SlideShare a Scribd company logo

Why We Can't Have Nice Things, A Tale of Woe and a Hope For the Future

Pete Cheslock
Pete Cheslock

What this talk here: https://vimeo.com/129822165 DevOpsDays Austin Talk. Computers are hard, and security is even harder. Let's discuss things to do when you have a dedicated Infosec team, and tools you can use when you don't.

1 of 54
Download to read offline
Why We Can’t Have Nice Things A Tale of Woe, and Hope for the Future Pete Cheslock @petecheslock
@petecheslock
@petecheslock WallofConfusion Dev Ops Sec
@petecheslock
@petecheslock DevOps Sec @hijinksensue
@petecheslock
@petecheslock
Pete Cheslock Not an InfoSec Twitters: @petecheslock theshipshow.com threatstack.com
– President Josiah Bartlet "The most costly disruptions always happen when something we take completely for granted stops working for a minute."
@petecheslock
@petecheslock
@petecheslock
@petecheslock
@petecheslock
@petecheslock
@petecheslock
@petecheslock
@petecheslock
@petecheslock It’s time that we recognize that all these new tools which are helping to enable our teams to work so well are also introducing new attack vectors.
@petecheslock risk = (threat) x (probability) x (business impact) http://sysadvent.blogspot.com/2014/12/day-24-12-days-of-secdevops.html - Jen Andre
@petecheslock What data are you sending? What happens if that system is compromised?
@petecheslock WE TAKE SECURITY SERIOUSLY http://blog.b3k.us/2012/01/24/some-rules.html “These are not features: Security, Availability, Performance.” - Benjamin Black
@petecheslock
@petecheslock
@petecheslock
@petecheslock https://github.com/codahale/sneaker https://vaultproject.io https://github.com/square/keywhiz https://github.com/LuminalOSS/credstash https://github.com/oleiade/trousseau - Storing sensitive data https://github.com/cloudflare/redoctober - High value secrets https://github.com/jschauma/jass - really helpful tool for sharing of secrets using SSH keys.
@petecheslock
@petecheslock
@petecheslock Keep It Simple Skip the ITIL IR Plan for now
@petecheslock
@petecheslock
@petecheslock
@petecheslock
@petecheslock “FWIW, I have most of a sub-key implementation done, but that still won’t solve your problem, as it will be years before that implementation is widely deployed…”
@petecheslock Compile your Source Build a Package Sign the Package Test the Package Deploy the Package You can’t hate the curl bash and be OK deploying from Github
@petecheslock aptly deb-s3 freight/sync to s3 packagecloud.io
@petecheslock
@petecheslock
@petecheslock
@petecheslock https://www.ssllabs.com/ssltest/
@petecheslock
@petecheslock Safe Access to Production
@petecheslock – Mark Burgess “Every time someone logs onto a system interactively, they compromise everyone's knowledge of that system”
@petecheslock Trust, but Verify.
@petecheslock auditd + OSSEC …and SELinux http://stopdisablingselinux.com/
@petecheslock Controlled Access Protection Profile http://www.commoncriteriaportal.org/files/ppfiles/capp.pdf Labeled Security Protection Profile http://www.commoncriteriaportal.org/files/ppfiles/lspp.pdf National Industrial Security Program Operating Manual (NISPOM) http://www.fas.org/sgp/library/nispom.htm Security Technical Implementation Guides http://iase.disa.mil/stigs/Pages/index.aspx
@petecheslock
@petecheslock
@petecheslock Start Small Identify High Risks
@petecheslock Security Culture is People
@petecheslock
@petecheslock

Recommended

Everyone has a plan until... Automacon16
Everyone has a plan until... Automacon16Everyone has a plan until... Automacon16
Everyone has a plan until... Automacon16
Pete Cheslock
 
DevOpsDays PGH: How to Fail With One Weird Trick
DevOpsDays PGH: How to Fail With One Weird TrickDevOpsDays PGH: How to Fail With One Weird Trick
DevOpsDays PGH: How to Fail With One Weird Trick
Pete Cheslock
 
Mere Paas Teensy Hai (Nikhil Mittal)
Mere Paas Teensy Hai (Nikhil Mittal)Mere Paas Teensy Hai (Nikhil Mittal)
Mere Paas Teensy Hai (Nikhil Mittal)
ClubHack
 
Risk of Solutionism in the IoT is squared to Solutionism in Web
Risk of Solutionism in the IoT is squared to Solutionism in WebRisk of Solutionism in the IoT is squared to Solutionism in Web
Risk of Solutionism in the IoT is squared to Solutionism in Web
Markus Andrezak
 
Beyond copy paste with System Science and Sapiens
Beyond copy paste with System Science and Sapiens Beyond copy paste with System Science and Sapiens
Beyond copy paste with System Science and Sapiens
Cliff Hazell
 
Programmer's Bookshelf - Remote Edition
Programmer's Bookshelf - Remote EditionProgrammer's Bookshelf - Remote Edition
Programmer's Bookshelf - Remote Edition
Lisa Backer
 
How To Run a 5 Whys (With Humans, Not Robots)
How To Run a 5 Whys (With Humans, Not Robots)How To Run a 5 Whys (With Humans, Not Robots)
How To Run a 5 Whys (With Humans, Not Robots)
Dan Milstein
 
