1、Dorota Parad,CEO Security or convenience-why not both?Get pagedCheck the incident reportInvestigate the errorCode the fixMerge&deployVerify the fixDone!Portal blockedConnect to VPNNo access to productionWebsite blockedNo test infra accessBuild failedDeployment failedGet pagedCheck the incident repor
2、tInvestigate the errorCode the fixMerge&deployVerify the fixNo access to productionPasswordSlow machineAnnoying OSDorota Parad,CEO authentication&authorization APIBased in SwitzerlandPrivate,for profitEngineering team 20 peoplenFADP-privacy by design&by defaultBulkheadsReducing the blast radius Leve
3、lsWhat are we protecting?ImpactSo what?SimplicitySimpler=more securePit of SuccessCorrect by defaultPit of uccessevelsulkheadsmpactimplicityPortal blockedConnect to VPNNo access to productionWebsite blockedNo test infra accessBuild failedDeployment failedGet pagedCheck the incident reportInvestigate
4、 the errorCode the fixMerge&deployVerify the fixNo access to productionPasswordSlow machineAnnoying OSMDM software=constant productivity drainLets secure our perimeter!84%35%Phishing attacksImpersonationOther malware(e.g.viruses or spyware)Account takeoverHacking of bank accountsRansomwareDDoS attac
5、ksOther breaches or attacks17%8%7%6%5%6%Source:Cyber security breaches survey 2024(GOV.UK)Minimizing impactSo what?Emails,chatCredentialsSource code-store in the cloud-create a pit of success-ughWhat are we protecting?CI/CD minimizes security riskof malicious commitsMultiple levels of protectionCode
6、+commitPull requestTestMergeDeployGit access controlCredentialsSecond pair of credentialsCode+commitPull requestMergeNo manual interventionsReliable builds=better securityRobust pipelines=simple pipelinesNo commits outside of pipelinePasswordSlow machineAnnoying OSPasswordSlow machineAnnoying OSPort