Prove It! Assertion or it Didn't Happen (in Cloud Networking)
Changing network configuration to comply with security or deployment requirements is a high risk and error-prone affair. Are the previous routes still active? Is least-privilege still maintained? Or did we just open our infrastructure to t he world in a fit of pique or oblivion? In this talk we describe how to assert network topology, configuration, and infrastructure access in a cloud environment to provide a minimum viable safety net for infrastructure changes, covering:
- network routing
- ingress and egress
- authentication and authorisation
- continuous security
- test frameworks and CI
Andrew is a co-founder at https://control-plane.io and DevOps Lead at the UK Home Office, with a strong test-first engineering background gained developing and deploying high volume web applications. Proficient in application development and systems architecture and maintenance, he is comfortable profiling and securing every tier of a bare metal or virtualised web stack, and has battle-hardened experience delivering containerised solutions to enterprise clients.