7 Ways to Make Good Teams Great
7 Ways to Make Good Teams Great7 Ways to Make Good Teams Great
7 Ways to Make Good Teams Greatcolleenfry
 

Recommended

Everyone has a plan until... Automacon16
Everyone has a plan until... Automacon16Everyone has a plan until... Automacon16
Everyone has a plan until... Automacon16
Pete Cheslock
 
DevOpsDays PGH: How to Fail With One Weird Trick
DevOpsDays PGH: How to Fail With One Weird TrickDevOpsDays PGH: How to Fail With One Weird Trick
DevOpsDays PGH: How to Fail With One Weird Trick
Pete Cheslock
 
Mere Paas Teensy Hai (Nikhil Mittal)
Mere Paas Teensy Hai (Nikhil Mittal)Mere Paas Teensy Hai (Nikhil Mittal)
Mere Paas Teensy Hai (Nikhil Mittal)
ClubHack
 
Risk of Solutionism in the IoT is squared to Solutionism in Web
Risk of Solutionism in the IoT is squared to Solutionism in WebRisk of Solutionism in the IoT is squared to Solutionism in Web
Risk of Solutionism in the IoT is squared to Solutionism in Web
Markus Andrezak
 
Beyond copy paste with System Science and Sapiens
Beyond copy paste with System Science and Sapiens Beyond copy paste with System Science and Sapiens
Beyond copy paste with System Science and Sapiens
Cliff Hazell
 
Programmer's Bookshelf - Remote Edition
Programmer's Bookshelf - Remote EditionProgrammer's Bookshelf - Remote Edition
Programmer's Bookshelf - Remote Edition
Lisa Backer
 
How To Run a 5 Whys (With Humans, Not Robots)
How To Run a 5 Whys (With Humans, Not Robots)How To Run a 5 Whys (With Humans, Not Robots)
How To Run a 5 Whys (With Humans, Not Robots)
Dan Milstein
 
7 Ways to Make Good Teams Great
7 Ways to Make Good Teams Great7 Ways to Make Good Teams Great
7 Ways to Make Good Teams Greatcolleenfry
 
The Future of Digital Textbooks, Tools of Change, 2010
The Future of Digital Textbooks, Tools of Change, 2010The Future of Digital Textbooks, Tools of Change, 2010
The Future of Digital Textbooks, Tools of Change, 2010
John Warren
 
Mane wk8 term 1 13pdf
Mane wk8 term 1 13pdfMane wk8 term 1 13pdf
Mane wk8 term 1 13pdftakp
 
Wenerei wk 2 term 3 13
Wenerei wk 2 term 3 13Wenerei wk 2 term 3 13
Wenerei wk 2 term 3 13takp
 
Taite wk 2 term 3 13 pdf
Taite wk 2 term 3 13 pdfTaite wk 2 term 3 13 pdf
Taite wk 2 term 3 13 pdftakp
 
Mane wk 10 term 2 2013
Mane wk 10 term 2 2013Mane wk 10 term 2 2013
Mane wk 10 term 2 2013takp
 
Mane wk 10 term 2 2013pdf
Mane wk 10 term 2 2013pdfMane wk 10 term 2 2013pdf
Mane wk 10 term 2 2013pdftakp
 
Taite wk 9 term 2 13
Taite wk 9 term 2 13Taite wk 9 term 2 13
Taite wk 9 term 2 13takp
 
Wenerei wk 10 term 2 2013 pdf
Wenerei wk 10 term 2 2013 pdfWenerei wk 10 term 2 2013 pdf
Wenerei wk 10 term 2 2013 pdftakp
 
Paraere wk 7 term 2 pdf
Paraere wk 7 term 2 pdfParaere wk 7 term 2 pdf
Paraere wk 7 term 2 pdftakp
 
Valentine's day 1
Valentine's day 1Valentine's day 1
Valentine's day 1tryslideshareonce
 
Turei wk 7 term 2
Turei wk 7 term 2Turei wk 7 term 2
Turei wk 7 term 2takp
 
Wenerei wk 10 term 2 2013 pdf1
Wenerei wk 10 term 2 2013 pdf1Wenerei wk 10 term 2 2013 pdf1
Wenerei wk 10 term 2 2013 pdf1takp
 
Everything obfuscurity taught me about monitoring
Everything obfuscurity taught me about monitoringEverything obfuscurity taught me about monitoring
Everything obfuscurity taught me about monitoring
Pete Cheslock
 
Ppt
PptPpt
PptTerminder Singh
 
Mane wk 4 term 2
Mane wk 4 term 2Mane wk 4 term 2
Mane wk 4 term 2takp
 
Mane wk 7 term 2
Mane wk 7 term 2Mane wk 7 term 2
Mane wk 7 term 2takp
 
บทที่ 2
บทที่ 2บทที่ 2
บทที่ 2น้ำฝน ทองคำ
 
Ppt
PptPpt
PptTerminder Singh
 
Rev.u.3
Rev.u.3Rev.u.3
Rev.u.3Tairy Tary
 
ANZ Law Seminar _Law resources overview V2
ANZ Law Seminar _Law resources overview V2ANZ Law Seminar _Law resources overview V2
ANZ Law Seminar _Law resources overview V2tinaarg
 
Pick Any Three: Good, Fast, or Safe - Devops from Scratch
Pick Any Three: Good, Fast, or Safe - Devops from ScratchPick Any Three: Good, Fast, or Safe - Devops from Scratch
Pick Any Three: Good, Fast, or Safe - Devops from Scratch
Pete Cheslock
 
