Reimagining access governance: Scaling Kubernetes RBAC management via platform APIs

As teams and Kubernetes clusters grow, managing access governance at scale becomes increasingly challenging. This talk explores how a platform team evolved from scattered RBAC configurations to a declarative, operator-driven access control plane embedded in a first-class platform API.

This talk covers:
• Designing access as a platform capability versus separate ad hoc configuration
• Standardizing conventions across platform domains
• Separating authentication, identity expansion, and authorization
• Operating governance in a hub-and-spoke multi-cluster architecture
• Enabling automation of access management, such as agent-driven workflows, through consistent APIs

Attendees gain practical insights on how PlayStation is building cohesive, scalable access governance directly into its platform.