I'm Natalie, a DevSecOps engineer and consultant experienced in developer experience and consolidation within a wide array of security-focused environments. I work at the intersection of technology, people, and highly-regulated industries as a Principal Solutions Engineer for Public Sector at Chainguard!

1. Three years of writing on the internet: Lessons learned about habit after three whole years of writing blog posts!
2. Container host shenanigans: Let's pull apart the key security risks at each layer of the container ecosystem ... starting at the bottom, risks to our container's host.
3. Container Escapes 101 - In the wild: So far, we've been SSH'd directly into our host node. This isn't how we normally have access to escape so ... how does these tactics still work? We're going to use the same storage-based escapes as before, but through a web UI and talk through some common difficulties defensive countermeasures.

• Linux (mostly RHEL and Ubuntu these days) - fedora-acs-override
• Kubernetes - kubernoodles, self-hosted GitHub Actions runners made for humans
• Software development in highly regulated industries (ITAR, CMMC, NIST 800-171, DoD IL 2-6)
• Python - Advanced Security CSV export
• Go - gh-org-admin-promote
• GitHub Enterprise - enterprise security team, audit and compliance reporting
• but mostly, I work with people on all of the above! 💖

You can find me in our work Slack sharing all sorts of neat things you can do with all that fun stuff and probably find out how I've broken and maybe fixed something too. 😀

• All sorts of handy Raspberry Pi projects, including
  • Kodi set up on a television for local media (build directions)
  • OpenWRT router (build directions)
  • Pi-hole, for DNS and ad-blocking (build directions)
  • Ubiquiti UniFi network controller, in Docker of course
• I'm getting into the Flipper Zero lately - it's so handy and mischievous! (some fun uses)
• Video games in a Windows VM on my Fedora desktop with libvirt, KVM, and a custom Linux kernel to pass hardware to it. It's got about 5% or so performance drop (just looking at frame rates) over a native install. You should check it out - code and write-up on how it works.

I have an awesome life outside of tech, so while I have a few projects that I enjoy, nothing above is close to where I spend most of my time / energy. If you need anything of mine above fixed, please feel free to fork it and send me a pull request! ❤️

• 🌱 I’m currently studying to sit for my OSCP certification and learning the ropes at a container security startup.
• 🎤 Public speaking is fun! Check out what I've been up to here.
• 😄 Pronouns: she/her
• ❓ Looking for my résumé? It's here, but you can also find some of what I've been up to in my profile. If you want to know about where else I've worked and went to school, you should go to LinkedIn.
• 💬 Want to chat? I'm on Mastodon.