February 1-2, 2023 | Seattle, WA
View More Details | Registration Information

The Sched app allows you to build your schedule but is not a substitute for your event registration. You must be registered for CloudNativeSecurityCon North America 2023 to participate in these sessions. If you have not registered but would like to join us, please go to the event registration page to purchase a registration.

Please note: This schedule is automatically displayed in Pacific Standard Time (PST), UTC -8. To see the schedule in your preferred timezone, please select from the drop-down menu to the right, above "Filter by Date."

The schedule is subject to change.
Back To Schedule
Wednesday, February 1 • 10:10am - 10:15am
Sponsored Keynote: Why Developer Laptop Security is Key to Securing Your CI/CD Pipeline - Saurabh Wadhwa, Senior Solutions Engineer, Uptycs

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Feedback form is now closed.
Your developer’s laptop is only one hop away from cloud infrastructure and crown-jewel data and services.
When it comes to securing cloud applications, security teams need to consider how they can secure the arc of application development. It often begins when a developer signs into an identity provider using their laptop, then pulls open-source code from a Git repository. Developers use Chrome extensions for development tasks, then push code through their build, test, and deploy processes using automation servers, Kubernetes, and public cloud services like AWS. At each stage, there are multiple points an attacker can target.

This session will cover the requirements for visibility into the entire development supply chain, from laptop to cloud, including:
  • Why developer laptops are often an entry point for attackers—now more than ever                 
  • How to gather real-time "device integrity" or security hygiene checks for zero-trust access 
  • How to audit for malicious Chrome extensions or vulnerable software packages 
  • How to tie together identity and GitHub activity on the laptop with CI/CD actions

avatar for Saurabh Wadhwa

Saurabh Wadhwa

Senior Solutions Engineer, Uptycs
Saurabh is a Senior Solutions Engineer at Uptycs focusing on securing cloud and container workloads. Saurabh has been passionate about working in the cybersecurity industry for the last 11+ years having worked in the UEBA, SIEM, Threat Intelligence, XDR, and CSPM spaces. He graduated... Read More →

Wednesday February 1, 2023 10:10am - 10:15am PST
Room 6AB