The Human Side of DevSecOps

•Download as PPTX, PDF•

1 like•693 views

Much attention is focused to the technology aspects of DevOps, including how to automate security testing. But DevOps is as much a cultural movement as anything else, with a strong focus on feedback loops and continuous improvement. How can organizations implement these aspects of DevOps culture when integrating security, given the massive shortfall in skilled information security personnel? This talk discusses organizational and cultural aspects of DevOps with an emphasis on the role of “security champions”—developers cross-trained in information security basics—in executing a successful DevSecOps transformation.

Software

© 2016 VERACODE INC. 1© 2016 VERACODE INC.
The Human Side
of DevSecOps

© 2016 VERACODE INC. 4
DevOps: transformation or tragedy?

© 2016 VERACODE INC. 6
Culture clash revisited

© 2016 VERACODE INC. 8
Why desiloing Security is hard
Source
• Cory Scott, LinkedIn Director Information Security, Information Security Talent
Pool Research, BlackHat CISO Summit 2015.

© 2016 VERACODE INC. 9
Consider the theory

© 2016 VERACODE INC. 10
Consider the theory
Development
work products Security
Release
velocity starved

© 2016 VERACODE INC. 11
Theory of constraints for security in software
development
Identify
Exploit
SubordinateElevate
Repeat
Remove low value work
from security team, shift
upstream where
possible
Minimize changes
requiring security
review
?

Enter Security Champions!Security Champions to the rescue

Pick the
right people
Start strong
Empower,
within limits

© 2016 VERACODE INC. 15
Start strong
• Start with formal training in
security fundamentals
• Reinforce with eLearning
• Use CTFs and other opportunities
to learn in the wild
• Set guidelines for common
activities

© 2016 VERACODE INC. 16
Empower, within limits
• Security grooming within guidelines
• Security review guidelines
• Know when, and how, to escalate

© 2016 VERACODE INC. 18
Measuring and managing
• Baseline security maturity
• Code review certifications
• Individual and team goals

© 2016 VERACODE INC. 19
Security champions:
the conscience of development.

© 2016 VERACODE INC. 22© 2016 VERACODE INC.
Questions?
Ask in the webinar or
tweet to @tojarrett

Today, organizations of all shapes and sizes depend on feature-packed application releases to keep end users productive and happy. In their new book, The DevOps Handbook: How to Create World-Class Agility, Reliability, and Security in Technology Organizations, Gene Kim and his co-authors shared ways that high-performing organizations use DevOps principles to enable reliable deployments - and boring releases! Gene Kim, CTO, DevOps researcher and co-author of the DevOps Handbook and The Phoenix Project, and Anders Wallgren, CTO of Electric Cloud shared their tips for overcoming the challenges of DevOps and Continuous Delivery at scale. During the webinar, they discussed: - The business value of DevOps - How to eliminate “deployment anxiety” and increase business agility - Lessons learned from large scale DevOps transformations - The advantages and disadvantages of practicing DevOps in large organizations

Efficient Performance Test Automation - Opitmizing the Jenkins Pipeline

Jules Pierre-Louis

Shift-left testing represents a huge opportunity within the context of DevOps and Continuous Delivery, and integrating performance tests into your Continuous Integration scope greatly reduces performance risks when adding a new feature, or fixing a bug. Even better – adding performance tests into the widely used Jenkins Pipeline is easier than you might think. In this webinar, co-presented by CA BlazeMeter and CloudBees, we’ll offer practical tips and best practices for leveraging performance test automation in a continuous integration environment. In this webinar we’ll cover: - How to easily implement a project’s entire build/test/deploy pipeline in Jenkins and store that alongside existing code - How to configure and execute realistic, large-scale performance-testing scenarios as part of the Continuous Integration process - Enabling easy test configuration maintenance using the open source test automation tool Taurus along with Jenkins Pipeline - Analyzing comprehensive performance test results in real-time, and integrating those results as a part of the build promotion criteria Extend the impact of performance testing across the software delivery pipeline and the popular tools your teams are already using.

Behind the Book: Gene Kim's Top Takeaways from Researching and Writing 'The D...

XebiaLabs

The secure and effective management of technology is more critical than ever for business competitiveness. In the new bestseller, The DevOps Handbook: How to Create World-Class Agility, Reliability, and Security in Technology Organizations, Gene Kim and his co-authors shed light on how high-performing organizations are using DevOps principles to routinely and reliably deploy code into productions hundreds, if not thousands, of times per day. What metrics matter from deploys per day, developer productivity and reduced feedback cycles to employee satisfaction and burnout Striking the right balance between automation and manual steps and the role value stream mapping can play in achieving performance breakthroughs Conway’s Law and how it's applied to change technology work processes Integrating infosec into the daily work of Dev, Test and Ops Common challenges encountered in automated testing and ways to overcome them

cdSummit Austin - Orchestrating the continuous delivery process - Andy Pemberton

Miles Blatstein

Integrating Automated Testing into DevOps

TechWell

In many organizations, agile development processes are driving the pursuit of faster software releases, which has spawned a set of new practices called DevOps. DevOps stresses communications and integration between development and operations, including continuous integration, continuous delivery, and rapid deployments. Because DevOps practices require confidence that changes made to the code base will function as expected. automated testing is an essential ingredient Join Jeff Payne as he discusses the unique challenges associated with integrating automated testing into continuous integration/continuous delivery (CI/CD) environments. Learn the internals of how CI/CD works, appropriate tooling, and test integration points. Find out howpto integrate your existing test automation frameworks into a DevOps environment and leave with roadmap for integrating test automation with continuous integration and delivery.