DevOpsDays - Pick any Three - Devops from scratch
DevOpsDays - Pick any Three - Devops from scratchDevOpsDays - Pick any Three - Devops from scratch
DevOpsDays - Pick any Three - Devops from scratch
Pete Cheslock
 

More Related Content

Viewers also liked

The Future of Digital Textbooks, Tools of Change, 2010
The Future of Digital Textbooks, Tools of Change, 2010The Future of Digital Textbooks, Tools of Change, 2010
The Future of Digital Textbooks, Tools of Change, 2010
John Warren
 
Mane wk8 term 1 13pdf
Mane wk8 term 1 13pdfMane wk8 term 1 13pdf
Mane wk8 term 1 13pdftakp
 
Wenerei wk 2 term 3 13
Wenerei wk 2 term 3 13Wenerei wk 2 term 3 13
Wenerei wk 2 term 3 13takp
 
Taite wk 2 term 3 13 pdf
Taite wk 2 term 3 13 pdfTaite wk 2 term 3 13 pdf
Taite wk 2 term 3 13 pdftakp
 
Mane wk 10 term 2 2013
Mane wk 10 term 2 2013Mane wk 10 term 2 2013
Mane wk 10 term 2 2013takp
 
Mane wk 10 term 2 2013pdf
Mane wk 10 term 2 2013pdfMane wk 10 term 2 2013pdf
Mane wk 10 term 2 2013pdftakp
 
Taite wk 9 term 2 13
Taite wk 9 term 2 13Taite wk 9 term 2 13
Taite wk 9 term 2 13takp
 
Wenerei wk 10 term 2 2013 pdf
Wenerei wk 10 term 2 2013 pdfWenerei wk 10 term 2 2013 pdf
Wenerei wk 10 term 2 2013 pdftakp
 
Paraere wk 7 term 2 pdf
Paraere wk 7 term 2 pdfParaere wk 7 term 2 pdf
Paraere wk 7 term 2 pdftakp
 
Turei wk 7 term 2
Turei wk 7 term 2Turei wk 7 term 2
Turei wk 7 term 2takp
 
Wenerei wk 10 term 2 2013 pdf1
Wenerei wk 10 term 2 2013 pdf1Wenerei wk 10 term 2 2013 pdf1
Wenerei wk 10 term 2 2013 pdf1takp
 
Everything obfuscurity taught me about monitoring
Everything obfuscurity taught me about monitoringEverything obfuscurity taught me about monitoring
Everything obfuscurity taught me about monitoring
Pete Cheslock
 
Mane wk 4 term 2
Mane wk 4 term 2Mane wk 4 term 2
Mane wk 4 term 2takp
 
Mane wk 7 term 2
Mane wk 7 term 2Mane wk 7 term 2
Mane wk 7 term 2takp
 
ANZ Law Seminar _Law resources overview V2
ANZ Law Seminar _Law resources overview V2ANZ Law Seminar _Law resources overview V2
ANZ Law Seminar _Law resources overview V2tinaarg
 

Viewers also liked (20)

The Future of Digital Textbooks, Tools of Change, 2010
The Future of Digital Textbooks, Tools of Change, 2010The Future of Digital Textbooks, Tools of Change, 2010
The Future of Digital Textbooks, Tools of Change, 2010
 
Mane wk8 term 1 13pdf
Mane wk8 term 1 13pdfMane wk8 term 1 13pdf
Mane wk8 term 1 13pdf
 
Wenerei wk 2 term 3 13
Wenerei wk 2 term 3 13Wenerei wk 2 term 3 13
Wenerei wk 2 term 3 13
 
Taite wk 2 term 3 13 pdf
Taite wk 2 term 3 13 pdfTaite wk 2 term 3 13 pdf
Taite wk 2 term 3 13 pdf
 
Mane wk 10 term 2 2013
Mane wk 10 term 2 2013Mane wk 10 term 2 2013
Mane wk 10 term 2 2013
 
Mane wk 10 term 2 2013pdf
Mane wk 10 term 2 2013pdfMane wk 10 term 2 2013pdf
Mane wk 10 term 2 2013pdf
 
Taite wk 9 term 2 13
Taite wk 9 term 2 13Taite wk 9 term 2 13
Taite wk 9 term 2 13
 
Wenerei wk 10 term 2 2013 pdf
Wenerei wk 10 term 2 2013 pdfWenerei wk 10 term 2 2013 pdf
Wenerei wk 10 term 2 2013 pdf
 
Paraere wk 7 term 2 pdf
Paraere wk 7 term 2 pdfParaere wk 7 term 2 pdf
Paraere wk 7 term 2 pdf
 
Valentine's day 1
Valentine's day 1Valentine's day 1
Valentine's day 1
 
Turei wk 7 term 2
Turei wk 7 term 2Turei wk 7 term 2
Turei wk 7 term 2
 
Wenerei wk 10 term 2 2013 pdf1
Wenerei wk 10 term 2 2013 pdf1Wenerei wk 10 term 2 2013 pdf1
Wenerei wk 10 term 2 2013 pdf1
 
Everything obfuscurity taught me about monitoring
Everything obfuscurity taught me about monitoringEverything obfuscurity taught me about monitoring
Everything obfuscurity taught me about monitoring
 
