ce Tag: Visual edit |
PurpleCat7 (talk | contribs) No edit summary Tag: Visual edit |
||
Line 58: | Line 58: | ||
[[Category:InfoSec Twitter]] |
[[Category:InfoSec Twitter]] |
||
[[Category:Anarchists]] |
[[Category:Anarchists]] |
||
[[Category:American anarchists]] |
Revision as of 03:05, 20 March 2023
Ian Coldwater | |
---|---|
![]() Ian Coldwater | |
Occupation(s) | Computer security specialist and speaker |
Employer | Twilio |
Organization(s) | Kubernetes SIG Security, Open Source Security Foundation |
Ian Coldwater is an American computer security specialist, hacker and speaker specializing in Kubernetes and cloud native security.[1][2] They are a security architect at Twilio, and co-chair the Kubernetes special interest group Kubernetes SIG Security.[3][4][5]
Career
Coldwater started working in tech in their thirties, starting in DevOps before focusing on security.[6] They began specializing in hacking and hardening Kubernetes containers, working as an independent penetration tester before joining Heroku as a lead platform security engineer.[6][7] As of 2021, they work as a security architect at Twilio.[8] Along with Tabitha Sable, they co-chair the Kubernetes special interest group, Kubernetes SIG Security.[3][4] They are also on the governing board of the Open Source Security Foundation.[9]
Coldwater has spoken at conferences including DEF CON,[10] Black Hat,[11] KubeCon and CloudNativeCon,[5] RSA Conference,[12] Velocity,[13] and devopsdays.[14][15] In 2020, they received the Top Ambassador award from the Cloud Native Computing Foundation for spreading interest in the area.[15]
Hacking Kubernetes, published by O'Reilly Media, credits Coldwater and Duffie Cooley for co-developing the "canonical offensive Kubernetes one-liner".[16] In 2020, Coldwater and Brad Geesaman presented a talk at RSA 2020 titled "Advanced Persistence Threats – The Future of Kubernetes Attacks",[17] in which they demonstrated bypassing Kubernetes audit logs and other attacks.[16] In 2021, Coldwater, with expertise from Chad Rikansrud, became the first person in history to escape a container on a mainframe.[10][18]
Personal life
Coldwater lives in Minneapolis, Minnesota.[12] Politically, they identify as an anarchist.[19]
See also
References
- ^ Kennedy, Maddy (April 18, 2019). "100 women you should invite to speak at your next Twin Cities tech event". Minneapolis/St. Paul Business Journal. Retrieved July 10, 2021.
- ^ Menn, Joseph (September 9, 2021). "Microsoft warns Azure customers of flaw that could have permitted hackers access to data". Reuters. Retrieved September 9, 2021.
{{cite web}}
: CS1 maint: url-status (link) - ^ a b Sharma, Mayank (December 4, 2020). "Docker support is being deprecated in Kubernetes - but not just yet". TechRadar. Retrieved July 10, 2021.
- ^ a b Coldwater, Ian; Sable, Tabitha; Raghunathan, Savitha; Small, Aaron (May 14, 2021). Get In Containerds, We're Going Securing: Kubernetes SIG Security is Here! (Video). Cloud Native Computing Foundation. Event occurs at 0:10.
- ^ a b "Ian Coldwater". KubeCon + CloudNativeCon Europe 2020. 2020. Retrieved July 23, 2021.
{{cite web}}
: CS1 maint: url-status (link) - ^ a b Coldwater, Ian (August 6, 2019). "Attacking and Defending Kubernetes, with Ian Coldwater". Kubernetes Podcast (Interview). Interviewed by Adam Glick; Craig Box. Google. Retrieved July 23, 2021.
- ^ Combs, Veronica (May 1, 2021). "5 weird, cool things I learned from attending Deserted Island DevOps on Animal Crossing". TechRepublic. Retrieved July 10, 2021.
- ^ Lima, Cristiano (September 16, 2021). "Why Democrats are rallying around creating a new FTC privacy bureau to police Big Tech". The Washington Post. Retrieved May 17, 2022.
- ^ "Governing Board". Open Source Security Foundation. Retrieved July 23, 2021.
{{cite web}}
: CS1 maint: url-status (link) - ^ a b "DEFCON29 Speakers". DEF CON. 2021. Retrieved August 5, 2021.
{{cite web}}
: CS1 maint: url-status (link) - ^ "Speaker: Ian Coldwater". Black Hat Briefings. Retrieved July 23, 2021.
{{cite web}}
: CS1 maint: url-status (link) - ^ a b "Ian Coldwater". RSA Conference. Retrieved July 23, 2021.
{{cite web}}
: CS1 maint: url-status (link) - ^ "Speaker: Ian Coldwater". O'Reilly Velocity Conference. 2019. Retrieved July 23, 2021.
{{cite web}}
: CS1 maint: url-status (link) - ^ "Ian Coldwater". devopsdays. Retrieved July 23, 2021.
{{cite web}}
: CS1 maint: url-status (link) - ^ a b Cloud Native Computing Foundation (November 20, 2020). "Cloud Native Computing Foundation Announces 2020 Community Awards Winners". Retrieved July 10, 2021.
- ^ a b Martin, Andrew; Hausenblas, Michael (2021). Hacking Kubernetes : threat-driven analysis and defense (First ed.). Sebastapol, CA: O'Reilly Media. ISBN 978-1-4920-8170-8. OCLC 1276934473.
{{cite book}}
: CS1 maint: date and year (link) - ^ Geesaman, Brad (March 2, 2020). "Advanced Persistence Threats - The Future of Kubernetes Attacks". Darkbit. Retrieved May 17, 2022.
- ^ "Container Breakout: Cybersecurity Lessons Learned". SHARE. Retrieved January 24, 2022.
- ^ @IanColdwater on Twitter
External links
- Ian Coldwater on X