Serverless Secrets Management

Serverless may run scripts without a server, but they don’t need to run without security. In this talk, I’ll show you how to use Open Source secrets management with your serverless apps in a way that also converts to your DevOps Pipeline.

Serverless is awesome, but can be insecure. Scripts should be able to run without a server, but not without a little security. In this talk, I’ll show you how to use Open Source secrets management with your serverless apps in a way that snaps into your pipeline without grinding it to a miserable halt.

As the Strategic Solutions Engineer in DevOps Security for CyberArk, Joe Garcia has talked in the past extensively on how to bring Security’s velocity up to par with DevOps’ agility without affecting it at many events in the past. In this talk, he’ll break down his experience with this in the past, the lessons learned, and differences in approach based on serverless and general CI/CD secrets security.