user

OVO Tech Blog

Our journey navigating the techosphere


Tagsecurity
Featured

security aws azure gcp devsecops

How we prevented subdomain takeovers and saved $000s

Posted on .

How we developed Domain Protect, an open source tool for automated scanning of cloud infrastructure for subdomains vulnerable to takeover.…

Featured

kubernetes security devsecops sre monitoring

Kubernetes security monitoring on a decentralised, multi-cluster platform

Posted on .

By Chongyang Shi, Alex Kaskasoli, Ignacio Dominguez, and Emily Young Following our culture of Technical Autonomy, teams building the Kaluza Energy Platform at OVO choose the cloud platforms and services best suited for them. Most components of the Kaluza platf…

Featured

security terraform aws ci/cd

Building a secure CI/CD pipeline for Terraform Infrastructure as Code

Posted on .

We created a model for automatically delivering infrastructure changes with robust security practices, and used it to build a secure Terraform CI/CD solution for AWS at OVO.…

Featured

Production Engineering devops security infosec devsecops

Mantle - Secure Convenience

Posted on .

Here at OVO we make use of managed services that allow us to run less software ourselves, and play pivotal roles in achieving CI/CD; services which are firmly placed on our Paved Road. Two of the most prevalent managed services we use are GitHub and CircleCI.…

Featured

docker security

Catching security vulnerabilities in the build pipeline

Posted on .

At OVO Energy we take cyber-security very seriously. We are keen to ensure that all of our services and infrastructure are set up to be as resistant as possible to attack. One area we’ve recently decided to improve in is the area of security for Docker conta…