As new threats in software development arise almost daily, attackers increasingly are targeting the software supply chain. CI/CD pipelines streamline the process of transforming raw materials and resources into a completed product and facilitate its delivery to the end customer. These raw materials come from numerous sources in the software supply chain, many of which are managed by external entities and are difficult to track. It is imperative to secure each step in your pipeline, which is only as strong as its weakest link. However, securing each step in your software development life cycle is complex, and if not done correctly could cause a security incident. Identity and access management is therefore critical to ensure security for human users and other software services.