Android Backstage, a podcast by and for Android developers. Hosted by developers from the Android engineering team, this show covers topics of interest to Android programmers, with in-depth discussions and interviews with engineers on the Android team at Google. Subscribe to Android Developers YouTube → https://goo.gle/AndroidDevs
…
continue reading
内容由Mirantis Inc.提供。所有播客内容(包括剧集、图形和播客描述)均由 Mirantis Inc. 或其播客平台合作伙伴直接上传和提供。如果您认为有人在未经您许可的情况下使用您的受版权保护的作品,您可以按照此处概述的流程进行操作https://zh.player.fm/legal。
类似 Radio Cloud Native by Mirantis 的节目
The power of Data is undeniable. And unharnessed - it’s nothing but chaos. Making data your ally. Using it to lead with confidence and clarity. Host Jess Carter is solving problems in real-time to reveal what’s possible. Helping communities and people thrive. This is Data Driven Leadership, a show brought to you by Resultant.
…
continue reading
When it comes to technology, you may have questions. So do we. Every other week, we demystify the tech industry, one answer at a time. Join us as we bring together a chorus of perspectives from within Red Hat to break down the big, emerging ideas that matter both today and beyond. Compiler is hosted by Angela Andrews and Brent Simoneaux. Learn more about our show at redhat.com/en/compiler-podcast
…
continue reading
Show notes are at https://stevelitchfield.com/sshow/chat.html
…
continue reading
A podcast featuring panelists of engineers from Netflix, Twitch, & Atlassian talking over drinks about all things software engineering.
…
continue reading
Material is a weekly discussion about the Google and Android universe. Your intrepid hosts try to answer the question, “What holds up the digital world?” The answer, so far, is that it’s Google all the way down. Hosted by Andy Ihnatko and Florence Ion.
…
continue reading
Catalyst, a Launch by NTT DATA podcast, puts humans at the front and center of digital transformation. Each week, we feature thought leaders who share their insights on reinventing digital experiences, enhancing customer journeys, and driving innovation in the enterprise. From platform transformation to the latest advancements in AI, our guests delve into the challenges and triumphs of digital transformation, emphasizing the critical role of human ingenuity and leadership. Learn more about L ...
…
continue reading
Investor Shayle Kann is asking big questions about how to decarbonize the planet: How cheap can clean energy get? Will artificial intelligence speed up climate solutions? Where is the smart money going into climate technologies? Every week on Catalyst, Shayle explains the world of climate tech with prominent experts, investors, researchers, and executives. Produced by Latitude Media.
…
continue reading
Best Business Podcast (Gold), British Podcast Awards 2023 How do you build a fully electric motorcycle with no compromises on performance? How can we truly experience what the virtual world feels like? What does it take to design the first commercially available flying car? And how do you build a lightsaber? These are some of the questions this podcast answers as we share the moments where digital transforms physical, and meet the brilliant minds behind some of the most innovative products a ...
…
continue reading
TechStuff is getting a system update. Everything you love about Tech Stuff now twice the bandwidth with new hosts, Oz Woloshyn (Sleepwalkers) and Karah Preiss (Sleepwalkers). Oz and Karah bring humour and wit to the table as they break down what's happening in tech...and what it says about us. TechStuff is the podcast where technology meets culture. We speak to the folks building the future to understand what tomorrow will look like and how our technology is changing us: how we live, how we ...
…
continue reading
Player FM -播客应用
使用Player FM应用程序离线!
使用Player FM应用程序离线!
))
Achieving DISA STIG Certification for MKE: Challenges, Successes & Best Practices for Compliant Public Sector Solutions
Manage episode 459429946 series 3342345
内容由Mirantis Inc.提供。所有播客内容(包括剧集、图形和播客描述)均由 Mirantis Inc. 或其播客平台合作伙伴直接上传和提供。如果您认为有人在未经您许可的情况下使用您的受版权保护的作品,您可以按照此处概述的流程进行操作https://zh.player.fm/legal。
In this month's episode, John Jainschigg, Director of Open Source Initiatives at Mirantis hosts Kathleen Moyer, Director of Service Delivery at Corsec Security, and William Konitzer, Senior Solution Architect at Mirantis, to explore the recently achieved DISA STIG certification for Mirantis Kubernetes Engine (MKE). Together, they dive into the intricate certification process that enables public sector and enterprise users to deploy secure, compliant applications using MKE.
Listeners will gain insights into the collaborative effort between Mirantis and Corsec Security, where Kathleen shares her 25 years of expertise in security certifications, detailing how Corsec facilitated the process with government agencies like DISA and the DoD. William provides a behind-the-scenes look at the technical challenges and solutions that ensured MKE met stringent Department of Defense (DoD) security standards without compromising usability or performance. Furthermore, he highlights some of the team's learnings in the context of how it changed the thought process of Mirantis' engineering teams when it came to security.
