Developer pipelines expose complicated and often uncharted attack surfaces. This talk will provide security professionals with the knowledge they need to better understand modern development pipelines so they can evaluate and address associated security risks. This knowledge can be used to evaluate the security of their own build pipelines as well as to direct inquiries into software suppliers.


RSA® Conference, the world’s leading information security conferences and expositions, today concluded its 31st annual event at the Moscone Center in San Francisco. The year’s event attracted over 26,000 attendees, including 600+ speakers, 400+ exhibitors, and over 400 members of the media. Throughout the week, attendees networked on the expo floor and participated in keynote presentations, track sessions, tutorials, seminars, and special events.

Several of the most pressing topics discussed during this year’s Conference included issues surrounding privacy and surveillance, the positive and negative impacts of machine learning and artificial intelligence, the nuances of risk and policy, and cybersecurity-focused innovations across crypto and blockchain.

What Executives Need to Know About CI/CD Pipelines and Supply Chain Security

Conference: RSA Conference 2022

Abstract

Post a comment

Related work

.NET Malware Threats: Internals And Reversing

Evaluating Business Risk for Open Source Cloud Native Projects

RCE-as-a-Service: Lessons Learned from 5 Years of Real-World CI/CD Pipeline Compromise

Yes, Application Security Leads to Better Business Value. Learn How from Experts.

A Measured Response to a Grain of Rice

Sponsored Keynote: Why Developer Laptop Security is Key to Securing Your CI/CD Pipeline