Name: How to Add Supply Chain Tooling into Your DevOps Pipeline
Start: 2023-04-18T11:00:00-06:00
End: 2023-04-18T12:00:00-06:00

With the recent 'security awakening' new supply chain tooling is available to harden the DevOps Pipeline. Learn from Steve Taylor, CTO of DeployHub and CDF TOC Board Member, what tools go where. He will explore 5 phases of the pipeline where scanning, signing, SBOMs, and cataloging can be added to evolve your DevOps Pipeline into a DevSecOps Pipeline.

Tracy Ragan

CDFoundation New Mexico

Technology

Continuous Integration

Configuration Management

Test Automation

DevOps

Continuous Delivery

Jenkins

Continuous Deployment

Build Automation

Microservices

Kubernetes

Steve Taylor is an open-source visionary and industry leader in the areas of software build and release pipelines, open-source security, cloud-native architecture, and microservices. Steve’s career has been laser-focused on delivering secure and compliant build systems from compile to runtime deployments. Steve was the CTO of OpenMake Software and the creator of Meister, the first commercial build security automation system that is the heart of the DevOps process for over 400 enterprise development teams. Steve has built and implemented DevOps pipelines to support business agility in risk-averse industries including finance, government, and transportation.

Steve is well-known in the open-source communities. He serves on the Technology Oversight Committee of the Continuous Delivery Foundation (Linux Foundation) and is the architect of the Ortelius open-source project. He is also a top contributor to the Pyrsia Open-Source project and serves on Stream-9 SBOMs Everywhere at the Open Source Security Foundation (OpenSSF). 

How to Add Supply Chain Tooling into Your DevOps Pipeline

Details