The Guardian Developer Experience team’s mission statement is to “Enable teams to focus on delivering value at lightning speed by streamlining infrastructure management”.
In this session, the Guardian will describe how we’re working to fulfil our mission; we’ll give a brief history and a glimpse into the future.
Security still is an underrated non-functional requirement in software engineering, often neglected or even forgotten during the construction and implementation of software systems. If things go wrong the reputation and business of your customers as well as yours might be at stake. Retrofitting security is laborious and expensive, it needs to be considered from day. Sounds hard? Not at all.
This presentation will show that writing secure code and constructing secure systems is not as hard as it may sound. First, we will briefly dissect some well-known security vulnerabilities which were the result of only minor programming errors and we will demonstrate how easy insecurely written Java code can be exploited.
However, writing secure code from day one is just as easy. For this we will present a handful of basic rules and tools every secure developer must know. This session will discuss the secure usage of open source software components in enterprise applications and describe patterns to securely incorporate these libraries. The session will further present basic patterns to construct secure components and system architectures.
This presentation has been presented at the O'Reilly Software Architecture Conference in London 2016. #OReillySACon
Continuous Integration and Deployment (CI/CD) with AWS Code Services.
I Presented in Pune Cloud Engineers and Cloud Architect's Meetup.
https://www.meetup.com/Pune-Cloud-Engineers-and-Architects-AWS/events/247170863/
This presentation covers the following
Overview of AWS Developer Tools like AWS CodeCommit, AWS CodeBuild, AWS CodeDeploy and AWS CodePipeline.
Implementation of CI CD workflow with a 3 stage CodePipeline;
Pull the source code from two different repositories for WebApplication & Infrastructure Code
Compile the code, generate artifact and upload to S3
Spin up the infrastructure using Cloud Formation Template followed WebApplication Deployment using the Artifact stored in S3.
Walkthrough of buildspec and appspec files
Debugging Build & Deployment
Rollback of deployment
How to gauge the metrics to DevOps
Refer here for details blog series: http://installjournal.blogspot.com/2018/08/aws-developer-tools-ci-cd-lab.html
How to model Infrastructure as Code as part of CI / CD, incorporating it into your standard application development lifecycle, execute infrastructure changes in your CI/CD pipeline, and get additional benefits, such as reducing configuration errors and provisioning faster. All this leveraging IaC Tools on AWS like AWS CloudFormation, AWS SAM & AWS CDK
Dive into the details of AWS CloudWatch & AWS CloudTrail features, Usage of AWS CloudWatch for AWS Services Monitoring and Custom Application monitoring, Usage of AWS CloudTrail for AWS Account Monitoring and the role of these services in centralized logging
How to model Infrastructure as Code as part of CI / CD, incorporating it into your standard application development lifecycle, execute infrastructure changes in your CI/CD pipeline, and get additional benefits, such as reducing configuration errors and provisioning faster. All this leveraging IaC Tools on AWS like AWS CloudFormation, AWS SAM & AWS CDK
CI CD using AWS Developer Tools @ AWS Community Day Bengaluru 2018Bhuvaneswari Subramani
This session covers an overview of AWS CI CD Services, 3 use cases leveraging AWS CI CD Services, Template files used in CodeBuild, CodeDeploy and Serverless Application Deployment.
How do you debug you build or deployment failures? And how do you rollback in case of failure.
Details around Generic Pipeline and the metrics to gauge DevOps
In this talk I will show you how to build a CI/CD pipeline in AWS with, static code analysis in Sonar, tests and continuous deployment of a dockerized service through several environments by using pure AWS services like CodeStar, CodeCommit, CodeBuild, CodeDeploy and CodePipline. I will do a demo of such CI/CD to reveal all guts of tools and services integration and implementation. So you will see how a commit will be going through all those steps and tools to get production environment.
Security still is an underrated non-functional requirement in software engineering, often neglected or even forgotten during the construction and implementation of software systems. If things go wrong the reputation and business of your customers as well as yours might be at stake. Retrofitting security is laborious and expensive, it needs to be considered from day. Sounds hard? Not at all.
This presentation will show that writing secure code and constructing secure systems is not as hard as it may sound. First, we will briefly dissect some well-known security vulnerabilities which were the result of only minor programming errors and we will demonstrate how easy insecurely written Java code can be exploited.
However, writing secure code from day one is just as easy. For this we will present a handful of basic rules and tools every secure developer must know. This session will discuss the secure usage of open source software components in enterprise applications and describe patterns to securely incorporate these libraries. The session will further present basic patterns to construct secure components and system architectures.
This presentation has been presented at the O'Reilly Software Architecture Conference in London 2016. #OReillySACon
Continuous Integration and Deployment (CI/CD) with AWS Code Services.
I Presented in Pune Cloud Engineers and Cloud Architect's Meetup.
https://www.meetup.com/Pune-Cloud-Engineers-and-Architects-AWS/events/247170863/
This presentation covers the following
Overview of AWS Developer Tools like AWS CodeCommit, AWS CodeBuild, AWS CodeDeploy and AWS CodePipeline.
Implementation of CI CD workflow with a 3 stage CodePipeline;
Pull the source code from two different repositories for WebApplication & Infrastructure Code
Compile the code, generate artifact and upload to S3
Spin up the infrastructure using Cloud Formation Template followed WebApplication Deployment using the Artifact stored in S3.
