Open Source Camp Kubernetes 2024 | Monitoring Kubernetes With Icinga by Eric ...
Faster safer and 100 user centric application at equifax with docker
1. JAYA POLUMURU
Sr. Director of Technology,
Equifax Inc
Faster, Safer and 100% User
Centric Application at
Equifax with Docker
2. JAYA POLUMURU
Sr. Director of Technology,
Equifax Inc
Docker at Equifax
Kartik Pisharodi
Cloud Systems Developer,
Cloudreach
Docker Infrastructure
3. - Software Development Lifecycle Challenges
- Track Inventory of Software Packages
- Detect Vulnerabilities
- Reduce Remediation Cycles
- Improve Overall Security Process
- Need for better transparency for all departments
- Deliver a product to help protect our consumers
- WebApp
- Mobile Apps
Facing the Challenge
4. - Security by Design
- Exposing Vulnerabilities
- Reduction of Attack Surface
- Quicker Development Cycle
- Supported on various infrastructure platforms
Solution Hunting Criteria
n
nt
5. - Host Level Security
- Infrastructure/Platform Level Security
- Data Security
- Process Security
- Container Security
Layers of Security
9. - Learning Curve
- Networking
- Built into Docker EE
Docker Swarm
TEST STAGING
• Signature
verification
• Native encryption
Scanning SigningAutomated
PoliciesDocker for Mac
or
Docker for Windows
PRODUCTION
15. Dockerized Applications
- API Services (Microservices)
- Lock and Alert WebApp
- CS Agent Portal
- Batch/Offline Jobs
Infrastructure Tools
- New CI/CD Pipeline
- Infrastructure as code
Mobile Apps
- iOS
- Android
What did we build
16. - Networking
- Mobile App Integration
- Logging
- Scheduled/Offline jobs
- DTR Image Building
- Swarm Stack yaml
Hurdles during Build
18. - Delivered a new product in 3 months
- Greater Transparency at all levels
- Faster deployment cycles
- Quicker detection and remediation cycles
- Rolling Update and Automated Rollback
- Able to scale better
- Built environments using infrastructure-through-code
- Deeper and Wider Metrics capabilities
What we accomplished
19. - Security is a constant activity
- Improve not just toolset but process and thinking
- Get buy-in from all IT groups
- Faster and secure SDLC
- Developers are more productive
- Focus on product without compromising security
Conclusion