KEYNOTE | WHAT'S COMING IN THE NEXT 10 YEARS OF DEVOPS? // ELLEN CHISA, bolds...

DevOpsDays Tel Aviv

DevSecOps - It can change your life (cycle)

Qualitest

The journey to realizing DevOps in any organization is fraught with a number of obstacles for developers and other stakeholders. These challenges are often caused by key CI/CD practices being misunderstood, partially implemented or even completely skipped. Now, as the industry positions itself to build on DevOps practices with a Software Delivery Management strategy, it’s more important than ever that we implement CI/CD best practices, and prepare for the future. Join host Mitchell Ashely, and CloudBees’ Brian Dawson, DevOps evangelist, and Doug Tidwell, technical marketing director, as they explore and review the CI/CD best practices which serve as your stepping stones to DevOps and a successful Software Delivery Management strategy. The webinar will cover CI/CD best practices including: Containers and environment management Continuous delivery or deployment Movement from Dev to Ops By the end of the webinar, you’ll understand the key steps for implementing CI/CD and powering your journey to DevOps and beyond.

cdSummit Austin - Jez Humble: CD Architecture

Miles Blatstein

DevOps: A Culture Transformation, More than Technology

CA Technologies

DevOps is not a new technology or a product. It's an approach or culture of SW development that seeks stability and performance at the same time that it speeds software deliveries to the business. We will discuss this cultural shift where development teams have to accept the feedback of operations teams and the operations team should be ready to accept frequent updates to the SW that it's running. To learn more about DevOps solutions from CA Technologies, please visit: http://bit.ly/1wbjjqX

Starting and Scaling DevOps

Jules Pierre-Louis

More and more companies worldwide are excited about DevOps and the many potential benefits of embarking on a DevOps transformation. The challenge many of them are having, however, is figuring out where to begin and how to scale DevOps practices over time. These challenges can be especially daunting in large enterprises. In this webinar we will discuss a maturity model for framing your transformation, then focus on analyzing your deployment pipeline and identify existing inefficiencies in software development and deployment.

Take Control: Design a Complete DevSecOps Program

Deborah Schalm

Designing a secure DevOps workflow is tough: Developers, testers, IT security teams, and managers all have different control points within the software development lifecycle. Additionally, each application in development and production has a unique profile and features. Then you have the different types of organizations which have different maturity levels and needs: Retail has different day-to-day priorities than Finance or Healthcare, although all industries are united by a need to defend against the current threat landscape of data breaches and ransomware. How do you find the right touch points? How do you build application security into your DevOps workflow successfully, turning the workflow from a process into a program?

Implementing DevOps in a Regulated Environment - DJ Schleen

SeniorStoryteller

DevOps Best Practices: Managing and Scaling Release Automation Using Visual a...

XebiaLabs

Release pipeline orchestration has become an essential foundation for successfully coordinating and scaling Continuous Delivery across the enterprise. But in order for any DevOps change to succeed – be it cultural or process-oriented – enterprises must consider the diverse needs and preferences of their teams. They need processes and tools that match their capabilities and work style. There’s a lot of buzz now about managing releases as code. Developers love being able to define everything in manageable artifacts. But managing pipelines as code is only a part of a much bigger picture, not the core solution. In this live webinar learn best practices for release orchestration using flexible approaches that work for team members across the enterprise. Tune in to this on-demand webinar to learn more about these best practices as well as: How to bring intelligence, automation, visibility and control to your release pipelines. Pitfalls to avoid when using code as your primary method to manage releases. How you can ensure compliance requirements in your release process are met regardless of the method used.

Cloud bees and forester open source is not enough

Jules Pierre-Louis

It’s the same everywhere you turn. Companies are trying to transform their digital experiences and increase customer engagement all while improving customer experience. This is giving rise to a whole new generation of modern applications that are built fast, scale out, are mobile-first and go global on public cloud infrastructure. Developers building modern applications depend on: - An evolving set of DevOps needs - Modern architectural principles - Pervasive use of open source frameworks and tools Forrester Analyst, Jeffrey Hammond, and CloudBees DevOps Evangelist, Brian Dawson, discussed how developers are meeting the demand for speed without blowing budgets. They shared the best practices they have seen companies use to take full advantage of open source tools and frameworks.