Walkthrough of buildspec and appspec files
Debugging Build & Deployment
Rollback of deployment
How to gauge the metrics to DevOps
Refer here for details blog series: http://installjournal.blogspot.com/2018/08/aws-developer-tools-ci-cd-lab.html
How to model Infrastructure as Code as part of CI / CD, incorporating it into your standard application development lifecycle, execute infrastructure changes in your CI/CD pipeline, and get additional benefits, such as reducing configuration errors and provisioning faster. All this leveraging IaC Tools on AWS like AWS CloudFormation, AWS SAM & AWS CDK
Dive into the details of AWS CloudWatch & AWS CloudTrail features, Usage of AWS CloudWatch for AWS Services Monitoring and Custom Application monitoring, Usage of AWS CloudTrail for AWS Account Monitoring and the role of these services in centralized logging
How to model Infrastructure as Code as part of CI / CD, incorporating it into your standard application development lifecycle, execute infrastructure changes in your CI/CD pipeline, and get additional benefits, such as reducing configuration errors and provisioning faster. All this leveraging IaC Tools on AWS like AWS CloudFormation, AWS SAM & AWS CDK
CI CD using AWS Developer Tools @ AWS Community Day Bengaluru 2018Bhuvaneswari Subramani
This session covers an overview of AWS CI CD Services, 3 use cases leveraging AWS CI CD Services, Template files used in CodeBuild, CodeDeploy and Serverless Application Deployment.
How do you debug you build or deployment failures? And how do you rollback in case of failure.
Details around Generic Pipeline and the metrics to gauge DevOps
In this talk I will show you how to build a CI/CD pipeline in AWS with, static code analysis in Sonar, tests and continuous deployment of a dockerized service through several environments by using pure AWS services like CodeStar, CodeCommit, CodeBuild, CodeDeploy and CodePipline. I will do a demo of such CI/CD to reveal all guts of tools and services integration and implementation. So you will see how a commit will be going through all those steps and tools to get production environment.
betterCode Workshop: Effizientes DevOps-Tooling mit GoQAware GmbH
bettterCode, 24.06.2021, Online: Workshop of Mario-Leander Reimer (@LeanderReimer, Principal Software Architect at QAware) & Markus Zimmermann (@markus_zm, Senior Software Engineer at QAware)
== Please download slides in case they are blurred! ===
Use the right tool and language for the job! Especially in the DevOps tooling area, Go has established itself as a simple, reliable and efficient programming language. In this workshop, we learned about suitable application areas and implementing quite a few tools.
Building a Python Serverless Applications with AWS Chalice - AWS Online Tech...Amazon Web Services
AWS Lambda makes it easy for you to run your code in the cloud, without managing servers. In this session, we will show you how to build a development pipeline for a serverless application using AWS Chalice and AWS Lambda. Using Chalice, we will show you how to author a Restful service, and deploying the application to multiple stages using AWS CodePipline, AWS CodeBuild and the Serverless Application Model. We will teach you how to test your code and troubleshoot issues. By the end of the session, you will have enough information to build a solid continuous delivery pipeline for your Python serverless application.
Serverless use cases with AWS Lambda - More Serverless EventBoaz Ziniman
AWS Lambda allows you to run you code on a Serverless infrastructure, while AWS takes care of all the heavy lifting of Provisioning and utilization, Availability and fault tolerance, Scaling and Operations and management. In this session, we will take few use cases, from common development scenarios, and show how can we AWS Lambda to build smarter and better systems.
Spinnaker is a continuous delivery platform by Netflix and open sourced in late 2015. Fast-forward 3 years, Spinnaker can deploy to 9 (!) cloud providers and platforms; with many project contributions coming from the cloud providers themselves (Google, Amazon, Microsoft, etc.). This DevOps Toronto talk will feature a quick overview of what Spinnaker can do.
http://decks.pierre-nick.com/201904_Spinnaker_DevOpsTO/
https://github.com/pndurette/spinnaker-playground
https://github.com/pndurette/decks
Integrating-Cloud-Development-Security-And-Operations.pdfAmazon Web Services
Managing infrastructure as code has become an important process in scaling software organizations. This brings many software development processes and ideas to operations, including version control, automated testing, configuration management and reliable duplication. Programmable infrastructure becomes invaluable as application services grows, in quantity and granularity, in a growing company.
Automating the provisioning, configuration and deployment of complex applications requires some design choices on top of AWS services. This presentation discusses how to implement modularity, reliability and security into continuous delivery pipelines ("DevSecOps"). Learn how to automate application delivery using AWS CloudFormation and other tools from Amazon Web Services.
The “Twelve-Factor” application model has come to represent twelve best practices for building modern, cloud-native applications. With guidance on things like configuration, deployment, runtime, and multiple service communication, the Twelve-Factor model prescribes best practices that apply to everything from web applications to APIs to data processing applications. Although serverless computing and AWS Lambda have changed how application development is done, the “Twelve-Factor” best practices remain relevant and applicable in a serverless world. In this talk, we’ll apply the “Twelve-Factor” model to serverless application development with AWS Lambda and Amazon API Gateway and show you how these services enable you to build scalable, low cost, and low administration applications.
Securing your AWS Deployments with Spinnaker and Armory EnterpriseDevOps.com
Customers are challenged today by a constant struggle between velocity and governance. What they want is consistent, secure, and scalable software deployments, but their security teams also need to be able to identify possible issues early in the development process to allow for proactive modification to the deployment process to ensure compliance in the cloud.
Join us for a webinar on “Securing AWS Deployments with Spinnaker and Armory Enterprise” to learn:
How to experiment while still enforcing deployment policies
How to build reusable modules that reduce the number of stages needed for deployment
How lockable pipelines enforce continuous delivery to release orchestration best practices
ContainerCon Europe 2016, Berlin: Talk by Mario-Leander Reimer (@LeanderReimer, Principal Software Architect at QAware).
Abstract: Cloud native applications are popular these days – applications that run in the cloud reliably und scale almost arbitrarily. They follow three key principles: they are built and composed as micro services. They are packaged and distributed in containers. The containers are executed dynamically in the cloud. Kubernetes is an open-source cluster manager for the automated deployment, scaling and management of cloud native applications. In this hands-on session we will introduce the core concepts of Kubernetes and then show how to build, package and operate a cloud native showcase application on top of Kubernetes step-by-step. Throughout this session we will be using an off-the-shelf MIDI controller to demonstrate and visualize the concepts and to remote control Kubernetes.
