Security2
Maintaining the security of your application and data is critical. Learn how to implement security best practices and automate security scans with CI/CD.
![CircleCI logo against a gray and green background.](https://ctf-cci-com.imgix.net/1yYERrcJtNkaXwiaLOBtRW/a7ac6b11a20e00ce472bc9a7a65735b3/rba-plain-logo-v3.jpg?ixlib=rb-3.2.1&w=2000&auto=format&fit=max&q=60)
CircleCI incident report for January 4, 2023 security incident
![Rob Zuber](https://ctf-cci-com.imgix.net/3vOSw572RqVIbQyyiqM2il/2401826fdc85b55b91a5d2a6fac1a5ef/rob.jpg?ixlib=rb-3.2.1&w=2000&auto=format&fit=max&q=60)
Chief Technology Officer
![CircleCI logo against a gray and green background.](https://ctf-cci-com.imgix.net/1yYERrcJtNkaXwiaLOBtRW/a7ac6b11a20e00ce472bc9a7a65735b3/rba-plain-logo-v3.jpg?ixlib=rb-3.2.1&w=2000&auto=format&fit=max&q=60)
CircleCI security alert: Rotate any secrets stored in CircleCI (Updated Jan 13)
![Rob Zuber](https://ctf-cci-com.imgix.net/3vOSw572RqVIbQyyiqM2il/2401826fdc85b55b91a5d2a6fac1a5ef/rob.jpg?ixlib=rb-3.2.1&w=2000&auto=format&fit=max&q=60)
Chief Technology Officer
![Developer A sits at a desk working on an intermediate-level project.](https://ctf-cci-com.imgix.net/1s6LKn090EJwGEpfUFUZMy/b529acd2183d8afe1d04bc0792aecc09/Tutorial-Intermediate-A.jpg?ixlib=rb-3.2.1&w=2000&auto=format&fit=max&q=60)
Implementing access control policies in CI/CD pipelines
![Zan Markan](https://ctf-cci-com.imgix.net/GLLns68bZBcZbR7R1M6YT/73521c510324e5ecaf8cf4024473632e/zan-markan.jpg?ixlib=rb-3.2.1&w=2000&auto=format&fit=max&q=60)
Developer Advocate
![CircleCI SOC2 Type II Compliant - AICPA Service Organization Control Reports - Formerly SAS 60 Reports](https://ctf-cci-com.imgix.net/4oubUEM8meWg2qdpZXrszX/900dc1d1559a088df385d63fa880d550/2021-04-07-SocIITypeII.png?ixlib=rb-3.2.1&w=2000&auto=format&fit=max&q=60)
Continuous integration that you can trust: announcing SOC 2 Type II certification
![Rob Zuber](https://ctf-cci-com.imgix.net/3vOSw572RqVIbQyyiqM2il/2401826fdc85b55b91a5d2a6fac1a5ef/rob.jpg?ixlib=rb-3.2.1&w=2000&auto=format&fit=max&q=60)
Chief Technology Officer
![Developer C sits at a desk working on an advanced-level project](https://ctf-cci-com.imgix.net/viYGJWazT0Q4kLAn2r4z3/ddb341525e87e41f09773945d4e14fe4/Tutorial-Advanced-C.jpg?ixlib=rb-3.2.1&w=2000&auto=format&fit=max&q=60)
Tips for optimizing Docker builds
![Angel Rivera](https://ctf-cci-com.imgix.net/1Rhp9Nebp4K4jKGw9YG584/afaa8e5a1dcb4d8eae695a091369b951/angel-rivera2.jpg?ixlib=rb-3.2.1&w=2000&auto=format&fit=max&q=60)
Developer Advocate, CircleCI
![Developer B sits at a desk working on an advanced-level project.](https://ctf-cci-com.imgix.net/4wcFcrXEs3WD2rILK6gwUp/8da5fbebc266c1c40b28387fa2d55698/Tutorial-Advanced-B.jpg?ixlib=rb-3.2.1&w=2000&auto=format&fit=max&q=60)
Building Docker images for multiple operating system architectures
![Angel Rivera](https://ctf-cci-com.imgix.net/1Rhp9Nebp4K4jKGw9YG584/afaa8e5a1dcb4d8eae695a091369b951/angel-rivera2.jpg?ixlib=rb-3.2.1&w=2000&auto=format&fit=max&q=60)
Developer Advocate, CircleCI
![Developer RP sits at a desk working on a beginner-level project.](https://ctf-cci-com.imgix.net/yreoQeXQhUjDj9JhApNfp/b87c367b03e3fec297747e442427a78c/Tutorial-Beginner-RP.jpg?ixlib=rb-3.2.1&w=2000&auto=format&fit=max&q=60)
Local CI pipeline development
![Angel Rivera](https://ctf-cci-com.imgix.net/1Rhp9Nebp4K4jKGw9YG584/afaa8e5a1dcb4d8eae695a091369b951/angel-rivera2.jpg?ixlib=rb-3.2.1&w=2000&auto=format&fit=max&q=60)
Developer Advocate, CircleCI
![Vulnerability Management](https://ctf-cci-com.imgix.net/45h6MduHegzg76EpF1hn8Z/d9d895ddf538ab08cb8de239fa989f1c/Vulnerability_Management.jpg?ixlib=rb-3.2.1&w=2000&auto=format&fit=max&q=60)
How to do vulnerability management with Docker and CI/CD
![Tito Villalobos](https://ctf-cci-com.imgix.net/mmTdtQIYHayOoc2Hg1asK/4b9a6ad3496892808af27bf9db8e6cee/ernesto-villalobos.jpg?ixlib=rb-3.2.1&w=2000&auto=format&fit=max&q=60)
Staff Security Engineer
![Developer B sits at a desk working on an intermediate-level project.](https://ctf-cci-com.imgix.net/3BCGQWZ82HqX3Fb80MICvr/343c5ce6f8fd52d7fa68474505983a37/Tutorial-Intermediate-B.jpg?ixlib=rb-3.2.1&w=2000&auto=format&fit=max&q=60)
Adding application and image scans to your CI/CD pipeline
![Angel Rivera](https://ctf-cci-com.imgix.net/1Rhp9Nebp4K4jKGw9YG584/afaa8e5a1dcb4d8eae695a091369b951/angel-rivera2.jpg?ixlib=rb-3.2.1&w=2000&auto=format&fit=max&q=60)
Developer Advocate, CircleCI