Barriers to Container Security and How to Overcome Them

WhiteSource

Over the past few years, more and more companies are turning to containerized environments to scale their applications. However, keeping containers secure throughout the development life cycle presents many challenges to security and development teams. In order to address them, organizations need to adopt a new set of security processes and tools. This session will focus on the three most vulnerable areas of container security and the best practices to help teams develop and deploy securely. Join Jeffrey Martin, Senior Director of Product at WhiteSource, as he discusses: The top challenges to security in containerized environments How DevSecOps addresses security in containerized environments Tips and tricks for successfully incorporating security into the container lifecycle

Continuous Delivery and DevOps at Rabobank

XebiaLabs

Breaking the triangle between Cost, Risk and Time. Andrew Phillips and Sander Ettema discuss: Create a culture of innovation and adapt your IT organization for rapid change. Deliver on customer expectations by modernizing your IT software delivery landscape with an open platform for Continuous Delivery. Get started quickly and leverage your existing IT infrastructure for rapid results and understand the key metrics to watch along the way. Lead an IT transformation in the highly regulated environment of financial services.

DevOps 2016 summit

Chihyang Li

The New Age of Enterprise DevOps

XebiaLabs

Since the trend began more than five years ago, DevOps has seen dramatic changes, including the advent of container software such as Docker, security impacts and the rise of hybrid cloud computing. Additional considerations beyond speed are also driving today's enterprise DevOps adoption, including efficiency and business value. And while large enterprises remain very interested in net-new, cloud-native applications, they are also giving more consideration to modernizing existing and legacy applications and their related processes. In this on-demand webinar, hear from Jay Lyman, Principal Researcher, 451 Research and Sunil Mavadia, Director of Customer Success, XebiaLabs as they discuss these meaningful changes in the drivers, challenges and benefits as well as their potential impact on your organization’s DevOps journey.

The End of Security as We Know It - Shannon Lietz

SeniorStoryteller

DevOps by examples - Continuous Lifecycle London 2017

Giulio Vian

DevOps: What, who, why and how?

Red Gate Software

More and more organizations are turning to DevOps as a way of working together to improve the efficiency and quality of software delivery and start adding more value to the business. But what exactly is DevOps and what does it mean for you and your organization? Join Microsoft Data Platform MVP Kendra Little to discover: • What is DevOps and what benefits can it offer your organization? • Who in your organization should be involved in DevOps? • Why should your organization adopt DevOps? • How can your organization start implementing DevOps?

devops

Somkiat Puisungnoen

DevOps Explained

Richard Seroter

Microservice Monitoring and Quality Management for Modern Apps and Infrastruc...

Jules Pierre-Louis

Containerization of microservice based applications enables full team responsibility from code, to operations and eventually maintenance, which enables faster time-to-market, shorter feedback cycles and maximizes continuousness delivery. This modern approach leads to a much higher rate of change, which in turn can lead to chaos. The challenge is how to make sense out of the chaos that deploying containerized microservices at scale creates, and how to get visibility into everything inside, outside and around the containers including the quality of the application’s services. Join the technical experts from Mesosphere and Instana as they tackle visibility and orchestration requirements to deploy and manage your containerized microservice apps and infrastructure.

Travis ci

Mahyuddin Mahyuddin

What's hot

2017 DevSecOps Survey

Sonatype

Introduction to DevOps

Matthew David

cdSummit Austin - The Future of Enterprise Service Mangagement in a DevOps Wo...

Miles Blatstein

CI/CD Best Practices for Your DevOps Journey

DevOps.com

cdSummit Austin - Jez Humble: CD Architecture

Miles Blatstein

DevOps: A Culture Transformation, More than Technology

CA Technologies

Starting and Scaling DevOps

Jules Pierre-Louis

Take Control: Design a Complete DevSecOps Program

Deborah Schalm

Implementing DevOps in a Regulated Environment - DJ Schleen

SeniorStoryteller

DevOps Best Practices: Managing and Scaling Release Automation Using Visual a...

XebiaLabs

Cloud bees and forester open source is not enough

Jules Pierre-Louis

Barriers to Container Security and How to Overcome Them

WhiteSource

Continuous Delivery and DevOps at Rabobank

XebiaLabs

DevOps 2016 summit

Chihyang Li

The New Age of Enterprise DevOps

XebiaLabs

The End of Security as We Know It - Shannon Lietz

SeniorStoryteller

DevOps by examples - Continuous Lifecycle London 2017

Giulio Vian

DevOps: What, who, why and how?

Red Gate Software

devops

Somkiat Puisungnoen

DevOps Explained

Richard Seroter

What's hot (20)

2017 DevSecOps Survey

Introduction to DevOps

cdSummit Austin - The Future of Enterprise Service Mangagement in a DevOps Wo...

