Detect, Decide, Defend: Building Cloud Native Security That Fights Back - Matthias Bertschy, ARMO

less than 1 minute read

Abstract

Let’s face it: most Kubernetes security tools surface alerts- but don’t help teams act. Incidents trigger noisy dashboards and virtual war rooms, with engineers stitching logs and manifests, unsure what’s safe to fix. Cloud Application Detection and Response (CADR) introduces a new approach: combining real-time detection with automated remediation to create a full lifecycle for runtime security. By correlating posture, configuration, and runtime behavior, CADR delivers high-confidence alerts with actionable context. RemOps then translates those signals into safe, automated responses using Kubernetes-native APIs and declared manifests. In this session, you’ll learn how CADR detects threats by analyzing manifests, metrics, and network policies, and how RemOps closes the loop, without manual toil. Real-world demos will show how to auto-rollback config drift, mitigate privilege escalation, and reconcile live and desired state using fully native Kubernetes constructs.

Sched URL

Video

Share on

X Facebook LinkedIn Bluesky

About

Conferences

Detect, Decide, Defend: Building Cloud Native Security That Fights Back - Matthias Bertschy, ARMO

Abstract

Video

Share on

You May Also Enjoy

The Shared Service Blueprint: A Guide to Multi-Tenancy, Illustrated With KEDA - Aya Igarashi, Preferred Networks, Inc.

Tailor Made: Dynamic Fine-Grained Authorization for API Traffic - Erica Hughberg, Tetrate & Andres Aguiar, Okta

SPIFFE Meets OAuth: Federated Identity for Cloud Native Workloads - Yoshiyuki Tabata, Hitachi, Ltd.

SB💣💣M: Making SBOMs Play Together - Jacopo Bufalino, CNAM & Agathe Blaise, Thales SIX GTS France