Ep 12: Protecting NHIs in GitHub: Zero Standing Privileges with Just-in-Time Access
Episode 12 of the Access Granted podcast, hosted by Britive, titled "Ep 12: Protecting NHIs in GitHub: Zero Standing Privileges with Just-in-Time Access" was published on February 27, 2025 and runs 22 minutes.
February 27, 2025 ·22m · Access Granted
Summary
In this episode of Access Granted, we sit down with Palak Chheda, Britive’s Principal Architect to dive deep into practical strategies for securing Non-Human Identities (NHIs) within GitHub workflows. As automation and CI/CD pipelines become critical in cloud environments, the need to secure machine identities and ephemeral tokens has never been greater. We walk through a live demo showcasing how Britive's Just-In-Time (JIT) privilege management eliminates the risks associated with static credentials and API keys. Discover how Workload Federation can authenticate GitHub Actions dynamically, enabling true Zero Standing Privileges (ZSP) for infrastructure components. Key Takeaways: The risks of static API keys and long-lived tokens in GitHub workflows. How to use workload identity federation to achieve ZSP. Real-world examples of securing CI/CD processes with Britive. The benefits of ephemeral credentials and dynamic permissions management. 🎧 Listen now and transform how you manage NHIs in your cloud infrastructure! 📺 Watch this episode on YouTube: https://www.youtube.com/playlist?list=PLotHzn4KKa4K7qanA_Oi2-LZagw_mINyA
Episode Description
In this episode of Access Granted, we sit down with Palak Chheda, Britive’s Principal Architect to dive deep into practical strategies for securing Non-Human Identities (NHIs) within GitHub workflows.
As automation and CI/CD pipelines become critical in cloud environments, the need to secure machine identities and ephemeral tokens has never been greater.
We walk through a live demo showcasing how Britive's Just-In-Time (JIT) privilege management eliminates the risks associated with static credentials and API keys.
Discover how Workload Federation can authenticate GitHub Actions dynamically, enabling true Zero Standing Privileges (ZSP) for infrastructure components.
Key Takeaways:
The risks of static API keys and long-lived tokens in GitHub workflows.
How to use workload identity federation to achieve ZSP.
Real-world examples of securing CI/CD processes with Britive.
The benefits of ephemeral credentials and dynamic permissions management.
🎧 Listen now and transform how you manage NHIs in your cloud infrastructure!
📺 Watch this episode on YouTube: https://www.youtube.com/playlist?list=PLotHzn4KKa4K7qanA_Oi2-LZagw_mINyA
Similar Episodes
Apr 6, 2026 ·15m
Apr 6, 2026 ·6m
Apr 6, 2026 ·5m
Apr 6, 2026 ·6m
Apr 6, 2026 ·6m
Apr 6, 2026 ·6m