CI/CD Best Practices for Your DevOps Journey

cdSummit Austin - Jez Humble: CD Architecture

DevOps: A Culture Transformation, More than Technology

Starting and Scaling DevOps

Take Control: Design a Complete DevSecOps Program

Implementing DevOps in a Regulated Environment - DJ Schleen

DevOps Best Practices: Managing and Scaling Release Automation Using Visual a...

Cloud bees and forester open source is not enough

Barriers to Container Security and How to Overcome Them

Continuous Delivery and DevOps at Rabobank

DevOps 2016 summit

The New Age of Enterprise DevOps

The End of Security as We Know It - Shannon Lietz

DevOps by examples - Continuous Lifecycle London 2017

DevOps: What, who, why and how?

devops

DevOps Explained

Viewers also liked

Microservice Monitoring and Quality Management for Modern Apps and Infrastruc...

Jules Pierre-Louis

Travis ci

Mahyuddin Mahyuddin

A Smart Landfill Gas Control System Design to Optimize ROI & Performance

Affinity Energy

Landfill gas operators with many pieces of equipment understand it’s challenging to have complete visibility and ensure maximum uptime. Learn how to design your plant control system for maximum ROI by utilizing a scalable and comprehensive SCADA system, and specifying the right data points for real-time and historical analysis. By analyzing data and properly configuring alarms and alerts, owners can properly prioritize maintenance, optimize operations, and proactively identify potential problems to ultimately exceed expected plant performance. By viewing the SCADA system as an information system, Affinity Energy can provide owners and operators with the tools to achieve a higher rate of return on their automation investment. Learn more http://affinityenergy.com

BYOD Security Scanning

MAX Risk Intelligence by LOGICnow

BYOD Security Scanning - the ability to assess smartphones, tablets and laptops for vulnerabilities, secure configurations and unprotected data at rest are vital for visualizing the entire security and compliance posture of an organization. BYOD environments are equally important as traditional servers and computers. This paper illustrates that all endpoints can now be scanned for threats regardless of where the device is physically located, anytime and anywhere.)

How to Build the Right Automation

Jules Pierre-Louis

Many companies are investing heavily in automation. Good high quality automation is key as companies move towards a successful DevOps model. The problem is that automation scripts can be very brittle and tend to not cover or test the entire application. They are also very difficult and time consuming to keep up to date. This presentation will include a demonstration of how to design, create and update automation scripts as well as their associated test data and end points. On this webcast learn how to make automated testing a reality.

Starting and Scaling Devops

Jules Pierre-Louis

Hitting back against digital disruption

Mike Shaw

The four changes in IT because of digital technology

Mike Shaw

What does Digital Disruption look like?

Mike Shaw

Viewers also liked (9)

Microservice Monitoring and Quality Management for Modern Apps and Infrastruc...

Travis ci

A Smart Landfill Gas Control System Design to Optimize ROI & Performance

BYOD Security Scanning

How to Build the Right Automation

Starting and Scaling Devops

Hitting back against digital disruption

The four changes in IT because of digital technology

What does Digital Disruption look like?

Similar to The Human Side of DevSecOps

The Human Side of DevSecOps

Timothy Jarrett

Developing a Rugged Dev Ops Approach to Cloud Security (Updated)

Sebastian Taphanel CISSP-ISSEP

Devops: Security's big opportunity by Peter Chestna

DevSecCon

How to get the best out of DevSecOps - a security perspective

Colin Domoney

CPX 2016 Moti Sagey Security Vendor Landscape

Moti Sagey מוטי שגיא

DevOpsDays - Pick any Three - Devops from scratch

Pete Cheslock

DevOps: Security's Big Opportunity

Timothy Jarrett

DevOps culture creates an opportunity for us to improve application security. Since developers are the ones producing code, integrating components and creating the innovations that fuel our digital economy, they are also the ones who will determine whether or not security is part of development or not. Security professionals must therefore learn to how to talk to developers about how to create a security program that will accelerate development and not slow it down.

Embrace DevSecOps and Enjoy a Significant Competitive Advantage!

DevOps.com

As security and privacy permeate companies’ business practices, DevOps is leading a transformation in the way software is built and delivered. And despite its substantial organizational, cultural and technological requirements, DevOps continues to grow in popularity. Companies that are adopting continuous delivery disciplines demonstrate better IT and organizational performance. To achieve this level of performance, IT organizations must embrace a new way of thinking about application security. It is critical to understand how DevOps and continuous integration/continuous deployment (CI/CD) differ from agile development and how this changes the requirements for your application security. In this webinar, one of CA Veracode’s product and development experts will provide the latest update to the "Five Principles of Secure DevOps." Much has evolved in this space, and CA Veracode continues to share examples and best practices on how organizations can make the transition to DevSecOps to gain a competitive advantage.

