🧀 Swiss Cheese Kubernetes Defence

I regularly do Kubernetes security reviews.

And I always find gaps.

So why bother?

Enter the Swiss Cheese Model for Kubernetes clusters!

Swiss Cheese Model for Kubernetes clusters

Hardware failure and attackers (figure, left) will threaten the confidentiality, integrity and availability of customer data (figure, right).

Most of the security measures we take have holes:

Holes are constantly created due to:

A security review will ensure both:

What about you?

Any layers I should add? Please share your story by commenting on this LinkedIn post.