The Top 10 CI/CD Security Risks and CI/CD Goat - Daniel Krivelevich - ASW #220 | allinfosecnews.com

Nov. 15, 2022, 5:38 p.m. |

Security Weekly (Download Only) sw-all.swsgtv.libsynpro.com

Cider Security’s recently published research of the Top 10 CI/CD Security Risks acts to identify vulnerabilities to help defenders focus on areas to secure their CI/CD ecosystem. They created a free learning tool with a deliberately vulnerable environment to demonstrate these flaws -- “CI/CD Goat”. Like similar tools, this helps appsec and devops teams gain a better understanding of major CI/CD security risks and, importantly, their appropriate countermeasures. Segment Resources: - https://www.cidersecurity.io/top-10-cicd-security-risks/ - https://github.com/cider-security-research/top-10-cicd-security-risks - https://www.cidersecurity.io/blog/research/ci-cd-goat/ - https://github.com/cider-security-research/cicd-goat Visit https://www.securityweekly.com/asw …

cd security daniel goat podcast risks security security risks top 10

More from sw-all.swsgtv.libsynpro.com / Security Weekly (Download Only)

Securing Backups - SWN Vault 1 day, 21 hours ago | sw-all.swsgtv.libsynpro.com

Exploring the latest FortiGuard Labs Threat Report - Derek Manky - ESW Vault 2 days, 18 hours ago | sw-all.swsgtv.libsynpro.com

Achieving Cyber Resilience, External Cybersecurity & Risk Reduction - Margarita Barrero, Andy Grolnick, Alexandre Sieira … 3 days, 9 hours ago | sw-all.swsgtv.libsynpro.com

A CISO’s Perspective, Defending Against AI & Ransomware Evolution - Kris Lahiri, Jim Broome, Mike … 3 days, 9 hours ago | sw-all.swsgtv.libsynpro.com

Hacker Heroes - Josh Corman - PSW Vault 3 days, 16 hours ago | sw-all.swsgtv.libsynpro.com

College Degrees - SWN Vault 4 days, 21 hours ago | sw-all.swsgtv.libsynpro.com

Data Governance is Critical to Info Security and Privacy - Michael Redmond - CSP #176 4 days, 23 hours ago | sw-all.swsgtv.libsynpro.com

Collecting Bounties and Building Communities - Ben Sadeghipour - ASW Vault 5 days, 23 hours ago | sw-all.swsgtv.libsynpro.com

Shifting Third Party Risk & What You Need to Know About PCI DSS 4.0 - … 6 days, 9 hours ago | sw-all.swsgtv.libsynpro.com

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland

View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City

View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL

View on infosec-jobs.com

Sr. Product Manager

@ MixMode | Remote, US

View on infosec-jobs.com

Security Compliance Strategist

@ Grab | Petaling Jaya, Malaysia

View on infosec-jobs.com

Cloud Security Architect, Lead

@ Booz Allen Hamilton | USA, VA, McLean (1500 Tysons McLean Dr)

View on infosec-jobs.com