OWASP Bay Area Meetup - DevSecOps the Kubernetes Way

Jimmy Mesta

комплексная защита от современных интернет угроз с помощью Check point sandblast

Diana Frolova

Defense-Oriented DevOps for Modern Software Development

VMware Tanzu

SpringOne Platform 2017 James Wickett, Signal Sciences "DevOps is the practice of the entire engineering team participating together through the entire service lifecycle of delivering software. This includes security and out of necessity, security as we have known it has completely changed. Through challenges from the outside and forces from within there is a wholesale conversion taking place across the industry where DevOps and Security are joining forces. This talk is a hybrid of inspiration and pragmatism for dealing with the new landscape. There are four key areas that have changed with the rise of DevOps: Treat all systems and infrastructure as code Change the engineering culture to orient around delivery Favor a fast delivery cadence Create feedback loops across the organization With these shifts the organization has new demands and expectations on security. This talk will cover a pragmatic approach and focus on principles, practices and tooling to meet demands in these four key areas."

Defense-Oriented DevOps for Modern Software Development

James Wickett

Presentation from SpringOne Platform 2017 conference by Pivotal. DevOps is the practice of the entire engineering team participating together through the entire service lifecycle of delivering software. This includes security and out of necessity, security as we have known it has completely changed. Through challenges from the outside and forces from within there is a wholesale conversion taking place across the industry where DevOps and Security are joining forces. This talk is a hybrid of inspiration and pragmatism for dealing with the new landscape. There are four key areas that have changed with the rise of DevOps: Treat all systems and infrastructure as code Change the engineering culture to orient around delivery Favor a fast delivery cadence Create feedback loops across the organization With these shifts the organization has new demands and expectations on security. This talk will cover a pragmatic approach and focus on principles, practices and tooling to meet demands in these four key areas.

The DevOps Challenge: Now Is the Time to Be a Champion of Quality

TechWell

Software failures continue to make news headlines daily. Yet all the industry hype we hear is about DevOps, a set of practices that seems to exclude quality and testers. Does quality matter? Will it become part of the equation? We must take notice of exclusionary movements and become champions of quality. Lisa Dronzek shares voke’s DevOps survey data to provide insight about the realities and unintended consequences of this movement. Whether you are all-in or just feeling left out, join Lisa to explore DevOps—its challenges and its risks. Lisa explains why and how testers need to become IT superheroes to highlight the value of testing. She shares the actions that leaders, managers, automation experts, and manual testers must take. Learn how to identify your unique strengths to become an agent of change, a technology champion, or a customer advocate to show the value of testing in your organization. Change the conversation, and become a quality champion today!

How to get the best out of DevSecOps - a developers perspective

Colin Domoney

Achieving Secure DevOps: Overcoming the Risks of Modern Service Delivery

Perforce

DevOps and Continuous Delivery practices are attracting the attention of many organizations looking to increase the speed of their application delivery, yet doing so the wrong way can risk both quality and security. In this webinar, Forrester analysts Kurt Bittner and Rick Holland will share their insights on how DevOps and Security teams can work better together to meet these challenges, along with best practices for bringing greater security to product development and delivery.

SC18 DevOps Short Introduction

Jason Echols

Top Lessons Learned While Researching and Writing The DevOps Handbook

Dynatrace

Top Lessons Learned While Researching and Writing The DevOps Handbook In this webinar, Gene Kim shares his top insights discovered while co-authoring The DevOps Handbook with Jez Humble, Patrick Debois, and John Willis, including: • Informative DevOps transformation case studies around continuous integration and delivery • Jez Humble’s latest definitions of continuous delivery vs. deployment • How Conway’s Law and architecture can both hinder and enable success • Concrete techniques to build a culture of continuous experimentation and learning – including those from Google, Etsy, Nordstrom, and Capital One

How to get the best out of DevSecOps - an operations perspective

Colin Domoney

From Rogue One to Rebel Alliance: Building Developers into Security Champions

Digital Transformation EXPO Event Series

Are you responsible for more than just AppSec? What do you do when you have more teams to support than security experts? How can you make security champions out of dissenters in the development team? There just aren’t enough security experts to go around. You have to support the multitude of Agile and DevOps teams that are making production software changes anywhere from once a month to several times a day. The lack of resources coupled with the ever increasing responsibilities can make you feel like a rouge warrior in the battle against cybercrime. What’s a security professional to do? Whether you are a team of one or five, there aren’t enough hours in the day and even if there was more budget, good luck finding someone to fill that security role. What if I told you that through careful selection and good training it is possible to build your own army from the very people who own the development process? What you will learn: 1. Who to recruit as security champions 2. How to train these champions in productive application security 3. How to measure success 4. How to build a scalable security program 5. What to expect from champions (responsibilities)

How to apply DevOps in a regulated organisation

Colin Domoney

Similar to The Human Side of DevSecOps (20)

The Human Side of DevSecOps

Developing a Rugged Dev Ops Approach to Cloud Security (Updated)

Devops: Security's big opportunity by Peter Chestna

How to get the best out of DevSecOps - a security perspective

CPX 2016 Moti Sagey Security Vendor Landscape

DevOpsDays - Pick any Three - Devops from scratch

DevOps: Security's Big Opportunity

Embrace DevSecOps and Enjoy a Significant Competitive Advantage!