Docker and AWS have been working together to improve the Docker experience you already know and love. Deploying from Docker straight to AWS with your existing workflow has never been easier. Developers can use Docker Compose and Docker Desktop to deploy applications on Amazon ECS on AWS Fargate. This new functionality streamlines the process of deploying and managing containers in AWS from a local development environment running Docker. Join us for a hands-on walk through of how you can get started today.
Cloud Native Night June 2016, Munich: Talk by Josef Adersbaerger (@adersberger, CTO at QAware).
Join our Meetup: www.meetup.com/cloud-native-muc
Abstract: This talk is on cloud native applications and the cloud native stack. For more information on the Zwitscher Show Case visit: https://github.com/qaware/cloud-native-zwitscher
All the Ops: DataOps with GitOps for Streaming data on Kafka and KubernetesDevOps.com
Running Apache Kafka and Kubernetes is synonymous with containerized real time data. Many users have adopted the pairing to deploy and manage individual distributed real time applications.
While Kubernetes allows developers to scale applications in microservices quicker, there are still productivity blockers such as visibility and governance.
Enter DataOps.
In this webinar, you'll learn how to:
Enhance the productivity of your Kafka & Kubernetes stream with DataOps
Enable enterprise adoption and scaling
Govern & secure your stream
Kubernetes Operators are control plane agents that know how to manage the entire lifecycle of stateful, complex, or specialized applications. With an Operator, you can extend the Kubernetes API to encode domain-specific knowledge about running, scaling, recovering, and monitoring your applications. This workshop will guide you through the steps of creating and deploying an Operator using the Operator Framework and SDK, open-source tools from Red Hat that simplify the process of making an Operator to package, deliver, and manage your applications on Kubernetes.
Large Scale Kubernetes on AWS at Europe's Leading Online Fashion Platform - A...Henning Jacobs
Bootstrapping a Kubernetes cluster is easy, rolling it out to nearly 200 engineering teams and operating it at scale is a challenge.
In this talk, we are presenting our approach to Kubernetes provisioning on AWS, operations and developer experience for our growing Zalando Technology department. We will highlight in the context of Kubernetes: AWS service integrations, our IAM/OAuth infrastructure, cluster autoscaling, continuous delivery and general developer experience. The talk will cover our most important learnings and we will openly share failure stories.
Presented on 2017-09-28 at AWS Tech Community Days in Cologne.
Netflix Open Source: Building a Distributed and Automated Open Source Programaspyker
Netflix has been using and contributing to open source for several years. Over the years, Netflix has released over one hundred Netflix Open Source (aka NetflixOSS) libraries, servers, and technologies. Netflix engineers benefit by accepting contributions and gathering feedback with key collaborators around the world. Users of NetflixOSS from many industries benefit from our solutions including Big Data, Build and Delivery Tools, Runtime Services and Libraries, Data Persistence, Insight, Reliability and Performance, Security and User Interface. With such a large and mature open source program, Netflix has worked on approaches and tools that help manage and improve the NetflixOSS source offerings and communities. Netflix has taken a different approach to building support for open source as compared to other Internet scale companies. Come to this session to learn about the unique approaches Netflix has taken to both distribute and automate the responsibilities of building a world-class open source program.
Infrastructure Is Code with the AWS Cloud Development Kit (DEV372) - AWS re:I...Amazon Web Services
The AWS Cloud Development Kit (AWS CDK) is a new open-source framework from AWS that enables developers to harness the full power of modern programming languages to define reusable cloud components and applications and provision them through AWS CloudFormation. The AWS CDK is shipped with a rich class library that encapsulates the details-defining infrastructure on AWS and enables you to focus on your application. In this session, we discuss why we decided to build the AWS CDK; we describe some of the high-level concepts; and we write some code on stage to demonstrate why we think the AWS CDK is going to be your best friend.
betterCode Workshop: Effizientes DevOps-Tooling mit GoQAware GmbH
bettterCode, 24.06.2021, Online: Workshop of Mario-Leander Reimer (@LeanderReimer, Principal Software Architect at QAware) & Markus Zimmermann (@markus_zm, Senior Software Engineer at QAware)
== Please download slides in case they are blurred! ===
Use the right tool and language for the job! Especially in the DevOps tooling area, Go has established itself as a simple, reliable and efficient programming language. In this workshop, we learned about suitable application areas and implementing quite a few tools.
Building a Python Serverless Applications with AWS Chalice - AWS Online Tech...Amazon Web Services
AWS Lambda makes it easy for you to run your code in the cloud, without managing servers. In this session, we will show you how to build a development pipeline for a serverless application using AWS Chalice and AWS Lambda. Using Chalice, we will show you how to author a Restful service, and deploying the application to multiple stages using AWS CodePipline, AWS CodeBuild and the Serverless Application Model. We will teach you how to test your code and troubleshoot issues. By the end of the session, you will have enough information to build a solid continuous delivery pipeline for your Python serverless application.
Serverless use cases with AWS Lambda - More Serverless EventBoaz Ziniman
AWS Lambda allows you to run you code on a Serverless infrastructure, while AWS takes care of all the heavy lifting of Provisioning and utilization, Availability and fault tolerance, Scaling and Operations and management. In this session, we will take few use cases, from common development scenarios, and show how can we AWS Lambda to build smarter and better systems.
