In this episode of The Security Repo Podcast, we take a look at how to do secret rotation reliably in a highly available system. We are joined by Kenton McDonough. Kent got his MS in Computer Science from Virginia Tech in 2021 with a focus on systems and networking. He currently does security automation for Viasat Inc, a global Satellite internet service provider, with an emphasis on credential management and RBAC systems. We walk through the tech stack that Kent works with, which includes a little of everything. We revisit his talk topic at BSides as Vegas 2024 with a discussion of 'blue/green' secrets rotation. By the end, we uncover some best practices to keep in mind when architecting a scalable, highly available application with regard to secrets management. Links shared in the episode: kent07[at]bt.edu "Zero downtime credential rotation" at BSides Las Vegas 2024 https://www.youtube.com/live/b22uT4pYpk8?feature=shared&t=17092