OWASP Bay Area Meetup - DevSecOps the Kubernetes Way

комплексная защита от современных интернет угроз с помощью Check point sandblast

Defense-Oriented DevOps for Modern Software Development

The DevOps Challenge: Now Is the Time to Be a Champion of Quality

How to get the best out of DevSecOps - a developers perspective

Achieving Secure DevOps: Overcoming the Risks of Modern Service Delivery

SC18 DevOps Short Introduction

Top Lessons Learned While Researching and Writing The DevOps Handbook

How to get the best out of DevSecOps - an operations perspective

From Rogue One to Rebel Alliance: Building Developers into Security Champions

How to apply DevOps in a regulated organisation

More from Jules Pierre-Louis

Sandstorm or Significant: The evolving role of context in Incident Management

Jules Pierre-Louis

Providing Situational Context to first responders is one of the most nuanced and critical success factors teams need as they manage and resolve incidents. It’s critical at all stages of incident management, from alert detection through postmortem. Provide no context, and you’ll materially impede resolution efforts. Overwhelm a team with data, and chaos ensues. Understanding the evolving role of context will differentiate your incident management abilities and prepare you for ongoing success. In this webinar, we gained an understanding of the evolving role of situational context as teams move from beginner to advanced in their incident management maturity. We honed in on the factors you need to calibrate the optimal level of context, and learned how to deliver that context in the most effective way.

From Monolith to Microservices – and Beyond!

Jules Pierre-Louis

Software application development and delivery often involves multiple development, infrastructure and operations teams, each with their own preferred “tools of the trade” for building, testing and deploying code changes For years, virtualization and cloud technologies have provided agile, on-demand infrastructure. The advent of Microservices promises even more agility– but what is required to take advantage of Microservices? Join Electric Cloud CTO Anders Wallgren and Trace3 Principal Consultant - DevOps Marc Hornbeek as they discuss what is required to: - Overcome culture and architecture challenges created when decomposing monolithic applications into Microservices-based applications. - Coordinate integration, testing, monitoring, packaging, release approval and deployment of Microservices-based applications over elastic infrastructures - Create a controlled and auditable delivery pipeline to support Microservices-based application. - Prepare for “future” applications, pipelines and patterns.

Containers: DevOp Enablers of Technical Solutions

Jules Pierre-Louis

Containers, the next wave of virtualization, are changing everything! As companies learn about the value of DevOps practices and containerization they are flocking to containers. Now with Docker running on Windows and Docker Containers built into both Azure and Windows Server, containers are poised to take over the virtualization landscape. Come to the session to learn all about containers and how you can put these technologies to use in your organization. You will learn about DevOps, Docker Containers, Running Containers on Windows 10, Windows Server 2016 and Linux on-premises or in the Azure cloud. You will learn about the tools and practices for leveraging containers, deploying containers as well as how you can continue on your journey to becoming a container expert as you grow your technical career.

Adopting DevOps @ Scale: Lessons learned at Hertz, Kaiser Permanente and lBM

Jules Pierre-Louis

DevOps has become a major enabler of business innovation that can drive digital transformation at an enterprise level if done well. Challenges remain, however. Crossing the chasm from successful DevOps pilots with "two-pizza" teams to full enterprise adoption, including cultural transformation, best practices and tools remains a challenge. Join Alan Shimel as he hosts a panel discussion with Hertz' John LaFreniere, Kaiser Permanente's Raghunath Raman and IBM's Sanjeev Sharma on how traditional enterprises are accelerating innovation by adopting DevOps practices at scale across their organizations. Find out how: - Hertz is accelerating transformation of their platforms, business process and operating models with Cloud, DevOps and Agile. - Kaiser Permanente is managing the cultural, process and integration challenges of multi-speed IT. - IBM has embarked on a DevOps transformation that has engaged over 10,000 developers already -- including becoming one of the world's largest users of GitHub Enterprise. Watch to learn how to assess your organization’s readiness for scaling DevOps, and to identify next steps.

Managing Quality of Service for Containerized Microservice Applications

Jules Pierre-Louis

Microservice architecture and containerization are rapidly changing the way we build and deploy applications. The speed of change and chaotic processing patterns are stressing existing monitoring tools ability to monitor and assist with quality of service. Instana applies tracing and machine learning to the task. This webinar demonstrates how Instana delivers automatic quality of microservice management.

