Scale to Zero - No Security Questions Left Unanswered Kubernetes Security Mastery: Shifting Mindsets for Ephemeral Environments | Ep.100 | Ft. Dinis Cruz
Oct 29, 2025
Dinis Cruz, a seasoned security leader and founder of Cyber Boardroom, dives into the transformative world of Kubernetes security. He discusses the essential shift from static data centers to ephemeral environments and emphasizes the need for engineering mindsets in security teams. Dinis highlights the challenges of balancing security with business priorities, effective logging for containers, and managing identity in this dynamic landscape. He also explores the impact of generative AI on security roles and the necessity of anticipating AI-driven attacks. A must-listen for cloud-native practitioners!
AI Snips
Chapters
Transcript
Episode notes
Security Teams Need Engineering Muscle
- Security teams must be engineering teams that understand CI/CD, deployments, and pipelines.
- Most security problems are engineering or workflow problems, so embed engineers inside security to fix root causes.
Ephemeral Containers Can Vanish Evidence
- Dinis recalled incidents where containers causing problems were already gone, hampering investigation.
- He linked that to many orgs lacking sufficient logging, monitoring, and funding for non-functional requirements.
Build Pipelines First, Then Features
- Bake CI, pipelines, and non-functional requirements into early development to reduce technical debt.
- Design services to be deployable anywhere to simplify security, isolation, and customer-specific deployments.