Thinking About Jenkins Security - DevOps World | Jenkins World 2019
|This is a speaker blogpost for a DevOps World | Jenkins World 2019 talk in Lisbon, Portugal|
Come join us at DevOps World | Jenkins World 2019 for "Thinking about Jenkins Security", a talk about securing your Jenkins server. We’ll review the layers that secure Jenkins and describe techniques that you can use to protect your Jenkins server.
Topics will include:
The secure by default configuration that Jenkins provides
Risks associated with reducing default security settings
Authentication and authorization alternatives
Using "least privilege" principles
Jenkins credentials and trusted access to resources
Software updates and Jenkins project security notices
We’ll intermix descriptions of good practices with some security horror stories. The horror stories remind us of our mistakes; we will discuss how to detect them and how to prevent them.
Come join us for the presentation in Lisbon!