One of the emerging standards around security for cloud (native) environments is OPA, the Open Policy Agent. This talk gives an overview of what OPA can do for you and how you can write declarative policies to check your API, Kubernetes, or applications. It's time to up your security game and validate it continuously. Or you can also use OPA to make decisions about access in your application; like can a specific user access certain information or not. All are encoded in a standardized package based on rules.