Ppt
PptPpt
Ppt
 
Mane wk 4 term 2
Mane wk 4 term 2Mane wk 4 term 2
Mane wk 4 term 2
 
Mane wk 7 term 2
Mane wk 7 term 2Mane wk 7 term 2
Mane wk 7 term 2
 
บทที่ 2
บทที่ 2บทที่ 2
บทที่ 2
 
Ppt
PptPpt
Ppt
 
Rev.u.3
Rev.u.3Rev.u.3
Rev.u.3
 
ANZ Law Seminar _Law resources overview V2
ANZ Law Seminar _Law resources overview V2ANZ Law Seminar _Law resources overview V2
ANZ Law Seminar _Law resources overview V2
 

Similar to Why We Can't Have Nice Things, A Tale of Woe and a Hope For the Future

Pick Any Three: Good, Fast, or Safe - Devops from Scratch
Pick Any Three: Good, Fast, or Safe - Devops from ScratchPick Any Three: Good, Fast, or Safe - Devops from Scratch
Pick Any Three: Good, Fast, or Safe - Devops from Scratch
Pete Cheslock
 
DevOpsDays - Pick any Three - Devops from scratch
DevOpsDays - Pick any Three - Devops from scratchDevOpsDays - Pick any Three - Devops from scratch
DevOpsDays - Pick any Three - Devops from scratch
Pete Cheslock
 
SecureWorld Kim - Infosec at Ludicrous Speeds - Rugged DevOps 6a
SecureWorld Kim - Infosec at Ludicrous Speeds - Rugged DevOps 6aSecureWorld Kim - Infosec at Ludicrous Speeds - Rugged DevOps 6a
SecureWorld Kim - Infosec at Ludicrous Speeds - Rugged DevOps 6aGene Kim
 
ServiceNow ITIL at Ludicrous Speeds - Rugged DevOps
ServiceNow ITIL at Ludicrous Speeds - Rugged DevOpsServiceNow ITIL at Ludicrous Speeds - Rugged DevOps
ServiceNow ITIL at Ludicrous Speeds - Rugged DevOpsGene Kim
 
Kim IT Pro Forum Eugene: IT at Ludicrous Speeds - rugged dev ops
Kim IT Pro Forum Eugene: IT at Ludicrous Speeds - rugged dev opsKim IT Pro Forum Eugene: IT at Ludicrous Speeds - rugged dev ops
Kim IT Pro Forum Eugene: IT at Ludicrous Speeds - rugged dev opsGene Kim
 
Identify Development Pains and Resolve Them with Idea Flow
Identify Development Pains and Resolve Them with Idea FlowIdentify Development Pains and Resolve Them with Idea Flow
Identify Development Pains and Resolve Them with Idea Flow
TechWell
 
Infosec at Ludicrous Speeds - Rugged DevOps
Infosec at Ludicrous Speeds - Rugged DevOps Infosec at Ludicrous Speeds - Rugged DevOps
Infosec at Ludicrous Speeds - Rugged DevOps Gene Kim
 
Kim itSMF New England: ITIL at Ludicrous Speeds - Rugged DevOps 6a
Kim itSMF New England: ITIL at Ludicrous Speeds - Rugged DevOps 6aKim itSMF New England: ITIL at Ludicrous Speeds - Rugged DevOps 6a
Kim itSMF New England: ITIL at Ludicrous Speeds - Rugged DevOps 6aGene Kim
 
Why Everyone Needs DevOps Now: My Fourteen Year Journey Studying High Perform...
Why Everyone Needs DevOps Now: My Fourteen Year Journey Studying High Perform...Why Everyone Needs DevOps Now: My Fourteen Year Journey Studying High Perform...
Why Everyone Needs DevOps Now: My Fourteen Year Journey Studying High Perform...
Akamai Technologies
 
Odinstar 2017 - Real World Automating to Support Testing
Odinstar 2017 - Real World Automating to Support TestingOdinstar 2017 - Real World Automating to Support Testing
Odinstar 2017 - Real World Automating to Support Testing
Alan Richardson
 
Broken by design (Danny Fullerton)
Broken by design (Danny Fullerton)Broken by design (Danny Fullerton)
Broken by design (Danny Fullerton)
Hackfest Communication
 
DevOps Connect: Josh Corman and Gene Kim discuss DevOpsSec
DevOps Connect: Josh Corman and Gene Kim discuss DevOpsSecDevOps Connect: Josh Corman and Gene Kim discuss DevOpsSec
DevOps Connect: Josh Corman and Gene Kim discuss DevOpsSec
Sonatype
 
Winnipeg ISACA Security is Dead, Rugged DevOps
Winnipeg ISACA Security is Dead, Rugged DevOpsWinnipeg ISACA Security is Dead, Rugged DevOps
Winnipeg ISACA Security is Dead, Rugged DevOpsGene Kim
 
Automating Tactically vs Strategically SauceCon 2020
Automating Tactically vs Strategically SauceCon 2020Automating Tactically vs Strategically SauceCon 2020
Automating Tactically vs Strategically SauceCon 2020
Alan Richardson
 
How to (screw up) learn safely in Production :: Talkdesk R&D Learning Fest 2022
How to (screw up) learn safely in Production :: Talkdesk R&D Learning Fest 2022How to (screw up) learn safely in Production :: Talkdesk R&D Learning Fest 2022
How to (screw up) learn safely in Production :: Talkdesk R&D Learning Fest 2022
Pedro Gustavo Torres
 
