GitOps and CI/CD: Maintaining Security in the Age of Automation

Explore the critical security considerations in GitOps and CI/CD practices through this informative conference talk. Learn about potential security risks in automated software development and deployment processes, and discover best practices for mitigating these risks. Gain insights into securing Git repository access, implementing secure communication between pipelines and infrastructure, automating security testing and vulnerability scanning, managing sensitive data, and monitoring pipelines for security incidents. Benefit from real-world examples drawn from Red Hat's SRE successful implementation of secure GitOps and CI/CD pipelines. Walk away with practical tips and guidelines to apply to your own pipelines, ensuring a robust understanding of security risks and the tools needed to maintain a secure pipeline in the age of automation.

GitOps and CI/CD: Maintaining Security in the Age of Automa... Christian Hernandez & Hilliary Lipsig