Infrastructure, Cloud, and Supply Chain Security episode artwork

EPISODE · Sep 19, 2025 · 21 MIN

Infrastructure, Cloud, and Supply Chain Security

from Mastering Cybersecurity: The Cyber Educational Audio Course · host Dr Jason Edwards

Infrastructure security has evolved from racks of physical servers to fleets of virtual machines, containers, and cloud services managed by code. In this episode, we trace that transformation and the new risks it created—where automation, elasticity, and speed amplify both productivity and exposure. You’ll learn how Infrastructure as Code, CI/CD pipelines, and supply chain dependencies enable rapid delivery but also expand attack surfaces when misconfigurations or compromises spread at machine speed. The story connects IaC templates, configuration drift, and pipeline integrity to real-world lessons from SolarWinds, Log4j, and XZ, showing how trust can erode when oversight lags behind automation.We also explore the growing movement toward DevSecOps, reproducible builds, software bills of materials, and secure-by-design pipelines. These practices blend governance, verification, and culture into the foundation of resilience, ensuring that speed and safety advance together. With insights into SBOMs, NIST 800-204D, OWASP guidance, and the broader ecosystem of open-source collaboration, the episode frames supply chain security as both a technical and leadership challenge. If you want to understand how to protect what modern enterprises are truly built on—their automated infrastructure and shared code—this is your guide, developed by BareMetalCyber.com.

Episode metadata supplied by the publisher feed · Published Sep 19, 2025

Infrastructure security has evolved from racks of physical servers to fleets of virtual machines, containers, and cloud services managed by code. In this episode, we trace that transformation and the new risks it created—where automation, elasticity, and speed amplify both productivity and exposure. You’ll learn how Infrastructure as Code, CI/CD pipelines, and supply chain dependencies enable rapid delivery but also expand attack surfaces when misconfigurations or compromises spread at machine speed. The story connects IaC templates, configuration drift, and pipeline integrity to real-world lessons from SolarWinds, Log4j, and XZ, showing how trust can erode when oversight lags behind automation.We also explore the growing movement toward DevSecOps, reproducible builds, software bills of materials, and secure-by-design pipelines. These practices blend governance, verification, and culture into the foundation of resilience, ensuring that speed and safety advance together. With insights into SBOMs, NIST 800-204D, OWASP guidance, and the broader ecosystem of open-source collaboration, the episode frames supply chain security as both a technical and leadership challenge. If you want to understand how to protect what modern enterprises are truly built on—their automated infrastructure and shared code—this is your guide, developed by BareMetalCyber.com.

PodParley-generated summary based on available episode metadata and transcript content.

NOW PLAYING

Infrastructure, Cloud, and Supply Chain Security

0:00 21:58

No transcript for this episode yet

We transcribe on demand. Request one and we'll notify you when it's ready — usually under 10 minutes.

Frequently Asked Questions

How long is this episode of Mastering Cybersecurity: The Cyber Educational Audio Course?

This episode is 21 minutes long.

When was this Mastering Cybersecurity: The Cyber Educational Audio Course episode published?

This episode was published on September 19, 2025.

What is this episode about?

Infrastructure security has evolved from racks of physical servers to fleets of virtual machines, containers, and cloud services managed by code. In this episode, we trace that transformation and the new risks it created—where automation,...

Is there a transcript available for this episode?

Yes, a full transcript is available for this episode. You can read the complete transcript on the episode page.

Can I download this Mastering Cybersecurity: The Cyber Educational Audio Course episode?

Yes, you can download this episode by clicking the download button on the episode player, or subscribe to the podcast in your preferred podcast app for automatic downloads.
URL copied to clipboard!