DevOpsDays Houston 2019 -Kevin Crawley - Practical Guide to Not Building Anot...
DevOpsDays Houston 2019 -Kevin Crawley - Practical Guide to Not Building Anot...DevOpsDays Houston 2019 -Kevin Crawley - Practical Guide to Not Building Anot...
DevOpsDays Houston 2019 -Kevin Crawley - Practical Guide to Not Building Anot...
DevOpsDays Houston
 
4 Steps to Effectively Integrate DevOps Workflows With Cloud Security Practices
4 Steps to Effectively Integrate DevOps Workflows With Cloud Security Practices4 Steps to Effectively Integrate DevOps Workflows With Cloud Security Practices
4 Steps to Effectively Integrate DevOps Workflows With Cloud Security Practices
Threat Stack
 
Top Talks from BSides San Francisco 2017
Top Talks from BSides San Francisco 2017Top Talks from BSides San Francisco 2017
Top Talks from BSides San Francisco 2017
Tripwire
 
Machine Learning Misconceptions in Business by Emerj AI Research
Machine Learning Misconceptions in Business by Emerj AI Research Machine Learning Misconceptions in Business by Emerj AI Research
Machine Learning Misconceptions in Business by Emerj AI Research
Emerj
 
Why Everyone Needs DevOps Now - Gene Kim
Why Everyone Needs DevOps Now - Gene KimWhy Everyone Needs DevOps Now - Gene Kim
Why Everyone Needs DevOps Now - Gene Kim
Dynatrace
 

Similar to Why We Can't Have Nice Things, A Tale of Woe and a Hope For the Future (20)

Pick Any Three: Good, Fast, or Safe - Devops from Scratch
Pick Any Three: Good, Fast, or Safe - Devops from ScratchPick Any Three: Good, Fast, or Safe - Devops from Scratch
Pick Any Three: Good, Fast, or Safe - Devops from Scratch
 
DevOpsDays - Pick any Three - Devops from scratch
DevOpsDays - Pick any Three - Devops from scratchDevOpsDays - Pick any Three - Devops from scratch
DevOpsDays - Pick any Three - Devops from scratch
 
SecureWorld Kim - Infosec at Ludicrous Speeds - Rugged DevOps 6a
SecureWorld Kim - Infosec at Ludicrous Speeds - Rugged DevOps 6aSecureWorld Kim - Infosec at Ludicrous Speeds - Rugged DevOps 6a
SecureWorld Kim - Infosec at Ludicrous Speeds - Rugged DevOps 6a
 
ServiceNow ITIL at Ludicrous Speeds - Rugged DevOps
ServiceNow ITIL at Ludicrous Speeds - Rugged DevOpsServiceNow ITIL at Ludicrous Speeds - Rugged DevOps
ServiceNow ITIL at Ludicrous Speeds - Rugged DevOps
 
Kim IT Pro Forum Eugene: IT at Ludicrous Speeds - rugged dev ops
Kim IT Pro Forum Eugene: IT at Ludicrous Speeds - rugged dev opsKim IT Pro Forum Eugene: IT at Ludicrous Speeds - rugged dev ops
Kim IT Pro Forum Eugene: IT at Ludicrous Speeds - rugged dev ops
 
Identify Development Pains and Resolve Them with Idea Flow
Identify Development Pains and Resolve Them with Idea FlowIdentify Development Pains and Resolve Them with Idea Flow
Identify Development Pains and Resolve Them with Idea Flow
 
Infosec at Ludicrous Speeds - Rugged DevOps
Infosec at Ludicrous Speeds - Rugged DevOps Infosec at Ludicrous Speeds - Rugged DevOps
Infosec at Ludicrous Speeds - Rugged DevOps
 
Kim itSMF New England: ITIL at Ludicrous Speeds - Rugged DevOps 6a
Kim itSMF New England: ITIL at Ludicrous Speeds - Rugged DevOps 6aKim itSMF New England: ITIL at Ludicrous Speeds - Rugged DevOps 6a
Kim itSMF New England: ITIL at Ludicrous Speeds - Rugged DevOps 6a
 
Why Everyone Needs DevOps Now: My Fourteen Year Journey Studying High Perform...
Why Everyone Needs DevOps Now: My Fourteen Year Journey Studying High Perform...Why Everyone Needs DevOps Now: My Fourteen Year Journey Studying High Perform...
Why Everyone Needs DevOps Now: My Fourteen Year Journey Studying High Perform...
 
