SecAppDev 2023 lecture details

Policy-as-Code: across the tech stack

Discover Policy-as-Code (PaC) for decoupled security across the stack, covering OPA for API gateways, Kyverno for Kubernetes, Tetragon & Tracee for eBPF, and Casbin & Oso for authorization. Learn how to enhance security and compliance with PaC tools.

Tuesday June 13th, 16:00 - 17:30
Room Lemaire
Download handouts

In the last decade, security policies have become increasingly complex and much more dynamic, making it significantly harder to manage them. In this session, we explore Policy-as-Code (PaC) for implementing decoupled security practices across the stack. Key topics include Open Policy Agent (OPA) rules and policies for API gateways, Kyverno for Kubernetes security, Tetragon and Tracee for eBPF, and Casbin and Oso for authorization. Attendees will learn how PaC unifies policy management and enforcement, providing better security, compliance, and risk management while reducing manual intervention.

Key takeaway

Using Open Policy Agent (OPA) for policy management, eBPF for security detection on containerized workloads, and authorization-as-code frameworks for RBAC

Content level


Target audience

Security engineers, cloud professionals, AppSec professionals, and DevOps professionals


Knowledge of API security would be preferable, Cloud Native skills are useful, knowledge of containers and Kubernetes is useful

Join us for SecAppDev. You will not regret it!

Abhay Bhargav
Abhay Bhargav

Founder and Chief Research Officer, AppSecEngineer

Expertise: Cutting-edge application security including cloud(-native) security, DevSecOps and threat modeling

More details

Join us for SecAppDev. You will not regret it!

Related lectures

SecAppDev offers the most in-depth content you will find in a conference setting