• Liz Rice

    Software, containers,
    & security

  • I love making, understanding & explaining code

    My background and core competence is systems software engineering, but I love the whole process of building products. I've been in startups that have succeeded and others that have failed. I enjoy writing code, and understanding how other people will use it.


    I'm the technology evangelist with container security specialists Aqua Security, where I also look after our open source projects, and I'm chair of the CNCF's Technical Oversight Committee. I co-chaired the KubeCon / CloudNativeCon 2018 events in Copenhagen, Shanghai and Seattle, and co-authored a book on Kubernetes Security for O'Reilly, with Michael Hausenblas.

    Away from my desk

    When I'm not working you'll quite likely find me on a bike (in real life or racing on Zwift), at a gig, eating & drinking with friends, doing yoga or drumming. I'm a mediocre drummer at best, but it's fun!

  • Skills

    Where I get over my British reserve and admit that I'm pretty good at these

    Software engineering

    I spent the first, well, many years of my professional life writing and architecting portable network stack implementations. I love and understand how to make clean, well-architected code.

    Live coding on stage

    Apparently this is a special skill. This talk, where I explain what a container is in a few lines of go, has been well-received, or you might want to watch me build a debugger from scratch.

    Containers, Kubernetes and security

    I've been working with containers for several years. I'm a fan of Kubernetes and, since joining Aqua, I've learned a thing or two about the security aspects of using containers and distributed systems.

    Go & Python

    And C, if I really have to. Go is really my language of choice these days. Some things are on my GitHub profile (and ask me about the projects that aren't open source).


    As well as my own Medium posts and the Aqua Security blog, I've written for numerous sites and magazines. I'm also an O'Reilly author - check out Kubernetes Security (co-authored with Michael Hausenblas), or my guide to Containerizing your Go Code.


    I've been honoured to speak at tech conferences around the world. My black belt talk on container namespaces won me a speaker award at DockerCon, and my dotGo talk on debuggers was the second most highly rated talk at dotConferences in 2017.

  • Articles

    I write on Medium, the Aqua Security blog, TheNewStack and elsewhere

    Implementing the CIS Kubernetes Benchmark with Aqua's kube-bench

    How Kubernetes environment variables can mess with your app.

    Finding vulnerable containers with Grafeas

    Using the ptrace() system call to write a breakpoint debugger in Golang.

    Finding vulnerable containers with Grafeas

    Deploying the Aqua enforcer as a sidecar container

    Finding vulnerable containers with Grafeas

    Build image scanning into your CI/CD pipeline

    Finding vulnerable containers with Grafeas

    Running Kubernetes on my Mac, just the same as in the cloud

    How to access your app once you've deployed it on your local machine

    Building something pointless, that maybe won't be so pointless after all!