Odinstar 2017 - Real World Automating to Support Testing
Odinstar 2017 - Real World Automating to Support TestingOdinstar 2017 - Real World Automating to Support Testing
Odinstar 2017 - Real World Automating to Support Testing
 
Broken by design (Danny Fullerton)
Broken by design (Danny Fullerton)Broken by design (Danny Fullerton)
Broken by design (Danny Fullerton)
 
DevOps Connect: Josh Corman and Gene Kim discuss DevOpsSec
DevOps Connect: Josh Corman and Gene Kim discuss DevOpsSecDevOps Connect: Josh Corman and Gene Kim discuss DevOpsSec
DevOps Connect: Josh Corman and Gene Kim discuss DevOpsSec
 
Winnipeg ISACA Security is Dead, Rugged DevOps
Winnipeg ISACA Security is Dead, Rugged DevOpsWinnipeg ISACA Security is Dead, Rugged DevOps
Winnipeg ISACA Security is Dead, Rugged DevOps
 
Automating Tactically vs Strategically SauceCon 2020
Automating Tactically vs Strategically SauceCon 2020Automating Tactically vs Strategically SauceCon 2020
Automating Tactically vs Strategically SauceCon 2020
 
How to (screw up) learn safely in Production :: Talkdesk R&D Learning Fest 2022
How to (screw up) learn safely in Production :: Talkdesk R&D Learning Fest 2022How to (screw up) learn safely in Production :: Talkdesk R&D Learning Fest 2022
How to (screw up) learn safely in Production :: Talkdesk R&D Learning Fest 2022
 
DevOpsDays Houston 2019 -Kevin Crawley - Practical Guide to Not Building Anot...
DevOpsDays Houston 2019 -Kevin Crawley - Practical Guide to Not Building Anot...DevOpsDays Houston 2019 -Kevin Crawley - Practical Guide to Not Building Anot...
DevOpsDays Houston 2019 -Kevin Crawley - Practical Guide to Not Building Anot...
 
4 Steps to Effectively Integrate DevOps Workflows With Cloud Security Practices
4 Steps to Effectively Integrate DevOps Workflows With Cloud Security Practices4 Steps to Effectively Integrate DevOps Workflows With Cloud Security Practices
4 Steps to Effectively Integrate DevOps Workflows With Cloud Security Practices
 
Top Talks from BSides San Francisco 2017
Top Talks from BSides San Francisco 2017Top Talks from BSides San Francisco 2017
Top Talks from BSides San Francisco 2017
 
Machine Learning Misconceptions in Business by Emerj AI Research
Machine Learning Misconceptions in Business by Emerj AI Research Machine Learning Misconceptions in Business by Emerj AI Research
Machine Learning Misconceptions in Business by Emerj AI Research
 
Why Everyone Needs DevOps Now - Gene Kim
Why Everyone Needs DevOps Now - Gene KimWhy Everyone Needs DevOps Now - Gene Kim
Why Everyone Needs DevOps Now - Gene Kim
 

More from Pete Cheslock

How to keep the people you need
How to keep the people you needHow to keep the people you need
How to keep the people you need
Pete Cheslock
 
The Vasa Redux
The Vasa ReduxThe Vasa Redux
The Vasa Redux
Pete Cheslock
 
A Tale of Two Workflows - ChefConf 2014
A Tale of Two Workflows - ChefConf 2014A Tale of Two Workflows - ChefConf 2014
A Tale of Two Workflows - ChefConf 2014
Pete Cheslock
 
Recruiting is Broken - How Do We Fix It
Recruiting is Broken - How Do We Fix ItRecruiting is Broken - How Do We Fix It
Recruiting is Broken - How Do We Fix It
Pete Cheslock
 
Sonian, Open Source and Sensu
Sonian, Open Source and SensuSonian, Open Source and Sensu
Sonian, Open Source and SensuPete Cheslock
 
Chef boston-workflows
Chef boston-workflowsChef boston-workflows
Chef boston-workflows
Pete Cheslock
 

More from Pete Cheslock (7)

How to keep the people you need
How to keep the people you needHow to keep the people you need
How to keep the people you need
 
The Vasa Redux
The Vasa ReduxThe Vasa Redux
The Vasa Redux
 
A Tale of Two Workflows - ChefConf 2014
A Tale of Two Workflows - ChefConf 2014A Tale of Two Workflows - ChefConf 2014
A Tale of Two Workflows - ChefConf 2014
 
Recruiting is Broken - How Do We Fix It
Recruiting is Broken - How Do We Fix ItRecruiting is Broken - How Do We Fix It
Recruiting is Broken - How Do We Fix It
 
Rubix cube
Rubix cubeRubix cube
Rubix cube
 
Sonian, Open Source and Sensu
Sonian, Open Source and SensuSonian, Open Source and Sensu
Sonian, Open Source and Sensu
 
Chef boston-workflows
Chef boston-workflowsChef boston-workflows
Chef boston-workflows
 

Recently uploaded

Epistemic Interaction - tuning interfaces to provide information for AI support
Epistemic Interaction - tuning interfaces to provide information for AI supportEpistemic Interaction - tuning interfaces to provide information for AI support
Epistemic Interaction - tuning interfaces to provide information for AI support
Alan Dix
 
Transcript: Selling digital books in 2024: Insights from industry leaders - T...
Transcript: Selling digital books in 2024: Insights from industry leaders - T...Transcript: Selling digital books in 2024: Insights from industry leaders - T...
Transcript: Selling digital books in 2024: Insights from industry leaders - T...
BookNet Canada
 
20240607 QFM018 Elixir Reading List May 2024
20240607 QFM018 Elixir Reading List May 202420240607 QFM018 Elixir Reading List May 2024
20240607 QFM018 Elixir Reading List May 2024
Matthew Sinclair
 
By Design, not by Accident - Agile Venture Bolzano 2024
By Design, not by Accident - Agile Venture Bolzano 2024By Design, not by Accident - Agile Venture Bolzano 2024
By Design, not by Accident - Agile Venture Bolzano 2024
Pierluigi Pugliese
 
