Vulnerability Management at Scale: A Talk with Pivotal’s Technical Program Manager of Security
On today’s episode of The New Stack Makers podcast, we spoke with Pivotal Senior Technical Program Manager of Security Molly Crowther, who gave a presentation, along with Cloud Foundry’s Stephen Levine, on advanced vulnerability management at Cloud Foundry Summit EU.
At Pivotal, Crowther helps teams to better work together securely, ensuring that there is less breakage of systems or data leaking along the pipeline, particularly where projects and developers can intersect. “When they have cross-cutting items across multiple teams, that’s where program management comes in at a higher level.”
Crowther went on to explain that their Security Triage and Automation team has created a system that “takes data from various sources about security vulnerabilities and then spits that information out to different product teams using Pivotal Tracker; fitting into their normal workflow so when a new security vulnerability comes out, teams automatically have a story that they can pick up that tells them exactly what they need to fix.”
In This Edition:
0:40: Exploring Crowther’s role at Pivotal.
1:36: Discussing Crowther’s presentation at Cloud Foundry Summit EU.
2:37: The role of security at Cloud Foundry Summit EU.
6:11: Discussing the architectural announcements surrounding the Cloud Foundry Container Runtime from a security perspective.
7:57: The challenges with keeping images updated in container runtimes.
9:46: Other insights on the first day of Cloud Foundry Summit EU.
The Cloud Foundry Foundation is a sponsor of The New Stack.