Enhancing Kubernetes Security and Compliance with Kyverno: A Platform Engineering Perspective

As platform engineering teams strive to build secure, scalable and compliant Kubernetes platforms, policy enforcement becomes a crucial challenge. Kyverno, a Kubernetes-native policy engine, enables teams to define, enforce, and audit security and compliance policies without requiring external dependencies or complex admission controllers. This talk will explore how platform teams can integrate Kyverno and leverage the tool's new CEL policy types in their Kubernetes environments to automate policy enforcement, improve governance and security, enhance developer productivity and save money. We will walk through real-world use cases with policy examples including securing multi-tenant clusters, automating security checks and integrating Kyverno with CI/CD pipelines.