Achieved in early 2024, this milestone positions MKE as a powerful tool for public sector organizations and industries with specific security and compliance needs. Whether you’re navigating public sector compliance requirements or interested in secure cloud native solutions, this episode offers practical advice and unique perspectives on implementing and managing a STIG-compliant Kubernetes platform.
A full list of this episode's topics include:
- Corsec Security's role in the MKE DISA STIG process
- Common challenges Orgs face in STIG process
- How Corsec handles security testing to ensure compliance
- SITG vs FEDRAMP - in terms of requirements
- How Corsec handles product updates re: the STIG
- Advice for companies getting started with STIG certification
- Role of documentation in STIG process
- Challenges in MKE STIG process
- Why Mirantis did a STIG for MKE
- Specific security features of MKE that affected DISA STIG approval
- Mirantis and Corsec collaboration
- MKE for the Public Sector
- Timelines for achieving STIG certification
- Mitigating evolving vulnerabilities
- How the SITG process for MKE impacted Mirantis engineering
If you want to listen to more episodes of Radio Cloud Native, please visit https://www.mirantis.com/radiocloudnative/ to download, or find them wherever you prefer to consume your podcasts.
If you are interested in contributing to Radio Cloud Native, please reach out to our podcast team: podcasts@mirantis.com
章节
1. Intro (00:00:00)
2. What was Corsec Security's role in the MKE DISA STIG process? (00:01:03)
3. What are common challenges Orgs face in STIG process? (00:02:23)
4. How does Corsec help with security testing to ensure compliance? (00:07:37)
5. What makes SITG requirements unique vs FEDRAMP? (00:09:14)
6. How does Corsec handle product updates re: the STIG? (00:12:43)
7. What advice would you give to companies started out with STIG? (00:13:50)
8. Role of documentation in STIG process (00:16:46)
9. Challenges in MKE STIG process (00:20:27)
10. Why did Mirantis do a STIG for MKE? (00:23:09)
11. Specific security features of MKE that affected DISA STIG approval (00:24:46)
12. How did Mirantis and Corsec collaborate to achieve STIG certification? (00:26:31)
13. How can MKE be used in the Public Sector? (00:27:20)
14. What are typical timelines for achieving STIG certification? (00:30:19)
15. How to mitigate evolving vulnerabilities (00:31:14)
16. How has the SITG process for MKE impacted Mirantis engineering? (00:32:21)
17. Outro (00:34:33)
62集单集
分享
Manage episode 459429946 series 3342345
内容由Mirantis Inc.提供。所有播客内容(包括剧集、图形和播客描述)均由 Mirantis Inc. 或其播客平台合作伙伴直接上传和提供。如果您认为有人在未经您许可的情况下使用您的受版权保护的作品,您可以按照此处概述的流程进行操作https://zh.player.fm/legal。
In this month's episode, John Jainschigg, Director of Open Source Initiatives at Mirantis hosts Kathleen Moyer, Director of Service Delivery at Corsec Security, and William Konitzer, Senior Solution Architect at Mirantis, to explore the recently achieved DISA STIG certification for Mirantis Kubernetes Engine (MKE). Together, they dive into the intricate certification process that enables public sector and enterprise users to deploy secure, compliant applications using MKE.
Listeners will gain insights into the collaborative effort between Mirantis and Corsec Security, where Kathleen shares her 25 years of expertise in security certifications, detailing how Corsec facilitated the process with government agencies like DISA and the DoD. William provides a behind-the-scenes look at the technical challenges and solutions that ensured MKE met stringent Department of Defense (DoD) security standards without compromising usability or performance. Furthermore, he highlights some of the team's learnings in the context of how it changed the thought process of Mirantis' engineering teams when it came to security.
Achieved in early 2024, this milestone positions MKE as a powerful tool for public sector organizations and industries with specific security and compliance needs. Whether you’re navigating public sector compliance requirements or interested in secure cloud native solutions, this episode offers practical advice and unique perspectives on implementing and managing a STIG-compliant Kubernetes platform.
A full list of this episode's topics include:
- Corsec Security's role in the MKE DISA STIG process
- Common challenges Orgs face in STIG process
- How Corsec handles security testing to ensure compliance
- SITG vs FEDRAMP - in terms of requirements
- How Corsec handles product updates re: the STIG
- Advice for companies getting started with STIG certification
- Role of documentation in STIG process
- Challenges in MKE STIG process
- Why Mirantis did a STIG for MKE
- Specific security features of MKE that affected DISA STIG approval
- Mirantis and Corsec collaboration
- MKE for the Public Sector
- Timelines for achieving STIG certification
- Mitigating evolving vulnerabilities
- How the SITG process for MKE impacted Mirantis engineering
If you want to listen to more episodes of Radio Cloud Native, please visit https://www.mirantis.com/radiocloudnative/ to download, or find them wherever you prefer to consume your podcasts.
