Watch Video Demo
Book a Demo
  • Webinars SSCS

CI/CD Security episode 2
Best practices for CI/CD protection from OWASP perspective

Securing the Software Supply Chain

  • ON DEMAND
Watch Now >>
Luis Rodriguez

CTO & Co-founder at Xygeni

Luis_Garcia
Luis García

Supply Chain Security Engineer and pre-Sales at Xygeni

Description

Join this second episode of the CI/CD webinars featuring Luis Rodríguez, CTO, and co-founder of Xygeni, and Luis Manuel García, Sales Support Manager. In this session, we will explore the “blue team” perspective of CI/CD security, diving deep into actionable steps organizations can take to enhance their security posture concerning their CI/CD systems.

 

 

This webinar will emphasize the significance of conducting an inventory of CI/CD systems, analyzing past incidents, and identifying vulnerable areas to enhance Software Supply Chain security. Furthermore, we will specifically address CI/CD risks, with a focus on poisoned pipeline execution (PPE).

 

 

Through real examples, they will demonstrate the risks associated with accessing secrets through pipeline misconfigurations, highlighting the importance of detecting and preventing anomalous behaviors. Don’t miss this valuable opportunity to learn about CI/CD security best practices and the proactive measures required to safeguard the Software Supply Chain.

 

What you'll Learn

  • The importance of conducting a comprehensive inventory of CI/CD systems and assessing past incidents to improve Software Supply Chain security
  • Specific CI/CD risks, including the concept of poisoned pipeline execution (PPE), and practical examples illustrating how attackers can manipulate the build process.
  • How misconfigurations in the pipeline can lead to unauthorized access to secrets and sensitive data, highlighting the need for proper protection and detection measures.
  • The significance of implementing proactive security measures, such as maintaining the principle of least privilege and configuring branch protection rules on critical branches.
  • Valuable insights into CI/CD security best practices and the role of automation and security tools, like the Xygeni platform, in enhancing the security posture of CI/CD systems and protecting software supply chains.

Speakers

jesus cuadrado xygeni

moderator

Jesús Cuadrado

Chief Product Officer
at Xygeni

Linkedin
Luis_Garcia

Speaker

Luis Rodriguez

Chief Product Officer
at Xygeni

Linkedin
luis rodriguez linkedin 2

Speaker

Luis rodriguez

co-founder & CTO
at Xygeni

Linkedin

Watch ON DEMAND

Main
highlights

742%

Software Supply Chain Attacks increase in three years

$80.6 Bilion

per year The Annual Projected Cost of Vulnerable Software Supply Chains by 2026

68%

of organizations with DevOps infrastructure have reported increased vulnerability due to inadequate security measures

74%

of organizations with DevOps infrastructure have reported increased vulnerability due to inadequate security measures

Xygeni Logo White

© 2024 Xygeni. All rights reserved

Linkedin-in Twitter

Products

Resources

Company

Legal