Michael Ducy
Michael Ducy currently leads a team of technical experts focusing on helping companies adopt and use Red Hat’s Cloud Services on AWS, Azure, and other public clouds. Michael has held a variety of roles in his career including Cloud Architect, Systems Engineering, Performance Engineering, Open Source Advocacy, Developer Advocacy, IT Instructor, and Sales Engineering. Through his career he’s been an active user of open source software, and has contributed to communities such as the Cloud Native Computing Foundation (Falco and sig-security). Michael holds Master degrees in Computer Science (University of Chicago) and Business Administration (The Ohio State University). In his spare time Michael loves to travel, and enjoys woodworking.
Session
One core truth of software that has held true over paradigm shifts is that if you deploy software, you’ll sooner or later have to deploy a fix to that software. DevOps, Cloud Native, & containers have all led the way in forcing us to rethink how we accomplish deployments with efficiency & scale. But these paradigms have also made the patching problem much worse. The explosion of FOSS, shifting choice left to development teams, decoupling applications into microservices, & the rise of the Cloud have all made patching that much more difficult in the modern day.
During this talk, we will explore the complications of patching a modern application platform, and will explore how teams can more effectively collaborate on the CVE mitigation process. We will also discuss how teams can go beyond patching for CVE mitigation by leveraging defense in depth practices. Attendees will leave with a better understanding of the challenges of modern architectures & practices, how to build effective CVE mitigation strategies, and how to collaborate with security teams better on the topic.