![CNCF [Cloud Native Computing Foundation]](https://www.classcentral.com/cdn-cgi/image/height=60,format=auto,quality=85/images/logos/institutions/cncf-cloud-native-computing-foundation-hz.png){kind=small}
Coursera Spring Sale
40% Off Coursera Plus Annual!
Grab it
Discover how to bridge the gap between strict compliance requirements and dynamic Kubernetes environments in this lightning talk from KubeCon + CloudNativeCon. Learn from a real-world case study at Hamburg Port Authority that demonstrates how GitOps and open-source tools can automate compliance for critical security controls without sacrificing agility. Explore the implementation of two key IT-Grundschutz/ISO27001 building blocks: APP.4.4.A2 for CI/CD automation through secure scalable setup via templating, Kyverno, and ArgoCD, and APP.4.4.A13 for automated configuration auditing using continuous compliance checks with tools like Trivy, Kyverno, and ArgoCD through GitOps workflows. Gain practical insights into transforming audit checklists into automated guardrails using a high-stakes public-sector example, and walk away with a blueprint for implementing scalable compliance automation in your own Kubernetes environments.
![CNCF [Cloud Native Computing Foundation]](https://www.classcentral.com/cdn-cgi/image/height=40,format=auto,quality=85/images/logos/institutions/cncf-cloud-native-computing-foundation-hz.png){kind=small}
