Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

CISO advice - building a comprehensive secrets management program

May 26, 2023 By GitGuardian In GitGuardian
Jason Haddix is the CISO of BuddoBot and former CISO/Head of Security at UbiSoft. In this clip Jason explores why a comprehensive secrets management program is absolutely vital for a organizations. He walks us through his 4 step secrtes management plan he has rolled out to Detect, Prevent, Respond and Educate. Today Jason puts together his cyber leadership skills with his penetration testing background as the CISO of BuddoBot, a world class red team as a service organization that is designed to emulate and prepare your organization for real world attacks.
View Video
gitguardian

Lessons from Lapsus - CISO on Building a comprehensive secrets management program

May 24, 2023 By Mackenzie Jackson In GitGuardian

Following a breach by the Lapsus$ cyber gang, Jason Haddix, then CISO of UbiSoft called over 40 other CISOs to discuss strategies on how to be more resilient to attacks. Those conversations led him to create a 4 step guide to building a comprehensive secrets management program.

Read Post
gitguardian

Platform Engineering and Security: A Very Short Introduction

May 22, 2023 By Guest Expert In GitGuardian

Is DevOps really dead? Learn about the rise of platform engineering and how it differs from DevOps in terms of self-service capabilities and automation. Discover how security fits into this new paradigm and the benefits of platform engineering for software development teams of various sizes.

Read Post
Snyk

Setting up the Docker image scan GitHub Action

May 19, 2023 By Mohammad-Ali A'râbi In Snyk

Nowadays, the final product of most Git repositories is a Docker image, that is then used in a Kubernetes deployment. With security being a hot topic now (and for good reasons), it would be scanning the Docker images you create in the CI is vital. In this piece, I’ll use GitHub Actions to build Docker images and then scan them for security vulnerabilities. The Docker image built in the CI is also pushed to GitHub’s Docker registry.

Read Post
gitguardian

We're Teaming Up With Snyk to Strengthen Developer Security!

May 17, 2023 By Ziad Ghalleb In GitGuardian

The new partnership enables Snyk and GitGuardian to build, integrate and go to market together to help development and security teams scale their security programs and significantly reduce their applications' attack surface at every stage of the code-to-cloud lifecycle.

Read Post

Protecting the supply chain in 2023 - Interview with Feross Aboukhadijeh

May 15, 2023 By GitGuardian In GitGuardian
CEO of socket shares his thoughts on why the supply chain is the biggest risk for 2023 and how we can secure it. This interview was part of an entire episode on The Security Repo podcast dedicated to the insights from the 2023 RSA conference.
View Video

Complete guide to GitHooks - Creating your own pre-commit hooks

May 10, 2023 By GitGuardian In GitGuardian
GitHooks are a great way of automating tasks and checking information while using git. These hooks are both powerful surprisingly easy to create yourself. In this video tutorial we run through how git hooks work and create both local and global git hooks which can call an API, use grep to find keys and call local package.
View Video

Copyright © 2026 OpsMatters™. All rights reserved.