Loading…
In-person + Virtual
18-21 April
Learn More and Register to Attend

The Sched app allows you to build your schedule but is not a substitute for your event registration. You must be registered for KubeCon + CloudNativeCon Europe 2023 to participate in the sessions. If you have not registered but would like to join us, please go to the event registration page to purchase a registration.

Please note: This schedule is automatically displayed in Central European Summer Time (UTC +2). To see the schedule in your preferred timezone, please select from the drop-down menu to the right, above "Filter by Date." The schedule is subject to change and session seating is available on a first-come, first-served basis. 
Back To Schedule
Wednesday, April 19 • 14:30 - 15:05
Fight Back Against Cyber Risk in the Software Supply Chain with a Secure and Compliant DevSecOps Pipeline for Regulated Environments - Krishna Rajeesh Nallur Valiyaveettil & Brendan Kelly, IBM

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Tweet Share
Feedback form is now closed.


Cyber-attacks and security vulnerabilities are one of the top concerns for organizations nowadays, especially for regulated environments, for example on the Financial Services market. Having secure and compliant dev sec ops pipelines is a major tool to fight back these threats and make sure regulated workloads can be safely deployed with reduced risk. In this session we will share our experience helping clients address these challenges using open-source tools and capabilities to provide secure and compliant DevSecOps pipelines. We will cover best practices of Secure Software Supply Chain including: - Reliable, repeatable automation with Everything as Code - Mitigation of security risks as early as possible - Driving standardization and reuse - Focus on Evidence Gathering for audits We will share a specific solution based on the BIAN (Banking Industry Architecture Network) architectural framework for banking interoperability which will showcase the application of Continuous Integration, Continuous Deployment and Continuous Compliance in a real-world scenario using available open source tools like Tekton, Terraform, SonarQube.
Speakers
avatar for Krishna Rajeesh Nallur Valiyaveettil

Krishna Rajeesh Nallur Valiyaveettil

Sr Architect, IBM Cloud for financial services, IBM
Krishna Rajeesh is a Senior Architect in IBM Cloud for Financial Services with over 18 years of experience in Financial, Manufacturing, and Service industries. Responsible for designing and deploying solutions on cloud and on-premises, with security and compliance strategies. He is... Read More →
avatar for Brendan Kelly

Brendan Kelly

Sr Architect, IBM Cloud for financial services, IBM
Brendan Kelly is a senior architect with IBM, having been in the software development industry for almost ten years.He is passionate about the use of automation in general, whatever the problem to be solved – be it data science, infrastructure provisioning, application development... Read More →

BrendanKelly Krishna Rajeesh KubeCon2023 pdf
Wednesday April 19, 2023 14:30 - 15:05 CEST
D201-202 | Second Floor | Congress Centre (Elicium Building)
  CI/CD