About the talk
Speaker: Paul Novarese
64% of large enterprises report they were impacted by software supply chain attacks in the last year. Scanning for vulnerabilities is necessary to protect your software, but it’s not sufficient. Using Anchore Enterprise’s deep image inspection, you gain the most accurate vulnerability checks available for container images, and you can add in policy evaluations to guard against typosquatting, dependency confusion, and other attack vectors that simple vulnerability scans miss.
In this session, we’ll look at how to add Anchore Enterprise to your GitLab CI/CD Pipelines and apply popular industry standard policy checks such as the CIS Docker Benchmark and NIST 800-190. We’ll also walk through more targeted policy checks for particular applications and incorporate the results into the GitLab Security & Compliance Dashboards.
Get in touch with Sales: http://bit.ly/2IygR7z
Building and scaling customer success programs *** DevSecOps transformations *** Public speaking (small, local meetups to global open-source conferences)View the profile
Buy this talk
Buy this video
Our other topics
With ConferenceCast.tv, you get access to our library of the world's best conference talks.