August 23-34, 2022 - Virtual
View More Details & Registration
Note: The schedule is subject to change.

The Sched app allows you to build your schedule but is not a substitute for your event registration. You must be registered for Open Source Summit Latin America 2022 to participate in the sessions. If you have not registered but would like to join us, please go to the event registration page to purchase a registration.

This schedule is automatically displayed in Eastern Daylight Time (UTC -4). To see the schedule in your preferred timezone, please select from the drop-down menu to the right, above "Filter by Date."
Back To Schedule
Wednesday, August 24 • 11:35am - 12:15pm
SOAR with Postee: Automated Incident Response for Cloud Native Risks - Simarpreet Singh & Carolina Valencia, Aqua Security [Presented in English]

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Feedback form is now closed.
Incident response teams are already drowning in alerts - and potentially are missing critical vulnerabilities. Extending visibility and responsibility to cloud native environments compounds this challenge faced by teams of weeding through huge volumes of alerts to determine which risks are the most urgent, and how best to respond to incidents. This session will cover how security teams can use open source projects Tracee and Trivy along with Postee to better identify high risk cloud native events, orchestrate responses with other third party integrations based on these high-fidelity insights, and execute playbooks for more automated and effective incident analysis and handling processes. We will cover a variety of use cases ranging from simple cases such as acting upon CVE detections when performing vulnerability scans with Trivy to more complex scenarios of runtime detection using eBPF with Tracee. The session will focus on practical use case scenarios that are commonly observed in day to day situations. All sample configuration code will also be shared.


Carolina Valencia

Solution Architect, Aqua Security
Software Developer interested in good practices in Secure Development (DevSecOps), cloud-native applications, and security. Enthusiast of the open-source community, co-organizer of the Docker and Hashicorp communities in Sao Paulo, and contributor of Aqua open-source projects. In... Read More →

Simarpreet Singh

Open Source Engineer, Aqua Security
Simar is an Open Source Engineer at Aqua. He works on projects that improve container security. He is also an avid open source contributor outside of work and currently maintains a few projects. While not in front of a computer screen, he likes to row competitively, ride a bike and... Read More →

Wednesday August 24, 2022 11:35am - 12:15pm EDT