Spinnaker is a continuous delivery platform by Netflix and open sourced in late 2015. Fast-forward 3 years, Spinnaker can deploy to 9 (!) cloud providers and platforms; with many project contributions coming from the cloud providers themselves (Google, Amazon, Microsoft, etc.). This DevOps Toronto talk will feature a quick overview of what Spinnaker can do.
http://decks.pierre-nick.com/201904_Spinnaker_DevOpsTO/
https://github.com/pndurette/spinnaker-playground
https://github.com/pndurette/decks
Integrating-Cloud-Development-Security-And-Operations.pdfAmazon Web Services
Managing infrastructure as code has become an important process in scaling software organizations. This brings many software development processes and ideas to operations, including version control, automated testing, configuration management and reliable duplication. Programmable infrastructure becomes invaluable as application services grows, in quantity and granularity, in a growing company.
Automating the provisioning, configuration and deployment of complex applications requires some design choices on top of AWS services. This presentation discusses how to implement modularity, reliability and security into continuous delivery pipelines ("DevSecOps"). Learn how to automate application delivery using AWS CloudFormation and other tools from Amazon Web Services.
The “Twelve-Factor” application model has come to represent twelve best practices for building modern, cloud-native applications. With guidance on things like configuration, deployment, runtime, and multiple service communication, the Twelve-Factor model prescribes best practices that apply to everything from web applications to APIs to data processing applications. Although serverless computing and AWS Lambda have changed how application development is done, the “Twelve-Factor” best practices remain relevant and applicable in a serverless world. In this talk, we’ll apply the “Twelve-Factor” model to serverless application development with AWS Lambda and Amazon API Gateway and show you how these services enable you to build scalable, low cost, and low administration applications.
Securing your AWS Deployments with Spinnaker and Armory EnterpriseDevOps.com
Customers are challenged today by a constant struggle between velocity and governance. What they want is consistent, secure, and scalable software deployments, but their security teams also need to be able to identify possible issues early in the development process to allow for proactive modification to the deployment process to ensure compliance in the cloud.
Join us for a webinar on “Securing AWS Deployments with Spinnaker and Armory Enterprise” to learn:
How to experiment while still enforcing deployment policies
How to build reusable modules that reduce the number of stages needed for deployment
How lockable pipelines enforce continuous delivery to release orchestration best practices
ContainerCon Europe 2016, Berlin: Talk by Mario-Leander Reimer (@LeanderReimer, Principal Software Architect at QAware).
Abstract: Cloud native applications are popular these days – applications that run in the cloud reliably und scale almost arbitrarily. They follow three key principles: they are built and composed as micro services. They are packaged and distributed in containers. The containers are executed dynamically in the cloud. Kubernetes is an open-source cluster manager for the automated deployment, scaling and management of cloud native applications. In this hands-on session we will introduce the core concepts of Kubernetes and then show how to build, package and operate a cloud native showcase application on top of Kubernetes step-by-step. Throughout this session we will be using an off-the-shelf MIDI controller to demonstrate and visualize the concepts and to remote control Kubernetes.
Docker and AWS have been working together to improve the Docker experience you already know and love. Deploying from Docker straight to AWS with your existing workflow has never been easier. Developers can use Docker Compose and Docker Desktop to deploy applications on Amazon ECS on AWS Fargate. This new functionality streamlines the process of deploying and managing containers in AWS from a local development environment running Docker. Join us for a hands-on walk through of how you can get started today.
Cloud Native Night June 2016, Munich: Talk by Josef Adersbaerger (@adersberger, CTO at QAware).
Join our Meetup: www.meetup.com/cloud-native-muc
Abstract: This talk is on cloud native applications and the cloud native stack. For more information on the Zwitscher Show Case visit: https://github.com/qaware/cloud-native-zwitscher
All the Ops: DataOps with GitOps for Streaming data on Kafka and KubernetesDevOps.com
Running Apache Kafka and Kubernetes is synonymous with containerized real time data. Many users have adopted the pairing to deploy and manage individual distributed real time applications.
While Kubernetes allows developers to scale applications in microservices quicker, there are still productivity blockers such as visibility and governance.
Enter DataOps.
In this webinar, you'll learn how to:
Enhance the productivity of your Kafka & Kubernetes stream with DataOps
Enable enterprise adoption and scaling
Govern & secure your stream
Kubernetes Operators are control plane agents that know how to manage the entire lifecycle of stateful, complex, or specialized applications. With an Operator, you can extend the Kubernetes API to encode domain-specific knowledge about running, scaling, recovering, and monitoring your applications. This workshop will guide you through the steps of creating and deploying an Operator using the Operator Framework and SDK, open-source tools from Red Hat that simplify the process of making an Operator to package, deliver, and manage your applications on Kubernetes.
Large Scale Kubernetes on AWS at Europe's Leading Online Fashion Platform - A...Henning Jacobs
Bootstrapping a Kubernetes cluster is easy, rolling it out to nearly 200 engineering teams and operating it at scale is a challenge.
In this talk, we are presenting our approach to Kubernetes provisioning on AWS, operations and developer experience for our growing Zalando Technology department. We will highlight in the context of Kubernetes: AWS service integrations, our IAM/OAuth infrastructure, cluster autoscaling, continuous delivery and general developer experience. The talk will cover our most important learnings and we will openly share failure stories.
Presented on 2017-09-28 at AWS Tech Community Days in Cologne.
Netflix Open Source: Building a Distributed and Automated Open Source Programaspyker
Netflix has been using and contributing to open source for several years. Over the years, Netflix has released over one hundred Netflix Open Source (aka NetflixOSS) libraries, servers, and technologies. Netflix engineers benefit by accepting contributions and gathering feedback with key collaborators around the world. Users of NetflixOSS from many industries benefit from our solutions including Big Data, Build and Delivery Tools, Runtime Services and Libraries, Data Persistence, Insight, Reliability and Performance, Security and User Interface. With such a large and mature open source program, Netflix has worked on approaches and tools that help manage and improve the NetflixOSS source offerings and communities. Netflix has taken a different approach to building support for open source as compared to other Internet scale companies. Come to this session to learn about the unique approaches Netflix has taken to both distribute and automate the responsibilities of building a world-class open source program.