FIDO Alliance Osaka Seminar: The WebAuthn API and Discoverable Credentials.pdf
FIDO Alliance Osaka Seminar: The WebAuthn API and Discoverable Credentials.pdfFIDO Alliance Osaka Seminar: The WebAuthn API and Discoverable Credentials.pdf
FIDO Alliance Osaka Seminar: The WebAuthn API and Discoverable Credentials.pdf
FIDO Alliance
 
Secstrike : Reverse Engineering & Pwnable tools for CTF.pptx
Secstrike : Reverse Engineering & Pwnable tools for CTF.pptxSecstrike : Reverse Engineering & Pwnable tools for CTF.pptx
Secstrike : Reverse Engineering & Pwnable tools for CTF.pptx
nkrafacyberclub
 
Why You Should Replace Windows 11 with Nitrux Linux 3.5.0 for enhanced perfor...
Why You Should Replace Windows 11 with Nitrux Linux 3.5.0 for enhanced perfor...Why You Should Replace Windows 11 with Nitrux Linux 3.5.0 for enhanced perfor...
Why You Should Replace Windows 11 with Nitrux Linux 3.5.0 for enhanced perfor...
SOFTTECHHUB
 
Video Streaming: Then, Now, and in the Future
Video Streaming: Then, Now, and in the FutureVideo Streaming: Then, Now, and in the Future
Video Streaming: Then, Now, and in the Future
Alpen-Adria-Universität
 
Introduction to CHERI technology - Cybersecurity
Introduction to CHERI technology - CybersecurityIntroduction to CHERI technology - Cybersecurity
Introduction to CHERI technology - Cybersecurity
mikeeftimakis1
 
20240605 QFM017 Machine Intelligence Reading List May 2024
20240605 QFM017 Machine Intelligence Reading List May 202420240605 QFM017 Machine Intelligence Reading List May 2024
20240605 QFM017 Machine Intelligence Reading List May 2024
Matthew Sinclair
 
GraphSummit Singapore | Enhancing Changi Airport Group's Passenger Experience...
GraphSummit Singapore | Enhancing Changi Airport Group's Passenger Experience...GraphSummit Singapore | Enhancing Changi Airport Group's Passenger Experience...
GraphSummit Singapore | Enhancing Changi Airport Group's Passenger Experience...
Neo4j
 
Climate Impact of Software Testing at Nordic Testing Days
Climate Impact of Software Testing at Nordic Testing DaysClimate Impact of Software Testing at Nordic Testing Days
Climate Impact of Software Testing at Nordic Testing Days
Kari Kakkonen
 
Pushing the limits of ePRTC: 100ns holdover for 100 days
Pushing the limits of ePRTC: 100ns holdover for 100 daysPushing the limits of ePRTC: 100ns holdover for 100 days
Pushing the limits of ePRTC: 100ns holdover for 100 days
Adtran
 
Elevating Tactical DDD Patterns Through Object Calisthenics
Elevating Tactical DDD Patterns Through Object CalisthenicsElevating Tactical DDD Patterns Through Object Calisthenics
Elevating Tactical DDD Patterns Through Object Calisthenics
Dorra BARTAGUIZ
 
GridMate - End to end testing is a critical piece to ensure quality and avoid...
GridMate - End to end testing is a critical piece to ensure quality and avoid...GridMate - End to end testing is a critical piece to ensure quality and avoid...
GridMate - End to end testing is a critical piece to ensure quality and avoid...
ThomasParaiso2
 
GraphSummit Singapore | The Art of the Possible with Graph - Q2 2024
GraphSummit Singapore | The Art of the Possible with Graph - Q2 2024GraphSummit Singapore | The Art of the Possible with Graph - Q2 2024
GraphSummit Singapore | The Art of the Possible with Graph - Q2 2024
Neo4j
 
Essentials of Automations: The Art of Triggers and Actions in FME
Essentials of Automations: The Art of Triggers and Actions in FMEEssentials of Automations: The Art of Triggers and Actions in FME
Essentials of Automations: The Art of Triggers and Actions in FME
Safe Software
 
State of ICS and IoT Cyber Threat Landscape Report 2024 preview
State of ICS and IoT Cyber Threat Landscape Report 2024 previewState of ICS and IoT Cyber Threat Landscape Report 2024 preview
State of ICS and IoT Cyber Threat Landscape Report 2024 preview
Prayukth K V
 
The Art of the Pitch: WordPress Relationships and Sales
The Art of the Pitch: WordPress Relationships and SalesThe Art of the Pitch: WordPress Relationships and Sales
The Art of the Pitch: WordPress Relationships and Sales
Laura Byrne
 
GraphSummit Singapore | Graphing Success: Revolutionising Organisational Stru...
GraphSummit Singapore | Graphing Success: Revolutionising Organisational Stru...GraphSummit Singapore | Graphing Success: Revolutionising Organisational Stru...
GraphSummit Singapore | Graphing Success: Revolutionising Organisational Stru...
Neo4j
 

Recently uploaded (20)

Epistemic Interaction - tuning interfaces to provide information for AI support
Epistemic Interaction - tuning interfaces to provide information for AI supportEpistemic Interaction - tuning interfaces to provide information for AI support
Epistemic Interaction - tuning interfaces to provide information for AI support
 
Transcript: Selling digital books in 2024: Insights from industry leaders - T...
Transcript: Selling digital books in 2024: Insights from industry leaders - T...Transcript: Selling digital books in 2024: Insights from industry leaders - T...
Transcript: Selling digital books in 2024: Insights from industry leaders - T...
 
