Access Granted

Ep 12: Protecting NHIs in GitHub: Zero Standing Privileges with Just-in-Time Access


Listen Later

In this episode of Access Granted, we sit down with Palak Chheda, Britive’s Principal Architect to dive deep into practical strategies for securing Non-Human Identities (NHIs) within GitHub workflows. 

As automation and CI/CD pipelines become critical in cloud environments, the need to secure machine identities and ephemeral tokens has never been greater. 

We walk through a live demo showcasing how Britive's Just-In-Time (JIT) privilege management eliminates the risks associated with static credentials and API keys. 

Discover how Workload Federation can authenticate GitHub Actions dynamically, enabling true Zero Standing Privileges (ZSP) for infrastructure components. 

Key Takeaways: 

  • The risks of static API keys and long-lived tokens in GitHub workflows. 

  • How to use workload identity federation to achieve ZSP. 

  • Real-world examples of securing CI/CD processes with Britive. 

  • The benefits of ephemeral credentials and dynamic permissions management. 

🎧 Listen now and transform how you manage NHIs in your cloud infrastructure! 

📺 Watch this episode on YouTube: https://www.youtube.com/playlist?list=PLotHzn4KKa4K7qanA_Oi2-LZagw_mINyA 

...more
View all episodesView all episodes
Download on the App Store

Access GrantedBy Britive