RSAC, Identity, IAM Technologies

BlueFlag Security’s Raj Mallempati on why breaches start with identity

The target on developers' identities has never been bigger. They hold access to source code, CI/CD pipelines, and cloud infrastructure — and attackers know it. Target lost 860GB of source code through a single compromised credential. Recruitment fraud campaigns have pivoted from developer access to cloud admin in under 10 minutes.

These aren't code vulnerabilities — they're access problems. And as AI agents join human developers, contractors, and service accounts in the SDLC, the attack surface is expanding faster than static security tools can track.

Security teams need real-time visibility into who has access and what they're actually doing — not just what's in the code.

Segment Resources:

Make sure to schedule a free SDLC Risk Assessment with BlueFlag Security - 30 minutes to deploy. 48 hours to results.

Please visit https://securityweekly.com/blueflagrsac.

Show Notes: https://securityweekly.com/rsac26-1

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms of Use and Privacy Policy.

You can skip this ad in 5 seconds