The Evolution of Application Release Automation

Jules Pierre-Louis

The capabilities provided by today’s ARA tools have advanced exponentially in recent years. Despite these advancements Enterprise’s demand new requirements that go beyond application change to automate even more of the release process. The evolving definition ARA now includes areas that were previously left unaddressed – namely the deployment of database changes. Learn how Datical and XebiaLabs are working together to address the changing needs of the Enterprise through the evolution of application release automation. Video: https://youtu.be/qULKaCRFo7M

DevOPs Transformation Workshop

Jules Pierre-Louis

Pipeline: Continuous Delivery as Code in Jenkins 2.0

Jules Pierre-Louis

7 Habits of Highly Effective Jenkins Users

Jules Pierre-Louis

7 Habits of Highly Effective Jenkins Users

Jules Pierre-Louis

Webinar: A Roadmap for DevOps Success

Jules Pierre-Louis

DevOps isn’t just for the “unicorn” companies out there like Google and Apple. DevOps practices are rapidly hitting the mainstream as more organizations realize the need to behave like software companies and improve how they work in order to deliver better value to customers. If you’re sold on the value of DevOps but having trouble getting buy-in from your peers and managers, or if you’re not sure where to get started, this webinar is for you. Based on findings from the 2016 State of DevOps Report, our friends at Puppet share a roadmap for driving DevOps adoption within your organization. We cover: - How to build the business case for DevOps - The cultural changes required - Ways to align incentives and teams to improve collaboration - Key technical practices of high-performing teams - Where to start

More from Jules Pierre-Louis (11)

Sandstorm or Significant: The evolving role of context in Incident Management

From Monolith to Microservices – and Beyond!

Containers: DevOp Enablers of Technical Solutions

Adopting DevOps @ Scale: Lessons learned at Hertz, Kaiser Permanente and lBM

Managing Quality of Service for Containerized Microservice Applications

The Evolution of Application Release Automation

DevOPs Transformation Workshop

Pipeline: Continuous Delivery as Code in Jenkins 2.0

7 Habits of Highly Effective Jenkins Users

Webinar: A Roadmap for DevOps Success

Recently uploaded

GraphSummit Paris - The art of the possible with Graph Technology

Neo4j

Providing Globus Services to Users of JASMIN for Environmental Data Analysis

Globus

JASMIN is the UK’s high-performance data analysis platform for environmental science, operated by STFC on behalf of the UK Natural Environment Research Council (NERC). In addition to its role in hosting the CEDA Archive (NERC’s long-term repository for climate, atmospheric science & Earth observation data in the UK), JASMIN provides a collaborative platform to a community of around 2,000 scientists in the UK and beyond, providing nearly 400 environmental science projects with working space, compute resources and tools to facilitate their work. High-performance data transfer into and out of JASMIN has always been a key feature, with many scientists bringing model outputs from supercomputers elsewhere in the UK, to analyse against observational or other model data in the CEDA Archive. A growing number of JASMIN users are now realising the benefits of using the Globus service to provide reliable and efficient data movement and other tasks in this and other contexts. Further use cases involve long-distance (intercontinental) transfers to and from JASMIN, and collecting results from a mobile atmospheric radar system, pushing data to JASMIN via a lightweight Globus deployment. We provide details of how Globus fits into our current infrastructure, our experience of the recent migration to GCSv5.4, and of our interest in developing use of the wider ecosystem of Globus services for the benefit of our user community.

2024 eCommerceDays Toulouse - Sylius 2.0.pdf

Łukasz Chruściel

Pro Unity Game Development with C-sharp Book

abdulrafaychaudhry

May Marketo Masterclass, London MUG May 22 2024.pdf

Adele Miller

BoxLang: Review our Visionary Licenses of 2024

Ortus Solutions, Corp

Empowering Growth with Best Software Development Company in Noida - Deuglo

Deuglo Infosystem Pvt Ltd

Do you want Software for your Business? Visit Deuglo Deuglo has top Software Developers in India. They are experts in software development and help design and create custom Software solutions. Deuglo follows seven steps methods for delivering their services to their customers. They called it the Software development life cycle process (SDLC). Requirement — Collecting the Requirements is the first Phase in the SSLC process. Feasibility Study — after completing the requirement process they move to the design phase. Design — in this phase, they start designing the software. Coding — when designing is completed, the developers start coding for the software. Testing — in this phase when the coding of the software is done the testing team will start testing. Installation — after completion of testing, the application opens to the live server and launches! Maintenance — after completing the software development, customers start using the software.

GOING AOT WITH GRAALVM FOR SPRING BOOT (SPRING IO)

Alina Yurenko

Climate Science Flows: Enabling Petabyte-Scale Climate Analysis with the Eart...

Globus

The Earth System Grid Federation (ESGF) is a global network of data servers that archives and distributes the planet’s largest collection of Earth system model output for thousands of climate and environmental scientists worldwide. Many of these petabyte-scale data archives are located in proximity to large high-performance computing (HPC) or cloud computing resources, but the primary workflow for data users consists of transferring data, and applying computations on a different system. As a part of the ESGF 2.0 US project (funded by the United States Department of Energy Office of Science), we developed pre-defined data workflows, which can be run on-demand, capable of applying many data reduction and data analysis to the large ESGF data archives, transferring only the resultant analysis (ex. visualizations, smaller data files). In this talk, we will showcase a few of these workflows, highlighting how Globus Flows can be used for petabyte-scale climate analysis.

