Abstract
Managing secrets & ensuring least-privilege access in Kubernetes can be complex tasks for security & DevOps teams. This talk aims to simplify these challenges by diving into Identity & Access Management (IAM) Roles for Service Accounts (IRSA) & exploring various secret management solutions like AWS Secrets Manager, Hashicorp Vault, Sealed Secrets & more. We’ll learn how to integrate IRSA with AWS Secrets Manager to build a secure, automated, & granular control framework for Elastic Kubernetes Service (EKS) clusters. By the end of this session, you’ll walk away with actionable insights into securing secrets & effectively managing identities in EKS. This talk is perfect for professionals in security, DevOps, & anyone looking to enhance their expertise in EKS security from the perspectives of IAM & secret management.
Rewanth Tammana
Senior Security Architect
Rewanth Tammana is a security ninja, open-source contributor, and an independent consultant. Previously, Senior Security Architect at Emirates NBD (National Bank of Dubai). He is passionate about DevSecOps, Cloud, and Container Security. He added 17,000+ lines of code to Nmap (famous as Swiss Army knife of network utilities). Holds industry certifications like CKS (Certified Kubernetes Security Specialist), CKA (Certified Kubernetes Administrator), etc. Rewanth speaks and delivers training at multiple international security conferences around the world including Black Hat, Defcon, Hack In The Box (Dubai and Amsterdam), CRESTCon UK, PHDays, Nullcon, Bsides, CISO Platform, null chapters and multiple others. He was recognized as one of the MVP researchers on Bugcrowd (2018) and identified vulnerabilities in several organizations. He also published an IEEE research paper on an offensive attack in Machine Learning and Security. He was also a part of the renowned Google Summer of Code program.