Infrastructure Is Code with the AWS Cloud Development Kit (DEV372) - AWS re:I...Amazon Web Services
The AWS Cloud Development Kit (AWS CDK) is a new open-source framework from AWS that enables developers to harness the full power of modern programming languages to define reusable cloud components and applications and provision them through AWS CloudFormation. The AWS CDK is shipped with a rich class library that encapsulates the details-defining infrastructure on AWS and enables you to focus on your application. In this session, we discuss why we decided to build the AWS CDK; we describe some of the high-level concepts; and we write some code on stage to demonstrate why we think the AWS CDK is going to be your best friend.
Continuous Integration and Deployment Best Practices on AWS (ARC307) | AWS re...Amazon Web Services
With AWS, companies now have the ability to develop and run their applications with speed and flexibility like never before. Working with an infrastructure that can be 100 percent API driven enables businesses to use lean methodologies and realize these benefits. This in turn leads to greater success for those who make use of these practices. In this session, we talk about some key concepts and design patterns for continuous deployment and continuous integration, two elements of lean development of applications and infrastructures.
Cluster-as-code. The Many Ways towards KubernetesQAware GmbH
iSAQB Software Architecture Gathering – Digital 2022, November 2022, Mario-Leander Reimer (@LeanderReimer, Principal Software Architect bei QAware).
== Dokument bitte herunterladen, falls unscharf! Please download slides if blurred! ==
Kubernetes is the de-facto standard when it comes to container orchestration. But why is there is no established, standard and uniform way to spin-up and manage a single or even a whole farm of Kubernetes clusters yet? Instead, a whole bunch of different and mostly incompatible ways towards Kubernetes exist today. Each with its own pros and cons in regards to ease of use, flexibility and many other requirements. In this session we will have a closer look at the different available options to create, manage and operate Kubernetes clusters at scale.
by Brad Dispensa, Sr. Solutions Architect, AWS
Operating a security practice on AWS brings many new challenges that haven't been faced in data center environments. The dynamic nature of infrastructure, the relationship between development team members and their applications, and the architecture paradigms have all changed as a result of building software on top of AWS. In this session we will cover how you can use secure configuration and automation to monitor, audit, and enforce your security policies within an AWS environment. Level 200
CI/CD on AWS: Deploy Everything All the Time | AWS Public Sector Summit 2016Amazon Web Services
Why does DevOps matter? How can you use continuous integration to build your product faster, make it more highly available, and be able to recover from bugs quickly? Let one of our solutions architects walk you through continuous integration and continuous delivery on AWS. This session includes live demos of our tools AWS CodeCommit, AWS CodePipeline, and AWS CodeDeploy.
Serverless Computing, AWS Way by SourceFuse Technologies SourceFuse
Serverless Computing is only the next step in server evolution, they bring in efficiency, such that developers can focus on building great applications and services in a cost-effective manner without the operational overhead of traditional application development and deployment.
Explore the presentation here as given by Manpreet Singh, CTO, SourceFuse, in a webinar organized by AWS on “Serverless Computing”
The presentation talks in depth about Serverless Computing use case, detailing out Lambda and case studies on the same.
Serverless Computing is only the next step in server evolution, they bring in efficiency, such that developers can focus on building great applications and services in a cost-effective manner without the operational overhead of traditional application development and deployment.
Explore the presentation here as given by Manpreet Singh, CTO, SourceFuse, in a webinar organized by AWS on “Serverless Computing”
The presentation talks in depth about Serverless Computing use case, detailing out Lambda and case studies on the same.
Cluster-as-code. The Many Ways towards KubernetesQAware GmbH
CloudLand, Juni/Juli 2022, Mario-Leander Reimer (@LeanderReimer, Principal Software Architect bei QAware).
== Dokument bitte herunterladen, falls unscharf! Please download slides if blurred! ==
Kubernetes is the de-facto standard when it comes to container orchestration. But why is there is no established, standard and uniform way to spin-up and manage a single or even a whole farm of Kubernetes clusters yet? Instead, a whole bunch of different and mostly incompatible ways towards Kubernetes exist today. Each with its own pros and cons in regards to ease of use, flexibility and many other requirements. In this session we will have a closer look at the different available options to create, manage and operate Kubernetes clusters at scale.
re:Invent Recap: Security Week at the San Francisco Loft
Join us for a round up of all things re:Invent, the largest global cloud computing conference that will have taken place November 25 to 30 in Las Vegas. We'll share security and compliance related highlights from the keynote sessions, and will summarize launches and features to watch.
Level: 100
Speaker: Bill Reid - Sr. Manager, Solutions Architecture, AWS
Navigating the Metaverse: A Journey into Virtual Evolution"Donna Lenk
Join us for an exploration of the Metaverse's evolution, where innovation meets imagination. Discover new dimensions of virtual events, engage with thought-provoking discussions, and witness the transformative power of digital realms."
top nidhi software solution freedownloadvrstrong314
This presentation emphasizes the importance of data security and legal compliance for Nidhi companies in India. It highlights how online Nidhi software solutions, like Vector Nidhi Software, offer advanced features tailored to these needs. Key aspects include encryption, access controls, and audit trails to ensure data security. The software complies with regulatory guidelines from the MCA and RBI and adheres to Nidhi Rules, 2014. With customizable, user-friendly interfaces and real-time features, these Nidhi software solutions enhance efficiency, support growth, and provide exceptional member services. The presentation concludes with contact information for further inquiries.
SOCRadar Research Team: Latest Activities of IntelBrokerSOCRadar
The European Union Agency for Law Enforcement Cooperation (Europol) has suffered an alleged data breach after a notorious threat actor claimed to have exfiltrated data from its systems. Infamous data leaker IntelBroker posted on the even more infamous BreachForums hacking forum, saying that Europol suffered a data breach this month.
