Compliance is no longer a paper exercise—it's a data challenge.

KubeCon EU 2026 made one thing clear: as regulations like the CRA and updated NIST frameworks tighten, the way we prove security must evolve. I recently joined two panels to dive into how we move past static spreadsheets into dynamic, automated security posture.
If you're struggling to align engineering velocity with compliance requ... https://www.youtube.com/watch?v=UilEpsFPJTw
https://www.youtube.com/watch?v=h5TCuLg35Cc

#KubeCon #CloudNative #InfoSec #ComplianceAsCode

Anyone have some experience with #SCAP using something like #OpenSCAP and #ComplianceAsCode?

I'm looking to do some tailoring, both removing and adding rules. E.g. CIS Benchmark L2 Server's have a federal ssh warning. But my institution has it's own. So I'd need to remove that rule from a custom profile but add another one.

I love my editor! Huge thank you to Kezia Endsley and the entire editorial team at Wiley who have worked so hard to make my book so much better.

Getting closer. Preorder your copy today:
https://buff.ly/3qSHVtV

#DevSecOps #ComplianceAsCode #digitaltransformation