Security Weekly Podcast Network (Audio) Supply Chain Security Security with Containers and CI/CD Systems - Kirsten Newcomer - #ASW 256
Sep 26, 2023
Supply chain security expert Kirsten Newcomer joins the hosts to discuss securing a supply chain with containers and building a predictable and protected pipeline. Topics include SPDX and Software Bill of Materials, understanding consumers and generating trust in code, zero-trust concept, vulnerabilities in security products, the Equifax breach, and final recommendations.
Chapters
Transcript
Episode notes
1 2 3 4 5 6 7 8
Introduction
00:00 • 2min
Kirsten Newcomer's Experience with Red Hat's Security Professionals and App Development
02:03 • 2min
SPDX and Software Bill of Materials
03:38 • 29min
Understanding Consumers and Generating Trust in Code
32:54 • 13min
Supply Chain Security, Zero Trust, and GitLab Vulnerability
45:29 • 5min
Securing the Pipeline and Vulnerabilities in Security Products
50:00 • 22min
The Equifax Breach and Supply Chain Security
01:11:59 • 13min
Final Recommendations and Follow-up Articles
01:25:15 • 2min