"Resilience is not just a buzzword, it's a commitment to making security a first-class citizen in our engineering workflow. It means empowering developers with the right tools, culture changing within our teams, and architecting systems that don't just detect threats but also withstand them."
"We know that over the past few years we've witnessed a dramatic escalation in the sophistication of threats targeting our software supply chain, from dependency confusion and typosquatting to compromised build pipelines and AI-generated vulnerabilities."
The sophistication of threats targeting software supply chains has escalated, including issues like dependency confusion and AI-generated vulnerabilities. Engineers and security practitioners must build resilience by design, making security integral to engineering workflows. This involves empowering developers, fostering a culture of security, and architecting systems that can withstand threats. A panel of experts will discuss real-world lessons, the balance between developer velocity and security, the application of zero trust in CI/CD, and securing emerging technologies like AI assistants.
Read at InfoQ
Unable to calculate read time
Collection
[
|
...
]