Rootconf Mini 2024 (on 22nd & 23rd Nov)

Geeking out on systems and security since 2012

Sai Sandeep Rangisetti

@saisandeepr

From Open Access to Hardened Security: Flipkart's Path to Secure Production Access

Submitted Oct 8, 2024

Flipkart, having grown from a startup to India’s largest e-commerce platform, has continually evolved its security posture to meet the demands of a dynamic, large-scale infrastructure. From an initial state of open access to all developers, our cloud environments have steadily advanced, to a state of centrally orchestrated, timebound, audited and restricted production access.

Over time, our policies have adapted to the diverse needs of virtual machines, containers, and databases across public and private clouds. By balancing centralized policy enforcement with application-specific flexibility, we enable teams to tailor security controls while ensuring critical policies remain tightly governed by central teams.

Key innovations include role-based access control for SSH into virtual machines, databases, and Kubernetes clusters, all secured with two-factor authentication. These controls, coupled with centralized firewalls, monitoring and approval workflows, significantly reduce human errors while streamlining production access.

Key Takeaways:

  • Understand how Flipkart’s security policies have evolved from basic controls to robust security with minimal impact on user convenience.
  • Learn how Flipkart dynamically manages security across public and private clouds, virtual machines, and containers at scale
  • Explore how application-specific configuration empowers team managers to tune security options, while centralized teams ensure compliance with company-wide policies.

Audience:

  • Cloud Security Engineers, Developers: Design and build secure access to virtual machines, containers, and databases.
  • Infrastructure/ Operations Teams: Focused on building secure, scalable infrastructures.
  • Technically Curious: Those interested in the ongoing evolution of cloud security within a fast-growing organization.

Comments

{{ gettext('Login to leave a comment') }}

{{ gettext('Post a comment…') }}
{{ gettext('New comment') }}
{{ formTitle }}

{{ errorMsg }}

{{ gettext('No comments posted yet') }}

Hosted by

We care about site reliability, cloud costs, security and data privacy

Supported by

Platinum Sponsor

Nutanix is a global leader in cloud software, offering organizations a single platform for running apps and data across clouds.

Platinum Sponsor

PhonePe was founded in December 2015 and has emerged as India’s largest payments app, enabling digital inclusion for consumers and merchants alike.

Silver Sponsor

The next-gen analytics engine for heavy workloads.

Sponsor

Community sponsor

Peak XV Partners (formerly Sequoia Capital India & SEA) is a leading venture capital firm investing across India, Southeast Asia and beyond.

Venue host - Rootconf workshops

Thoughtworks is a pioneering global technology consultancy, leading the charge in custom software development and technology innovation.

Community Partner

FOSS United is a non-profit foundation that aims at promoting and strengthening the Free and Open Source Software (FOSS) ecosystem in India. more

Community Partner

A community of Rust language contributors and end-users from Bangalore. We have presence on the following telegram channels https://t.me/RustIndia https://t.me/fpncr LinkedIn: https://www.linkedin.com/company/rust-india/ Twitter (not updated frequently): https://twitter.com/rustlangin more