If you are interested in contributing to Radio Cloud Native, please reach out to our podcast team: podcasts@mirantis.com
章节
1. Intro (00:00:00)
2. What was Corsec Security's role in the MKE DISA STIG process? (00:01:03)
3. What are common challenges Orgs face in STIG process? (00:02:23)
4. How does Corsec help with security testing to ensure compliance? (00:07:37)
5. What makes SITG requirements unique vs FEDRAMP? (00:09:14)
6. How does Corsec handle product updates re: the STIG? (00:12:43)
7. What advice would you give to companies started out with STIG? (00:13:50)
8. Role of documentation in STIG process (00:16:46)
9. Challenges in MKE STIG process (00:20:27)
10. Why did Mirantis do a STIG for MKE? (00:23:09)
11. Specific security features of MKE that affected DISA STIG approval (00:24:46)
12. How did Mirantis and Corsec collaborate to achieve STIG certification? (00:26:31)
13. How can MKE be used in the Public Sector? (00:27:20)
14. What are typical timelines for achieving STIG certification? (00:30:19)
15. How to mitigate evolving vulnerabilities (00:31:14)
16. How has the SITG process for MKE impacted Mirantis engineering? (00:32:21)
17. Outro (00:34:33)
62集单集
כל הפרקים
×
欢迎使用Player FM
Player FM正在网上搜索高质量的播客,以便您现在享受。它是最好的播客应用程序,适用于安卓、iPhone和网络。注册以跨设备同步订阅。
类似 Radio Cloud Native by Mirantis 的节目
Android Backstage, a podcast by and for Android developers. Hosted by developers from the Android engineering team, this show covers topics of interest to Android programmers, with in-depth discussions and interviews with engineers on the Android team at Google. Subscribe to Android Developers YouTube → https://goo.gle/AndroidDevs
…
continue reading
The power of Data is undeniable. And unharnessed - it’s nothing but chaos. Making data your ally. Using it to lead with confidence and clarity. Host Jess Carter is solving problems in real-time to reveal what’s possible. Helping communities and people thrive. This is Data Driven Leadership, a show brought to you by Resultant.
…
continue reading
When it comes to technology, you may have questions. So do we. Every other week, we demystify the tech industry, one answer at a time. Join us as we bring together a chorus of perspectives from within Red Hat to break down the big, emerging ideas that matter both today and beyond. Compiler is hosted by Angela Andrews and Brent Simoneaux. Learn more about our show at redhat.com/en/compiler-podcast
…
continue reading
Show notes are at https://stevelitchfield.com/sshow/chat.html
…
continue reading
A podcast featuring panelists of engineers from Netflix, Twitch, & Atlassian talking over drinks about all things software engineering.
…
continue reading
Material is a weekly discussion about the Google and Android universe. Your intrepid hosts try to answer the question, “What holds up the digital world?” The answer, so far, is that it’s Google all the way down. Hosted by Andy Ihnatko and Florence Ion.
…
continue reading
Catalyst, a Launch by NTT DATA podcast, puts humans at the front and center of digital transformation. Each week, we feature thought leaders who share their insights on reinventing digital experiences, enhancing customer journeys, and driving innovation in the enterprise. From platform transformation to the latest advancements in AI, our guests delve into the challenges and triumphs of digital transformation, emphasizing the critical role of human ingenuity and leadership. Learn more about L ...
…
continue reading
Investor Shayle Kann is asking big questions about how to decarbonize the planet: How cheap can clean energy get? Will artificial intelligence speed up climate solutions? Where is the smart money going into climate technologies? Every week on Catalyst, Shayle explains the world of climate tech with prominent experts, investors, researchers, and executives. Produced by Latitude Media.
…
continue reading
Best Business Podcast (Gold), British Podcast Awards 2023 How do you build a fully electric motorcycle with no compromises on performance? How can we truly experience what the virtual world feels like? What does it take to design the first commercially available flying car? And how do you build a lightsaber? These are some of the questions this podcast answers as we share the moments where digital transforms physical, and meet the brilliant minds behind some of the most innovative products a ...
…
continue reading
TechStuff is getting a system update. Everything you love about Tech Stuff now twice the bandwidth with new hosts, Oz Woloshyn (Sleepwalkers) and Karah Preiss (Sleepwalkers). Oz and Karah bring humour and wit to the table as they break down what's happening in tech...and what it says about us. TechStuff is the podcast where technology meets culture. We speak to the folks building the future to understand what tomorrow will look like and how our technology is changing us: how we live, how we ...
…
continue reading
Player FM -播客应用
使用Player FM应用程序离线!
使用Player FM应用程序离线!
