Simon Gurney
Simon is the CTO of Punk Security, an innovative security consultancy championing cloud and application security. With 17 years of IT experience, in a career spanning most technical fields, Simon found his niche with DevSecOps and the value that a broad skill-set can bring to an organisation. When Simon isn't busy with Punk Security he's committed to his young family, and developing the next generation of talent as a frequent speaker and OWASP Chapter lead.
DevOps pipeline attacks – how attackers exploit simple oversights to attack supply chains
Session Type: 20 Minute Session
"We've all seen it in the news, CI/CD servers (and the overall software development lifecycle) are becoming prime targets for attacks because hackers recognise that they contain the crown jewels for software companies, but also provide an opportunity to perform supply chain attacks and breach the perimeters of potentially millions of companies.
In this talk, we will explain some of the key security concepts you should be aware of when using and configuring CI/CD pipelines and some of the clever things attackers get up to. After this talk, you’ll be fully prepared to recognise and avoid these vulnerabilities."
Headline Sponsor
Event Sponsors
We are looking for sponsors!
Sponsors make this conference possible, we're actively looking for people to support!