The alleged breach affected Europol agencies CCSE, EC3, Europol Platform for Experts, Law Enforcement Forum, and SIRIUS. Infiltration of these entities can disrupt ongoing investigations and compromise sensitive intelligence shared among international law enforcement agencies.
However, this is neither the first nor the last activity of IntekBroker. We have compiled for you what happened in the last few days. To track such hacker activities on dark web sources like hacker forums, private Telegram channels, and other hidden platforms where cyber threats often originate, you can check SOCRadar’s Dark Web News.
Stay Informed on Threat Actors’ Activity on the Dark Web with SOCRadar!
Software Engineering, Software Consulting, Tech Lead.
Spring Boot, Spring Cloud, Spring Core, Spring JDBC, Spring Security,
Spring Transaction, Spring MVC,
Log4j, REST/SOAP WEB-SERVICES.
Enhancing Project Management Efficiency_ Leveraging AI Tools like ChatGPT.pdfJay Das
With the advent of artificial intelligence or AI tools, project management processes are undergoing a transformative shift. By using tools like ChatGPT, and Bard organizations can empower their leaders and managers to plan, execute, and monitor projects more effectively.
First Steps with Globus Compute Multi-User EndpointsGlobus
In this presentation we will share our experiences around getting started with the Globus Compute multi-user endpoint. Working with the Pharmacology group at the University of Auckland, we have previously written an application using Globus Compute that can offload computationally expensive steps in the researcher's workflows, which they wish to manage from their familiar Windows environments, onto the NeSI (New Zealand eScience Infrastructure) cluster. Some of the challenges we have encountered were that each researcher had to set up and manage their own single-user globus compute endpoint and that the workloads had varying resource requirements (CPUs, memory and wall time) between different runs. We hope that the multi-user endpoint will help to address these challenges and share an update on our progress here.
Quarkus Hidden and Forbidden ExtensionsMax Andersen
Quarkus has a vast extension ecosystem and is known for its subsonic and subatomic feature set. Some of these features are not as well known, and some extensions are less talked about, but that does not make them less interesting - quite the opposite.
Come join this talk to see some tips and tricks for using Quarkus and some of the lesser known features, extensions and development techniques.
A Comprehensive Look at Generative AI in Retail App Testing.pdfkalichargn70th171
Traditional software testing methods are being challenged in retail, where customer expectations and technological advancements continually shape the landscape. Enter generative AI—a transformative subset of artificial intelligence technologies poised to revolutionize software testing.
Climate Science Flows: Enabling Petabyte-Scale Climate Analysis with the Eart...Globus
The Earth System Grid Federation (ESGF) is a global network of data servers that archives and distributes the planet’s largest collection of Earth system model output for thousands of climate and environmental scientists worldwide. Many of these petabyte-scale data archives are located in proximity to large high-performance computing (HPC) or cloud computing resources, but the primary workflow for data users consists of transferring data, and applying computations on a different system. As a part of the ESGF 2.0 US project (funded by the United States Department of Energy Office of Science), we developed pre-defined data workflows, which can be run on-demand, capable of applying many data reduction and data analysis to the large ESGF data archives, transferring only the resultant analysis (ex. visualizations, smaller data files). In this talk, we will showcase a few of these workflows, highlighting how Globus Flows can be used for petabyte-scale climate analysis.
Cyaniclab : Software Development Agency Portfolio.pdfCyanic lab
CyanicLab, an offshore custom software development company based in Sweden,India, Finland, is your go-to partner for startup development and innovative web design solutions. Our expert team specializes in crafting cutting-edge software tailored to meet the unique needs of startups and established enterprises alike. From conceptualization to execution, we offer comprehensive services including web and mobile app development, UI/UX design, and ongoing software maintenance. Ready to elevate your business? Contact CyanicLab today and let us propel your vision to success with our top-notch IT solutions.
Exploring Innovations in Data Repository Solutions - Insights from the U.S. G...Globus
The U.S. Geological Survey (USGS) has made substantial investments in meeting evolving scientific, technical, and policy driven demands on storing, managing, and delivering data. As these demands continue to grow in complexity and scale, the USGS must continue to explore innovative solutions to improve its management, curation, sharing, delivering, and preservation approaches for large-scale research data. Supporting these needs, the USGS has partnered with the University of Chicago-Globus to research and develop advanced repository components and workflows leveraging its current investment in Globus. The primary outcome of this partnership includes the development of a prototype enterprise repository, driven by USGS Data Release requirements, through exploration and implementation of the entire suite of the Globus platform offerings, including Globus Flow, Globus Auth, Globus Transfer, and Globus Search. This presentation will provide insights into this research partnership, introduce the unique requirements and challenges being addressed and provide relevant project progress.
In software engineering, the right architecture is essential for robust, scalable platforms. Wix has undergone a pivotal shift from event sourcing to a CRUD-based model for its microservices. This talk will chart the course of this pivotal journey.
Event sourcing, which records state changes as immutable events, provided robust auditing and "time travel" debugging for Wix Stores' microservices. Despite its benefits, the complexity it introduced in state management slowed development. Wix responded by adopting a simpler, unified CRUD model. This talk will explore the challenges of event sourcing and the advantages of Wix's new "CRUD on steroids" approach, which streamlines API integration and domain event management while preserving data integrity and system resilience.
Participants will gain valuable insights into Wix's strategies for ensuring atomicity in database updates and event production, as well as caching, materialization, and performance optimization techniques within a distributed system.
Join us to discover how Wix has mastered the art of balancing simplicity and extensibility, and learn how the re-adoption of the modest CRUD has turbocharged their development velocity, resilience, and scalability in a high-growth environment.
In 2015, I used to write extensions for Joomla, WordPress, phpBB3, etc and I ...Juraj Vysvader
In 2015, I used to write extensions for Joomla, WordPress, phpBB3, etc and I didn't get rich from it but it did have 63K downloads (powered possible tens of thousands of websites).
