Itai Ganot
DevOps Tech Lead @ Payoneer
About Me
I'm a DevOps Tech Lead with over 22 years of hands-on experience in systems engineering and DevOps. Currently leading large-scale, cross-functional DevOps initiatives at Payoneer, driving platform evolution, standardization, and operational excellence across multiple engineering teams.
My background spans the full spectrum of infrastructure and platform engineering — from traditional Linux and Microsoft systems to modern cloud-native, Kubernetes-based platforms. I focus on enabling engineering teams at scale through platform design, infrastructure automation, GitOps, and self-service capabilities.
I have deep expertise across Linux and cloud ecosystems, with a long-standing passion for open-source technologies. Over the years, I've designed and implemented large-scale monitoring and observability platforms (Grafana, Prometheus, Nagios), backup and disaster-recovery solutions, and robust CI/CD pipelines — always with automation as a core principle.
Technical Focus
- Designing and operating production-grade Kubernetes platforms
- Driving infrastructure automation and GitOps workflows
- Implementing declarative cloud resource management using Crossplane
- Leading cross-team architectural initiatives and high-impact platform projects
- Building systems that are resilient, observable, and built to last
Why I Built This Site
In 2024, I took a career break to focus on professional development — studying for the CKA and CKS certifications and diving deep into modern technologies I previously didn't have time to explore. During this period, I found the Kubernetes security learning resources scattered across dozens of sources — official docs, blog posts, GitHub repos, and paid courses. Much of it was either too surface-level or hidden behind paywalls.
I wanted a single, comprehensive resource that covered both the "how to attack" and "how to defend" sides of Kubernetes security. This site is the result of consolidating my research, lab experiments, and over two decades of production experience into one place.
The goal is simple: provide free, in-depth Kubernetes security documentation that's actually useful for practitioners — whether you're preparing for CKS, hardening a production cluster, or learning security fundamentals.
What You'll Find Here
- 126+ pages of documentation covering all CKS exam domains
- Attack vectors with step-by-step exploitation examples
- Best practices mapped to real-world threats
- Tool guides for Trivy, Falco, OPA, Kyverno, and more
- Code examples you can actually use in production
Community Contributions
I'm an active contributor to the DevOps and systems engineering community, with over 13 years on Stack Exchange:
- Server Fault: 11K+ reputation, 2.9M people reached, #187 overall
- Stack Overflow: 6K+ reputation, 1.2M people reached
- Top tags: Linux, Jenkins, AWS, Git, Bash, Puppet
Get in Touch
This project is open source. Contributions, corrections, and suggestions are always welcome.