About this Event
This session welcomes learners with an understanding of the fundamentals or advanced technical proficiency.
Join us virtually for a Yorkshire Cyber Security Cluster Masterclass on CI/CD pipeline attacks – how attackers exploit simple oversights to attack supply chains, delivered by Simon Gurney, CTO of Punk Security.
CI/CD servers, and the overall software development lifecycle, are becoming prime targets for attacks because hackers recognise that they contain the crown jewels for software companies, but also provide an opportunity to perform supply chain attacks and breach the perimeters of potentially millions of companies from just one vendor breach. In this talk, we will explain some of the key security concepts you should be aware of when using and configuring CI/CD pipelines and some of the clever things attackers get up to. After this talk, you’ll be fully prepared to recognise and avoid these vulnerabilities.
Simon is the CTO of Punk Security, an innovative security consultancy championing cloud and application security. With 17 years of IT experience, in a career spanning most technical fields, Simon found his niche with DevSecOps and the value that a broad skill-set can bring to an organisation. When Simon isn't busy with Punk Security he's committed to his young family, and developing the next generation of talent as a frequent speaker and OWASP Chapter lead.
Yorkshire Cyber Security Cluster
The Yorkshire Cyber Security Cluster is a professional network of cyber security practitioners and those with an interest in the industry, created as part of the UK Cyber Security Forum to help cyber security experts and organisations across the region to collaborate and build a stronger standard of cyber security as part of a knowledge exchange collective.
The cluster's role is to support, inspire, and work collaboratively with cyber security professionals to strengthen the regional cyber security ecosystem.
1. Establishing as an authentic leader in the cyber security industry.
2. Developing a strong committed community membership.
3. Supporting local economy.
4. Defining, developing and supporting achievable pathways.
5. Achieving sustainable fundings.
Membership
YCSC is a membership organisation; becoming a member of the YCSC means you will receive access to a community of experts, including our exclusive members-only Slack channel, our monthly newsletter and be part of a catalyst for change in the industry. Best of all, membership is completely free!
Join the YCSC today: ycsc.org.uk/membership
For more information on our privacy policy, please visit: ycsc.org.uk/privacy-policy
COVID-19
In compliance with government guidelines, YCSC adheres to all relevant COVID-19 protocols at our events. We kindly ask attendees to also observe these guidelines for the safety of all participants. For more information and guidance, please visit: www.nhs.uk/conditions/coronavirus-covid-19
Disclaimer
Our events are intended for individuals aged 16 years and older.
Any views or opinions expressed at YCSC events by our speakers are solely those of the individual and do not necessarily represent those of Yorkshire Cyber Security Cluster.
Event Venue
Online
USD 0.00