Code reviews are vital for ensuring good code quality. They serve as one of our last lines of defense against bugs and subpar code reaching production.
Yet, they often turn into annoying tasks riddled with frustration, hostility, unclear feedback and lack of standards. How can we improve this crucial process?
In this session we will cover:
- The Art of Effective Code Reviews
- Streamlining the Review Process
- Elevating Reviews with Automated Tools
By the end of this presentation, you'll have the knowledge on how to organize and improve your code review proces
Paketo Buildpacks : la meilleure façon de construire des images OCI? DevopsDa...Anthony Dahanne
Les Buildpacks existent depuis plus de 10 ans ! D’abord, ils étaient utilisés pour détecter et construire une application avant de la déployer sur certains PaaS. Ensuite, nous avons pu créer des images Docker (OCI) avec leur dernière génération, les Cloud Native Buildpacks (CNCF en incubation). Sont-ils une bonne alternative au Dockerfile ? Que sont les buildpacks Paketo ? Quelles communautés les soutiennent et comment ?
Venez le découvrir lors de cette session ignite
AI Pilot Review: The World’s First Virtual Assistant Marketing SuiteGoogle
AI Pilot Review: The World’s First Virtual Assistant Marketing Suite
👉👉 Click Here To Get More Info 👇👇
https://sumonreview.com/ai-pilot-review/
AI Pilot Review: Key Features
✅Deploy AI expert bots in Any Niche With Just A Click
✅With one keyword, generate complete funnels, websites, landing pages, and more.
✅More than 85 AI features are included in the AI pilot.
✅No setup or configuration; use your voice (like Siri) to do whatever you want.
✅You Can Use AI Pilot To Create your version of AI Pilot And Charge People For It…
✅ZERO Manual Work With AI Pilot. Never write, Design, Or Code Again.
✅ZERO Limits On Features Or Usages
✅Use Our AI-powered Traffic To Get Hundreds Of Customers
✅No Complicated Setup: Get Up And Running In 2 Minutes
✅99.99% Up-Time Guaranteed
✅30 Days Money-Back Guarantee
✅ZERO Upfront Cost
See My Other Reviews Article:
(1) TubeTrivia AI Review: https://sumonreview.com/tubetrivia-ai-review
(2) SocioWave Review: https://sumonreview.com/sociowave-review
(3) AI Partner & Profit Review: https://sumonreview.com/ai-partner-profit-review
(4) AI Ebook Suite Review: https://sumonreview.com/ai-ebook-suite-review
Globus Compute wth IRI Workflows - GlobusWorld 2024Globus
As part of the DOE Integrated Research Infrastructure (IRI) program, NERSC at Lawrence Berkeley National Lab and ALCF at Argonne National Lab are working closely with General Atomics on accelerating the computing requirements of the DIII-D experiment. As part of the work the team is investigating ways to speedup the time to solution for many different parts of the DIII-D workflow including how they run jobs on HPC systems. One of these routes is looking at Globus Compute as a way to replace the current method for managing tasks and we describe a brief proof of concept showing how Globus Compute could help to schedule jobs and be a tool to connect compute at different facilities.
Prosigns: Transforming Business with Tailored Technology SolutionsProsigns
Unlocking Business Potential: Tailored Technology Solutions by Prosigns
Discover how Prosigns, a leading technology solutions provider, partners with businesses to drive innovation and success. Our presentation showcases our comprehensive range of services, including custom software development, web and mobile app development, AI & ML solutions, blockchain integration, DevOps services, and Microsoft Dynamics 365 support.
Custom Software Development: Prosigns specializes in creating bespoke software solutions that cater to your unique business needs. Our team of experts works closely with you to understand your requirements and deliver tailor-made software that enhances efficiency and drives growth.
Web and Mobile App Development: From responsive websites to intuitive mobile applications, Prosigns develops cutting-edge solutions that engage users and deliver seamless experiences across devices.
AI & ML Solutions: Harnessing the power of Artificial Intelligence and Machine Learning, Prosigns provides smart solutions that automate processes, provide valuable insights, and drive informed decision-making.
Blockchain Integration: Prosigns offers comprehensive blockchain solutions, including development, integration, and consulting services, enabling businesses to leverage blockchain technology for enhanced security, transparency, and efficiency.
DevOps Services: Prosigns' DevOps services streamline development and operations processes, ensuring faster and more reliable software delivery through automation and continuous integration.
Microsoft Dynamics 365 Support: Prosigns provides comprehensive support and maintenance services for Microsoft Dynamics 365, ensuring your system is always up-to-date, secure, and running smoothly.
Learn how our collaborative approach and dedication to excellence help businesses achieve their goals and stay ahead in today's digital landscape. From concept to deployment, Prosigns is your trusted partner for transforming ideas into reality and unlocking the full potential of your business.
Join us on a journey of innovation and growth. Let's partner for success with Prosigns.
Accelerate Enterprise Software Engineering with PlatformlessWSO2
Key takeaways:
Challenges of building platforms and the benefits of platformless.
Key principles of platformless, including API-first, cloud-native middleware, platform engineering, and developer experience.
How Choreo enables the platformless experience.
How key concepts like application architecture, domain-driven design, zero trust, and cell-based architecture are inherently a part of Choreo.
Demo of an end-to-end app built and deployed on Choreo.
