Biography:Ian Coldwater
Ian Coldwater | |
---|---|
Ian Coldwater | |
Occupation | Computer security specialist and speaker |
Employer | Twilio |
Organization | Kubernetes SIG Security, Open Source Security Foundation |
Ian Coldwater is an American computer security specialist, hacker, and speaker specializing in Kubernetes and cloud native security.[1][2] They are a security architect at Twilio, and co-chair the Kubernetes special interest group Kubernetes SIG Security.[3][4][5]
Career
Coldwater started working in tech in their thirties, starting in DevOps before focusing on security.[6] They began specializing in hacking and hardening Kubernetes containers, working as an independent penetration tester before joining Heroku as a lead platform security engineer.[6][7] As of 2021, they work as a security architect at Twilio.[8] Along with Tabitha Sable, they co-chair the Kubernetes special interest group, Kubernetes SIG Security.[3][4] They are also on the governing board of the Open Source Security Foundation.[9]
Coldwater has spoken at conferences including DEF CON,[10] Black Hat,[11] KubeCon and CloudNativeCon,[5] RSA Conference,[12] Velocity,[13] and devopsdays.[14][15] In 2020, they received the Top Ambassador award from the Cloud Native Computing Foundation for spreading interest in the area.[15]
Hacking Kubernetes, published by O'Reilly Media, credits Coldwater and Duffie Cooley for co-developing the "canonical offensive Kubernetes one-liner".[16] In 2020, Coldwater and Brad Geesaman presented a talk at RSA 2020 titled "Advanced Persistence Threats – The Future of Kubernetes Attacks",[17] in which they demonstrated bypassing Kubernetes audit logs and other attacks.[16] In 2021, Coldwater, with expertise from Chad Rikansrud, became the first person in history to escape a container on a mainframe.[10][18]
Personal life
Coldwater lives in Minneapolis, Minnesota.[12] Politically, they identify as an anarchist.[19] Coldwater is non-binary, and uses they/them pronouns.[20]
See also
References
- ↑ Kennedy, Maddy (April 18, 2019). "100 women you should invite to speak at your next Twin Cities tech event". American City Business Journals. https://www.bizjournals.com/twincities/news/2019/04/18/100-women-you-should-invite-to-speak-atyour-next.html.
- ↑ Menn, Joseph (September 9, 2021). "Microsoft warns Azure customers of flaw that could have permitted hackers access to data" (in en). https://www.reuters.com/technology/microsoft-warns-azure-customers-flaw-that-could-have-permitted-hackers-access-2021-09-08/.
- ↑ 3.0 3.1 Sharma, Mayank (December 4, 2020). "Docker support is being deprecated in Kubernetes - but not just yet". TechRadar. https://www.techradar.com/news/docker-support-is-being-deprecated-in-kubernetes-but-not-just-yet.
- ↑ 4.0 4.1 Coldwater, Ian; Sable, Tabitha; Raghunathan, Savitha; Small, Aaron (May 14, 2021). Get In Containerds, We're Going Securing: Kubernetes SIG Security is Here! (Video). Cloud Native Computing Foundation. Event occurs at 0:10. Archived from the original on July 23, 2021. Retrieved July 23, 2021.
- ↑ 5.0 5.1 "Ian Coldwater". 2020. https://kccnceu20.sched.com/speaker/ian420.
- ↑ 6.0 6.1 Coldwater, Ian (August 6, 2019). "Attacking and Defending Kubernetes, with Ian Coldwater". Kubernetes Podcast (Interview). Interviewed by Adam Glick; Craig Box. Google. Archived from the original on July 23, 2021. Retrieved July 23, 2021.
- ↑ Combs, Veronica (May 1, 2021). "5 weird, cool things I learned from attending Deserted Island DevOps on Animal Crossing". TechRepublic. https://www.techrepublic.com/article/5-weird-cool-things-i-learned-from-attending-deserted-island-devops-on-animal-crossing/.
- ↑ Lima, Cristiano (September 16, 2021). "Why Democrats are rallying around creating a new FTC privacy bureau to police Big Tech". The Washington Post. https://www.washingtonpost.com/politics/2021/09/16/why-democrats-are-rallying-around-creating-new-ftc-privacy-bureau-police-big-tech.
- ↑ "Governing Board" (in en-US). https://openssf.org/about/governing-board/.
- ↑ 10.0 10.1 "DEFCON29 Speakers". 2021. https://defcon.org/html/defcon-29/dc-29-speakers.html#coldwater.
- ↑ "Speaker: Ian Coldwater". https://www.blackhat.com/us-19/speakers/Ian-Coldwater.html.
- ↑ 12.0 12.1 "Ian Coldwater". https://www.rsaconference.com/experts/ian-coldwater.
- ↑ "Speaker: Ian Coldwater" (in en). 2019. https://conferences.oreilly.com/velocity/vl-ca/public/schedule/speaker/318057.html.
- ↑ "Ian Coldwater" (in en-us). https://devopsdays.org/events/2021-minneapolis/speakers/ian-coldwater/.
- ↑ 15.0 15.1 Cloud Native Computing Foundation (November 20, 2020). "Cloud Native Computing Foundation Announces 2020 Community Awards Winners". https://www.prnewswire.com/news-releases/cloud-native-computing-foundation-announces-2020-community-awards-winners-301178231.html.
- ↑ 16.0 16.1 Martin, Andrew; Hausenblas, Michael (2021). Hacking Kubernetes : threat-driven analysis and defense (First ed.). Sebastapol, CA: O'Reilly Media. ISBN 978-1-4920-8170-8. OCLC 1276934473. https://www.worldcat.org/oclc/1276934473.
- ↑ Geesaman, Brad (March 2, 2020). "Advanced Persistence Threats - The Future of Kubernetes Attacks" (in en). https://darkbit.io/blog/future-kubernetes-attacks-rsa-2020.
- ↑ "Container Breakout: Cybersecurity Lessons Learned" (in en-US). SHARE. https://blog.share.org/Article/container-breakout-cybersecurity-lessons-learned.
- ↑ "@IanColdwater on Twitter". https://twitter.com/IanColdwater/status/1351958584800677888.
- ↑ Fee, Nočnica (March 24, 2021). "Inspiring Women in Tech You Should Be Following" (in en). https://newrelic.com/blog/nerd-life/women-in-tech.
External links
- {{Twitter}} template missing ID and not present in Wikidata.
Original source: https://en.wikipedia.org/wiki/Ian Coldwater.
Read more |