Haunted DevOps: Key Takeaways from the Latest Meetup

Seamless Security & Serverless Cost Horror Tales

In a recent DevOps meetup, hosted at Ergon Informatik in Zurich, attendees were treated to three insightful presentations exploring how cloud-native security and serverless architectures can transform modern IT infrastructures. The event showcased practical use cases, innovative strategies, and the latest updates on Airlock Microgateway. Below, we will share the key takeaways from each presentation. 

Transforming Security at Open Systems with Airlock Microgateway 

The first presentation kicked off with Simon Stäheli and Christian Brauchli detailing Open Systems' journey in transforming their web application security using the Airlock Microgateway. Historically, their security relied on a monolithic Web Application Firewall (WAF) that was deployed on virtual machines, which made the process labor-intensive and inflexible. The need to modernize was clear as they transitioned to a cloud-native architecture. 

Key Takeaways: 

  • Empowering Developers with Self-Service: By integrating the Airlock Microgateway with their Kubernetes environment, they were able to hand over more control to developers. This shift enabled a self-service model that reduced deployment times from days to just minutes. 
     
  • Seamless Platform Integration: The adoption of microgateways allowed Open Systems to enhance scalability and streamline security configurations directly within their cloud-native platform using Istio and GitOps workflows. 
     
  • Simplified Security Management: By moving from a manual, ticket-based process to automated, GitOps-driven deployments, they significantly reduced overhead and friction between teams. This led to faster, more agile application development. 

For organizations using legacy WAFs, this presentation highlights the benefits of adopting microgateways to achieve faster deployments, better scalability, and greater security control. Leveraging microgateways can streamline processes, especially in environments that rely heavily on Kubernetes.

What’s New with Airlock Microgateway? Latest Innovations and Features 

In the second presentation, Urs Zurbuchen, Senior Security Consultant at Airlock, shared exciting updates on the Airlock Microgateway, focusing on new features available in version 4.4. This session was packed with technical insights into how the microgateway is evolving to meet the needs of modern DevOps teams and enterprises embracing Kubernetes. 

Key Takeaways: 

  • Expanded Deployment Flexibility: The new release introduces deployment options using Kubernetes Gateway API, allowing users to choose between sidecar and gateway modes. This provides greater flexibility in how organizations deploy and manage their security infrastructure. 
     
  • Integrated Authentication: With built-in OpenID Connect (OIDC) support, the microgateway now simplifies authentication, eliminating the need for additional proxies. This feature is particularly valuable for organizations looking to centralize authentication without adding complexity. 
     
  • Improved Observability and Control: The latest version introduces enhanced monitoring capabilities, allowing teams to gain deeper insights into application traffic and security, ensuring a more transparent and controlled environment. 

Airlock offers a fully functional community edition of its microgateway, allowing teams to explore its capabilities on a limited scale. This is a great opportunity for businesses to test its features before committing to a commercial license. Learn more here.

Demystifying Serverless - Is It a Cost Trap or Just a Trick? 

Lena Fuhrimann, Founder & Cloud Solution Architect at bespinian, wrapped up the meetup with an engaging talk on serverless computing, tackling the common misconceptions about serverless costs. Using real-world examples, she demonstrated how companies can optimize serverless architectures to avoid unexpected expenses while reaping the benefits of scalability and flexibility. 

Key Takeaways: 

  • Know Your Usage Patterns: While serverless architectures can be highly cost-effective for applications with fluctuating workloads, they may not be the best fit for consistently high-demand applications. Understanding your usage patterns is crucial. 
     
  • Optimizing for Cost Efficiency: Leveraging tools like AWS Lambda Power Tuning can help optimize function performance, reducing both execution time and costs. Lena also emphasized using ARM architectures and compute savings plans to cut down expenses. 
     
  • Cost Control Strategies: Setting up billing alerts and limiting concurrency are practical ways to prevent runaway costs. These strategies are essential for keeping serverless environments under budget, especially in production. 

For organizations experimenting with serverless, Lena's presentation underscored the importance of proactive cost management. By implementing best practices like cost monitoring and optimizing function configurations, companies can leverage serverless computing effectively without falling into the cost trap. 

The Future of Secure, Scalable DevOps 

The presentations showcased the power of microgateways and serverless architectures in transforming cloud-native environments. If your organization is looking to enhance its security posture, streamline operations, or optimize infrastructure costs, now is the time to explore the capabilities of Airlock Microgateway. 

Watch the Full Meetup here:

Who Should Watch This Video? 

  • DevOps & Security Teams: For those looking to optimize CI/CD processes, enhance Kubernetes-based cloud-native security, and simplify API security and traffic management. 
     
  • Cloud Engineers & Architects: Exploring serverless solutions, cost optimization strategies, and scalable infrastructure for efficient resource use. 
     
  • Product Owners & CTOs: Interested in reducing time-to-market for secure applications while optimizing costs and infrastructure in cloud-native environments.
     
  • Startups & Enterprises: Whether you're scaling a startup or managing enterprise-level infrastructure, you’ll discover practical approaches to authentication, security, and cost-effective growth. 

Get in Touch: Ready to transform your cloud-native security approach? Contact us to learn more about how the Airlock Microgateway can accelerate your journey towards a secure, efficient, and scalable infrastructure. Let's build a resilient future together!

About Airlock Microgateway

The Airlock Microgateway is a lightweight WAAP solution designed for modern cloud-native environments. It protects your applications and microservices with the tried-and-tested Airlock security features against attacks, while also providing a high degree of scalability.

Information for you

-Our whitepapers-

Executive View: KuppingerCole - Airlock Secure Access Hub for applications and APIs

This KuppingerCole Executive View report provides an architectural and functional overview of the Airlock Secure Access Hub, an integrated platform for secure access management - a multicloud-native security tool for web applications, APIs and beyond.

 

Fill out the form now and receive Executive View!

Whitepaper: Security for cloud-native applications

You can read about how companies can ensure the security of web applications and APIs in Kubernetes in the white paper "Security for cloud-native applications", which was created in collaboration between heise and Airlock.

 

Request whitepaper

Whitepaper: Zero Trust is a journey

The ongoing digital transformation of the world is progressing and having a profound impact on our personal and professional lives in ways that were difficult to imagine just a few years ago.


This white paper discusses the effects of continuous digitalization and its impact.

Request free of charge

Off to DevSecOps

In this white paper, you will learn the most important insights into how you can implement DevSecOps successfully and efficiently, which security components are required for this and the advantages of a microgateway architecture.

 

Request free of charge

Airlock 2FA - Strong authentication. Simple.

Double security - this is what two-factor authentication offers in the field of IT security.


Find out more about strong authentication and the possibilities offered by Airlock in our white paper.

Download for free

Further whitepapers

We provide you with free white papers on these and other topics:

 

  • Successful IAM projects
  • compliance
  • Data protection (DSGVO)
  • Introduction of PSD2
  • PCI DSS requirementsPCI DSS requirements
Request free of charge