Tech Field Day

The Independent IT Influencer Event

  • Home
    • The Futurum Group
    • FAQ
    • Staff
  • Sponsors
    • Sponsor List
      • 2025 Sponsors
      • 2024 Sponsors
      • 2023 Sponsors
      • 2022 Sponsors
    • Sponsor Tech Field Day
    • Best of Tech Field Day
    • Results and Metrics
    • Preparing Your Presentation
      • Complete Presentation Guide
      • A Classic Tech Field Day Agenda
      • Field Day Room Setup
      • Presenting to Engineers
  • Delegates
    • Delegate List
      • 2025 Delegates
      • 2024 Delegates
      • 2023 Delegates
      • 2022 Delegates
      • 2021 Delegates
      • 2020 Delegates
      • 2019 Delegates
      • 2018 Delegates
    • Become a Field Day Delegate
    • What Delegates Should Know
  • Events
    • All Events
      • Upcoming
      • Past
    • Field Day
    • Field Day Extra
    • Field Day Exclusive
    • Field Day Experience
    • Field Day Live
    • Field Day Showcase
  • Topics
    • Tech Field Day
    • Cloud Field Day
    • Mobility Field Day
    • Networking Field Day
    • Security Field Day
    • Storage Field Day
  • News
    • Coverage
    • Event News
    • Podcast
  • When autocomplete results are available use up and down arrows to review and enter to go to the desired page. Touch device users, explore by touch or with swipe gestures.
You are here: Home / Videos / Security in Google Cloud

Security in Google Cloud



Cloud Field Day 20


This video is part of the appearance, “Google Cloud Presents at Cloud Field Day 20“. It was recorded as part of Cloud Field Day 20 at 13:00-15:30 on June 13, 2024.


Watch on YouTube
Watch on Vimeo

In his presentation at Cloud Field Day 20, Glenn Messinger, Product Manager for Google’s GKE security team, discussed the complexities and challenges of securing Kubernetes environments. He emphasized that while Kubernetes offers significant power and flexibility, these attributes also introduce substantial complexity, making security a primary concern for users. Many Kubernetes users have experienced security incidents, either in production or during deployment, highlighting the need for robust security measures. Google’s approach to GKE security focuses on reducing risk, enhancing compliance, and improving operational efficiency. Messinger introduced the concept of Kubernetes Security Posture Management (KSPM), which is designed to automate security and compliance specifically for Kubernetes environments.

Messinger detailed several key areas of focus within KSPM, including vulnerability management, threat detection, and compliance and governance. For vulnerability management, Google has developed GKE Security Posture, a tool that performs runtime-based vulnerability detection on clusters, providing detailed insights into container OS vulnerabilities and language packs. The tool is designed to be user-friendly, allowing customers to filter vulnerabilities by severity, region, cluster, and other parameters. In terms of threat detection, Messinger highlighted the capabilities of GKE Threat Detection, which utilizes both log detection and behavior-based detection methods to identify and mitigate potential threats. This service is integrated with Google’s Security Command Center, providing a comprehensive view of threats across the entire GCP environment.

Regarding compliance and governance, Messinger explained that GKE compliance tools help customers adhere to industry standards and set governance guardrails. These tools provide dashboards that show compliance status and detailed remediation steps for identified issues. Additionally, Google’s policy controller, which utilizes OPA Gatekeeper, allows for the customization of policies to meet specific compliance requirements. Messinger concluded the presentation by addressing questions about automated remediation, the ability to filter and mute known vulnerabilities, and protections against data encryption attacks. Overall, Google’s GKE security efforts aim to simplify the management of security and compliance in Kubernetes environments, enabling customers to innovate while minimizing risk.

Personnel: Glen Messenger


  • Bluesky
  • LinkedIn
  • Mastodon
  • RSS
  • Twitter
  • YouTube

Event Calendar

  • Jun 10-Jun 11 — Tech Field Day Extra at Cisco Live US 2025
  • Jul 9-Jul 10 — Networking Field Day 38
  • Aug 19-Aug 20 — Tech Field Day Extra at SHARE Cleveland 2025
  • Sep 10-Sep 11 — AI Infrastructure Field Day 3
  • Sep 24-Sep 25 — Security Field Day 14
  • Oct 22-Oct 23 — Cloud Field Day 24
  • Oct 29-Oct 30 — AI Field Day 7

Latest Links

  • Fortinet fully acquired Everest Networks to complete its Wi-Fi offering for large public venues
  • What Qumulo’s CFD23 Talk Taught Me About Smart, Scalable Data Storage—And DR That Doesn’t Suck
  • SAP Cloud Ultimatum – Innovate or Expire
  • Techstrong Gang – May 13, 2025
  • Why Energy Transfer is migrating to SAP’s Private Cloud ERP

Return to top of page

Copyright © 2025 · Genesis Framework · WordPress · Log in