4. A brief history
2015
Solely on AWS
(no more on premises servers)
2012
Move to AWS started
(mix of on premises and AWS)
May 1821
First Manchester Guardian
newspaper published
1999
Guardian Unlimited network
of websites launched
aws.amazon.com/solutions/case-studies/guardian
5. Autonomous
teams
● Dotcom team, building
theguardian.com
● Apps teams, building the iOS
and Android apps
● Reader Revenue teams,
building supporter and
contribution platforms
● Journalism teams, building
internal tools for Editorial
staff
9. July 2020
Full time DevX team
formed
A brief history (continued)
2015
Solely on AWS
(no more on premises servers)
2012
Move to AWS started
(mix of on premises and AWS)
May 1821
First Manchester Guardian
newspaper published
1999
Guardian Unlimited network
of websites launched
aws.amazon.com/solutions/case-studies/guardian
14. Our DevX Tools
● AMIable - Amazon Machine Image (AMI) management tool
● AMIgo - An AMI bakery
● Anghammarad - Centralised notifications service
● CDK - Generic Guardian flavoured AWS CDK components
● Central ELK - Centralised logging platform
● dev-nginx - Tools to configure a local development nginx to proxy our applications and services
● DNS Validation - An AWS lambda that automatically creates ACM validation DNS records
● Grafana - Centralised metrics service
● Gu:who - answering: who are all these users in my GitHub org?
● Janus - Google-backed AWS account access
● master-to-main - A CLI to automate updating a GitHub repository master branch to main
● Prism - Tool for collecting live data about infrastructure so it can be easily queried by users and automated tooling
● PRout - Looks after your pull requests, tells you when they're live
● Repo Apocalypse - Archive old Github projects to S3
● RiffRaff - The Guardian's deployment platform
● Security HQ - Centralised security information for AWS accounts
● Source - The Guardian’s design system
● SSM Scala - ssh replacement: CLI program that wraps SSM's EC2 Run Command
● Strap - Bootstrap your macOS development system
● ...
15. Our DevX Tools
● AMIable - Amazon Machine Image (AMI) management tool
● AMIgo - An AMI bakery
● Anghammarad - Centralised notifications service
● CDK - Generic Guardian flavoured AWS CDK components
● Central ELK - Centralised logging platform
● dev-nginx - Tools to configure a local development nginx to proxy our applications and services
● DNS Validation - An AWS lambda that automatically creates ACM validation DNS records
● Grafana - Centralised metrics service
● Gu:who - answering: who are all these users in my GitHub org?
● Janus - Google-backed AWS account access
● master-to-main - A CLI to automate updating a GitHub repository master branch to main
● Prism - Tool for collecting live data about infrastructure so it can be easily queried by users and automated tooling
● PRout - Looks after your pull requests, tells you when they're live
● Repo Apocalypse - Archive old Github projects to S3
● RiffRaff - The Guardian's deployment platform
● Security HQ - Centralised security information for AWS accounts
● Source - The Guardian’s design system
● SSM Scala - ssh replacement: CLI program that wraps SSM's EC2 Run Command
● Strap - Bootstrap your macOS development system
● ...
😱😱😱😱
😱
16. Janus
When making API calls to AWS locally,
AWS credentials are required.
Developers do not have any IAM users
for our AWS accounts, instead we use
temporary credentials or short-term,
federated sessions.
Janus is our federated login system for
managing access to our myriad AWS
accounts.
This approach allows us to make our
infrastructure easier and more secure
to use.
Google-backed AWS account
access
github.com/guardian/janus-app
18. SSM Scala
A command line tool that wraps AWS Systems Manager (SSM).
Used to execute commands on EC2 servers using EC2 Run command. It
provides the user with:
● an alternative to SSH for running commands
● standard SSH access using short lived RSA keys
We have removed direct SSH access (port 22) from applications and
replaced it with SSM Scala.
github.com/guardian/ssm-scala
19. Riff-Raff
Our applications primarily run
on EC2 or Lambda.
Riff-Raff is our deployment tool
and it allows us to use AWS
auto-scaling to achieve zero
downtime deploys.
Riff-Raff also records the
deployment history of each
project, and can be used to
schedule deploys.
The Guardian's deployment
platform
github.com/guardian/riff-raff
22. Source
Source is our Design System.
Written in React and Emotion, it
creates a consistent user and
developer experience across
*.theguardian.com and the apps.
It's expanding to support
internal tooling too.
The Guardian's design
system
github.com/guardian/source
23. Prism
Prism captures information about the infrastructure across our entire
estate in near real-time.
There is also a command line tool that uses the Prism API to locate
infrastructure.
github.com/guardian/prism
27. Let’s talk about CloudFormation...
✅ Tracked in VCS
✅ Repeatable
❌ JSON / YAML
❌ JSON can become verbose
❌ YAML is sensitive to whitespace
❌ Long feedback loop
❌ Errors first seen at runtime (UPDATE_ROLLBACK_COMPLETE 😈)
❌ Can result in not following the principles of least privilege
❌ Encourages copy pasting
❌ Consistency?
❌ Following best practice?
28. Guardian CDK
✅ Tracked in VCS
✅ Repeatable
✅ Written in a strongly typed language (TypeScript)
✅ Built using AWS CDK
✅ Unit tested
✅ Encodes today’s best practices
✅ Observability
✅ Runtime environment
✅ Configuration
✅ Deployment
✅ Follows the principles of least privilege
✅ npm install @guardian/cdk@latest
github.com/guardian/cdk
30. Guardian CDK
● A set of Guardian flavoured AWS CDK constructs and patterns,
encoding today’s best practice on:
○ Observability
○ Runtime environment
○ Configuration
○ Deployment
● CloudFormation in TypeScript
● Tracked in VCS
● Improved consistency
● Not YAML or JSON 🎉
○ Strongly typed
○ Unit tested
github.com/guardian/cdk
32. A lot of our backend tooling
revolves around simplifying
AWS resource management
across multiple accounts.
Observation
33. Vision
We will collaboratively create and
maintain best in class standard patterns
for deployment, configuration, runtime
and observability.
Creating and maintaining apps that follow
these patterns will be quick, logical, free
of boilerplate and secure by default.
We will have worked with teams to
migrate the majority of applications to
our standard patterns.
Teams will be focussed on delivering
business value at high velocity as
infrastructure concerns have been
streamlined.