Custom Healthcare Software for Managing Chronic Conditions and Remote Patient...

Mind IT Systems

Enterprise Software Development with No Code Solutions.pptx

QuickwayInfoSystems3

In the ever-evolving landscape of technology, enterprise software development is undergoing a significant transformation. Traditional coding methods are being challenged by innovative no-code solutions, which promise to streamline and democratize the software development process. This shift is particularly impactful for enterprises, which require robust, scalable, and efficient software to manage their operations. In this article, we will explore the various facets of enterprise software development with no-code solutions, examining their benefits, challenges, and the future potential they hold.

Game Development with Unity3D (Game Development lecture 3)

abdulrafaychaudhry

Quarkus Hidden and Forbidden Extensions

Max Andersen

Vitthal Shirke Java Microservices Resume.pdf

Vitthal Shirke

Introduction to Pygame (Lecture 7 Python Game Development)

abdulrafaychaudhry

Large Language Models and the End of Programming

Matt Welsh

Essentials of Automations: The Art of Triggers and Actions in FME

Safe Software

In this second installment of our Essentials of Automations webinar series, we’ll explore the landscape of triggers and actions, guiding you through the nuances of authoring and adapting workspaces for seamless automations. Gain an understanding of the full spectrum of triggers and actions available in FME, empowering you to enhance your workspaces for efficient automation. We’ll kick things off by showcasing the most commonly used event-based triggers, introducing you to various automation workflows like manual triggers, schedules, directory watchers, and more. Plus, see how these elements play out in real scenarios. Whether you’re tweaking your current setup or building from the ground up, this session will arm you with the tools and insights needed to transform your FME usage into a powerhouse of productivity. Join us to discover effective strategies that simplify complex processes, enhancing your productivity and transforming your data management practices with FME. Let’s turn complexity into clarity and make your workspaces work wonders!

Webinar: Salesforce Document Management 2.0 - Smarter, Faster, Better

XfilesPro

Cracking the code review at SpringIO 2024

Paco van Beckhoven

Code reviews are vital for ensuring good code quality. They serve as one of our last lines of defense against bugs and subpar code reaching production. Yet, they often turn into annoying tasks riddled with frustration, hostility, unclear feedback and lack of standards. How can we improve this crucial process? In this session we will cover: - The Art of Effective Code Reviews - Streamlining the Review Process - Elevating Reviews with Automated Tools By the end of this presentation, you'll have the knowledge on how to organize and improve your code review proces

Innovating Inference - Remote Triggering of Large Language Models on HPC Clus...

Globus

Large Language Models (LLMs) are currently the center of attention in the tech world, particularly for their potential to advance research. In this presentation, we'll explore a straightforward and effective method for quickly initiating inference runs on supercomputers using the vLLM tool with Globus Compute, specifically on the Polaris system at ALCF. We'll begin by briefly discussing the popularity and applications of LLMs in various fields. Following this, we will introduce the vLLM tool, and explain how it integrates with Globus Compute to efficiently manage LLM operations on Polaris. Attendees will learn the practical aspects of setting up and remotely triggering LLMs from local machines, focusing on ease of use and efficiency. This talk is ideal for researchers and practitioners looking to leverage the power of LLMs in their work, offering a clear guide to harnessing supercomputing resources for quick and effective LLM inference.

Recently uploaded (20)

GraphSummit Paris - The art of the possible with Graph Technology

Providing Globus Services to Users of JASMIN for Environmental Data Analysis

2024 eCommerceDays Toulouse - Sylius 2.0.pdf

Pro Unity Game Development with C-sharp Book

May Marketo Masterclass, London MUG May 22 2024.pdf

BoxLang: Review our Visionary Licenses of 2024

Empowering Growth with Best Software Development Company in Noida - Deuglo

GOING AOT WITH GRAALVM FOR SPRING BOOT (SPRING IO)

Climate Science Flows: Enabling Petabyte-Scale Climate Analysis with the Eart...

Custom Healthcare Software for Managing Chronic Conditions and Remote Patient...

Enterprise Software Development with No Code Solutions.pptx

Game Development with Unity3D (Game Development lecture 3)

Quarkus Hidden and Forbidden Extensions

Vitthal Shirke Java Microservices Resume.pdf

Introduction to Pygame (Lecture 7 Python Game Development)

Large Language Models and the End of Programming

Essentials of Automations: The Art of Triggers and Actions in FME

Webinar: Salesforce Document Management 2.0 - Smarter, Faster, Better

Cracking the code review at SpringIO 2024

Innovating Inference - Remote Triggering of Large Language Models on HPC Clus...