the increasing number of security tools in their security operations center.

In this session, we’ll look at how a combination of Red Hat technologies can help you with these challenges for the infrastructure, operations, application, and security operations center across a hybrid environment by automating security and compliance. Specifically, in your hybrid infrastructure, you’ll learn how Red Hat’s management and automation products, Red Hat OpenShift Container Platform, and OpenSCAP can help you:

Perform automated audit scans to quickly detect and automatically remediate security and compliance issues in a controlled way for compliance against regulatory or custom profiles for automated configuration compliance.
Automatically provision a security-compliant host.
Implement both infrastructure and security as code.
Implement consistent and automated patch and configuration management.
Proactively identify and remediate security threats at scale with predictive analytics.
Centrally manage your hybrid infrastructure for continuous security and monitoring.
Build security into your application by implementing DevSecOps at scale using Red Hat OpenShift Container Platform and several other tools, such as OWASP ZAP, SonarQube, Clair, and more to build a secure CI/CD application pipeline.
Automate your security operations center by integrating and orchestrating the activity of multiple classes of security tools and unifying the automated response to security alerts across various security tools.

Veer Muchandi

As you deploy applications and microservices to a Kubernetes based containerized platform, several questions come to mind:

How do we deal with micro segmentation?
How do we deal with deploying containerized applications in different network zones?
How do we deal with security at ingress?
How do we deal with security at egress?
and more

We will address these common concerns and explain how to address them. In addition, where relevant we will also discuss features provided by open source enterprise ready Kubernetes platform such as OpenShift and how such platforms address these network security aspects for applications. This session assumes that the attendees have basic working knowledge of Kubernetes.

Justin Goldsmith

Recent public breaches highlight the importance of a security strategy that extends beyond the network perimeter. Applications developed and maintained without security in mind present a likely entry point for malicious attackers. Preventive measures should be taken to reduce vulnerabilities that can avoid zero-day attacks.

As organizations adopt containers, an automated approach to security, testing, and application development is needed to increase productivity and reduce risk.

During this session, we’ll discuss how Red Hat® OpenShift® Container Platform and Red Hat Quay can:

Integrate security monitoring software into CI/CD pipelines for containerized applications.
Help you understand what's in your containers and where they come from, which is vital to maintain security and quickly remediate workloads.
Ensure the validity of images with signing.
Enhance open source library security, in true DevSecOps fashion, and establish a security-first mindset for application development.