Running Cloud Foundry in a Compliance and Security Focused Environment - Diego Lapiduz and Bret A. Mogilefsky, 18F
Running Cloud Foundry in a compliance and security focused environment (Diego Lapiduz and Bret Mogilefsky, cloud.gov - 18F). cloud.gov has adopted Cloud Foundry to host applications for government users in the cloud, tackling one of the core impediments to government service delivery today. In the process of doing that we had to turn up the security of the platform, write composable compliance documentation, and build tools to automatically scan the system and tenant applications. These processes and tools have been built in the open so other members of the community can contribute to them and reuse them in other contexts.
This talk will show how Cloud Foundry and Bosh made it easy to centralize security and enable redeployment of the whole platform. We will also talk about how we built reusable and composable compliance documentation that can be shared publicly.
Diego Lapiduz
18F
Diego is a software architect turned DevOps practicioner. He is currently leading efforts to deploy software applications more efficiently at 18F. Earlier in his career, he worked on projects ranging from e-commerce to social networks. Diego is often a frequent guest speaker at conferences, where he talks about software architecture, DevOps and other ramblings.
Bret Mogilefsky
GSA/18F
Innovation Specialist
San Francisco, CA
Bret Mogilefsky is an Innovation Specialist at 18F, the agile design and development consultancy inside government, for government. Bret leads teams and projects focused on deconstructing the biggest technical hurdles to improving government services. Prior to 18F, Bret was the architect and evangelist for the overall developer experience at PlayStation, and was lead programmer and assistant designer of the legendary adventure game Grim Fandango at LucasArts. Bret lives in Castro Valley, CA with his wife, two kids, an indifferent cat, and an ambivalent iguana.
