2020-01-16 Cloud Service Certification Project Meeting
AGENDA for 2020-01-16
Meeting minutes status: Draft (pending approval)
Table of Contents
Date/Time
2019-11-07
Attendees
Name | Organisation | Github ID (optional) |
|---|---|---|
Jason Nelson | JPMC |
|
James McLeod | FINOS |
|
Tosha Ellison | FINOS |
|
Rob Underwood | FINOS |
|
Kirsten Newcomer | Red Hat |
|
Abdullah Garcia | JPMC |
|
Anthony Golia | Red Hat |
|
Eric Tice | Wipro |
|
Freedie Leadsom | Deutsche Bank |
|
Outstanding Action Items
<insert a {Task report} macro here, configured with the group's task page>
Agenda
Time | Item | Who | Notes from the Meeting |
|---|---|---|---|
5 min | Convene & roll call | @Jason Nelson |
|
5 min | Approve minutes from previous meeting
| @Jason Nelson |
|
30min | Jamil and Kirsten to run through the OCP3 repo and introduce the group to the content and how it's executed. https://github.com/ComplianceAsCode/content/tree/master/ocp3 During the call we should decide if the repo should be represented in the CSC wiki as a constant and useful reference. | Jamil Mina Kirsten Newcomer Anthony Golia |
|
15 min | Story Grooming and Epic Setting | Jason and James |
|
5 min | AOB |
|
|
Links Shared
Compliance as Code: https://github.com/ComplianceAsCode/content/blob/master/README.md
CIS Benchmarks: https://www.cisecurity.org/cis-benchmarks/
CSA matrix: https://cloudsecurityalliance.org/research/cloud-controls-matrix/
OpenSCAP open source project: https://www.open-scap.org/
There is also another open source tool for kubernetes: https://github.com/aquasecurity/kube-bench/releases
Action Items
Capture any actions that were identified here, and make sure they are also captured on the group's task page during, or immediately after, the meeting