20240607 QFM018 Elixir Reading List May 2024
20240607 QFM018 Elixir Reading List May 202420240607 QFM018 Elixir Reading List May 2024
20240607 QFM018 Elixir Reading List May 2024
 
By Design, not by Accident - Agile Venture Bolzano 2024
By Design, not by Accident - Agile Venture Bolzano 2024By Design, not by Accident - Agile Venture Bolzano 2024
By Design, not by Accident - Agile Venture Bolzano 2024
 
FIDO Alliance Osaka Seminar: The WebAuthn API and Discoverable Credentials.pdf
FIDO Alliance Osaka Seminar: The WebAuthn API and Discoverable Credentials.pdfFIDO Alliance Osaka Seminar: The WebAuthn API and Discoverable Credentials.pdf
FIDO Alliance Osaka Seminar: The WebAuthn API and Discoverable Credentials.pdf
 
Secstrike : Reverse Engineering & Pwnable tools for CTF.pptx
Secstrike : Reverse Engineering & Pwnable tools for CTF.pptxSecstrike : Reverse Engineering & Pwnable tools for CTF.pptx
Secstrike : Reverse Engineering & Pwnable tools for CTF.pptx
 
Why You Should Replace Windows 11 with Nitrux Linux 3.5.0 for enhanced perfor...
Why You Should Replace Windows 11 with Nitrux Linux 3.5.0 for enhanced perfor...Why You Should Replace Windows 11 with Nitrux Linux 3.5.0 for enhanced perfor...
Why You Should Replace Windows 11 with Nitrux Linux 3.5.0 for enhanced perfor...
 
Video Streaming: Then, Now, and in the Future
Video Streaming: Then, Now, and in the FutureVideo Streaming: Then, Now, and in the Future
Video Streaming: Then, Now, and in the Future
 
Introduction to CHERI technology - Cybersecurity
Introduction to CHERI technology - CybersecurityIntroduction to CHERI technology - Cybersecurity
Introduction to CHERI technology - Cybersecurity
 
20240605 QFM017 Machine Intelligence Reading List May 2024
20240605 QFM017 Machine Intelligence Reading List May 202420240605 QFM017 Machine Intelligence Reading List May 2024
20240605 QFM017 Machine Intelligence Reading List May 2024
 
GraphSummit Singapore | Enhancing Changi Airport Group's Passenger Experience...
GraphSummit Singapore | Enhancing Changi Airport Group's Passenger Experience...GraphSummit Singapore | Enhancing Changi Airport Group's Passenger Experience...
GraphSummit Singapore | Enhancing Changi Airport Group's Passenger Experience...
 
Climate Impact of Software Testing at Nordic Testing Days
Climate Impact of Software Testing at Nordic Testing DaysClimate Impact of Software Testing at Nordic Testing Days
Climate Impact of Software Testing at Nordic Testing Days
 
Pushing the limits of ePRTC: 100ns holdover for 100 days
Pushing the limits of ePRTC: 100ns holdover for 100 daysPushing the limits of ePRTC: 100ns holdover for 100 days
Pushing the limits of ePRTC: 100ns holdover for 100 days
 
Elevating Tactical DDD Patterns Through Object Calisthenics
Elevating Tactical DDD Patterns Through Object CalisthenicsElevating Tactical DDD Patterns Through Object Calisthenics
Elevating Tactical DDD Patterns Through Object Calisthenics
 
GridMate - End to end testing is a critical piece to ensure quality and avoid...
GridMate - End to end testing is a critical piece to ensure quality and avoid...GridMate - End to end testing is a critical piece to ensure quality and avoid...
GridMate - End to end testing is a critical piece to ensure quality and avoid...
 
GraphSummit Singapore | The Art of the Possible with Graph - Q2 2024
GraphSummit Singapore | The Art of the Possible with Graph - Q2 2024GraphSummit Singapore | The Art of the Possible with Graph - Q2 2024
GraphSummit Singapore | The Art of the Possible with Graph - Q2 2024
 
Essentials of Automations: The Art of Triggers and Actions in FME
Essentials of Automations: The Art of Triggers and Actions in FMEEssentials of Automations: The Art of Triggers and Actions in FME
Essentials of Automations: The Art of Triggers and Actions in FME
 
State of ICS and IoT Cyber Threat Landscape Report 2024 preview
State of ICS and IoT Cyber Threat Landscape Report 2024 previewState of ICS and IoT Cyber Threat Landscape Report 2024 preview
State of ICS and IoT Cyber Threat Landscape Report 2024 preview
 
The Art of the Pitch: WordPress Relationships and Sales
The Art of the Pitch: WordPress Relationships and SalesThe Art of the Pitch: WordPress Relationships and Sales
The Art of the Pitch: WordPress Relationships and Sales
 
GraphSummit Singapore | Graphing Success: Revolutionising Organisational Stru...
GraphSummit Singapore | Graphing Success: Revolutionising Organisational Stru...GraphSummit Singapore | Graphing Success: Revolutionising Organisational Stru...
GraphSummit Singapore | Graphing Success: Revolutionising Organisational Stru...
 

Why We Can't Have Nice Things, A Tale of Woe and a Hope For the Future