I'm Natalie, a DevSecOps engineer and consultant experienced in developer experience and consolidation within a wide array of security-focused environments. I work at the intersection of technology, people, and highly-regulated industries as a Principal Solutions Engineer for Public Sector at Chainguard!

1. Images have their own risks, too: You've locked down your runtime, orchestrator, and hosts. Now how about what's actually running inside of those containers?
2. Risks in the image registry: All of these containers are images ... somewhere. That 'somewhere' is a registry. What risks can we find in our container registry?
3. Orchestrating chaos and containers: The magic of putting your application in a container is scaling to run even bigger workloads than could fit in a single machine. Container orchestrators have their own risks too. This new layer has its own permissions schema to learn and configurations to fiddle with. Let's dive in!

• Container security - Container Escapes 101 and a gentle intro to container security
• Kubernetes - kubernoodles, self-hosted GitHub Actions runners made for humans
• Linux (mostly RHEL and Ubuntu these days) - fedora-acs-override
• Software development in highly regulated industries (NIST 800-171 and 800-172 (CMMC), DoD IL 2-6, but also ITAR and RMF and some FedRAMP and FISMA too)
• Python for the most part, sometimes a bit of Go, way more bash than I’ll admit to, and I’m still not sure if all that YAML counts
• GitHub Enterprise - enterprise security team, audit and compliance reporting
• but mostly, I work with people on all of the above! 💖

You can find me in our work Slack sharing all sorts of neat things you can do with all that fun stuff and probably find out how I've broken and maybe fixed something too. 😀

• All sorts of handy Raspberry Pi projects, including
  • Kodi set up on a television for local media (build directions)
  • OpenWRT router (build directions)
  • Pi-hole, for DNS and ad-blocking (build directions)
  • Ubiquiti UniFi network controller, in Docker of course
• I'm getting into the Flipper Zero lately - it's so handy and mischievous! (some fun uses)
• Video games in a Windows VM on my Fedora desktop with libvirt, KVM, and a custom Linux kernel to pass hardware to it. It's got about 5% or so performance drop (just looking at frame rates) over a native install. You should check it out - code and write-up on how it works.

I have an awesome life outside of tech, so while I have a few projects that I enjoy, nothing above is close to where I spend most of my time / energy. If you need anything of mine above fixed, please feel free to fork it and send me a pull request! ❤️

• 🌱 I’m currently studying to sit for my OSCP certification and learning the ropes at a container security startup.
• 🎤 Public speaking is fun! Check out what I've been up to here.
• 😄 Pronouns: she/her
• ❓ Looking for my résumé? It's here, but you can also find some of what I've been up to in my profile. If you want to know about where else I've worked and went to school, you should go to LinkedIn.
• 💬 Want to chat? I'm on Mastodon.