Adoption of both containers and Kubernetes has continued to increase rapidly across our industry while at the same time, knowledge of how to adopt these technologies in the most secure way is unevenly spread. In this talk we will look at two core components of cloud native development: your application container image and the application Kubernetes deployment manifests. For both of these areas we will talk through, and demonstrate with examples, the options and best practices for building, deploying and running applications in a secure way. We will look into how container primitives are translated into security features of the container runtime and Kubernetes. We will also reference the growing landscape of open source and vendor-specific tooling that can assist you to properly secure your application in production.