Episode 125: Configuration Management and CI/CD Pipelines

Secure development doesn't stop at writing code—it includes how that code is built, tested, and deployed. In this episode, we explore configuration management and continuous integration/continuous delivery (CI/CD) pipelines. We discuss how insecure configurations, exposed secrets, and unmonitored automation can lead to compromise. Topics include infrastructure as code (IaC), environment hardening, automated security gates, and rollback procedures. CISSPs must know how to assess CI/CD pipeline security and ensure that automation enhances, rather than undermines, control over software deployment.

Om Podcasten

Welcome to The Bare Metal Cyber CISSP Prepcast — your essential guide to mastering the CISSP certification. Whether you're just starting your cybersecurity journey or preparing for exam day, this podcast delivers expert insights, practical strategies, and clear explanations to help you succeed. Designed by professionals who’ve walked the path, each episode helps you build confidence, sharpen your skills, and move one step closer to certification success.