DevOps Talks Conference Australia, Singapore and New Zealand DevOps Talks Conference Australia, Singapore and New Zealand

AGENDA DOTC 2019 IN NZ

Day 1
26th of March
8:00 -- 9:00

Reception and Opening

9:00 -- 9:05

Welcome & Opening Remarks

9:05 -- 10:05

Jennifer Petoff - Senior Program Manager at Google

Getting Started with Site Reliability Engineering: Principles, Practices and Organizational Culture

Site Reliability Engineering and the DevOps movement share a similar set of challenges but addresses each in a different way. SRE got its start at Google in 2003 and according to Ben Treynor, VP of 24/7 Operations: «SRE is what happens when you ask a software engineer to design an operations team». In 2016, Google published a book about Site Reliability Engineering principles, practices and organizational constructs. The practice of Site Reliability Engineering at Google encompasses more than just managing production systems and responding to emergencies. Applying software engineering in a principled way to operations allows SRE to holistically address the reliability of software applications across the product lifecycle. Implementing SRE in an organisation requires a commitment to supporting some core principles and a fundamental culture shift SRE needs Service Level Objectives, with consequences. SREs have time to make tomorrow better than today. SRE teams have the ability to regulate their workload. SREs and the organisation's leaders remove the word «blame» from their vocabulary. This talk will highlight key SRE principles and how they map to recognized DevOps focus areas. We'll also discuss how any organisation can start practicing engineering the SRE way, and how our recent experience of working with our customers on adopting SRE practices has shown these principles will work across a range of organisations of different types and sizes.
10:05 -- 10:50

Dave Corlett - Head of Engineering at Westpac New Zealand

Richard Jarrett - Deputy CIO at Westpac New Zealand

Searching for a great day at work — A devops quest of experiment and discovery

Westpac NZ Technology embarked on a Culture lead DevOps quest in 2015 leveraging agile, lean and DevOps approaches and techniques to deliver velocity and efficiency in its operating model while putting greater value in the hands of the customer as early as possible. It started with a simple question and through a journey of experimentation and discovery has to lead us to where we are now — beginning to execute our next quest into being a customer lead agile business (the whole organisation). The journey is by no means done however the learnings to date are worth hearing.
11:35 -- 12:05

Break

12:05 -- 12:35

Daniel Sauble - Product Owner at Sonatype

Open Source Software: Please Drink Responsibly.

Open source software (OSS) has many benefits. It’s generally designed for reusability, the code is transparent, and it’s easy to contribute (which causes the best ideas to rise to the top). You can fork OSS projects or do whatever else you want with them, including incorporating them into your own applications as dependencies. However, these benefits bring risks: Open source projects can be hijacked by bad actors, compromising any applications that depend on those projects. Vulnerable dependencies can create security holes in the applications that depend on them. Dependencies hosted in public repositories can disappear, breaking your builds and causing people to substitute dependencies from more questionable sources. Dependency hell can obscure the true surface area of your application, making it more difficult to spot or prevent security holes from appearing in your applications. Aging dependencies can reveal new vulnerabilities that threaten your production applications, forcing interrupt-driven and expensive remediation work. It’s best to mitigate these risks if possible. I present five principles to help you use OSS safely, as well as a collection of tools to help you apply these principles in your own software supply chain. I put a special emphasis on automation, because the weakest part of even the most secure system is the humans that operate it.
12:35 -- 1:05

George Putnam - Chief of Product and Platform at Clear Point

ClearPoint Accelerate: the How To of faster & safer digital product delivery

Customer expectations are growing wider — their experience needs to be flawless, and the performance of channels and products needs to be seamless. Organisations need to move at a pace to keep up and no industry is safe. To deliver a competitive, responsive and compelling direct-to-consumer experience is paramount. Agile and continuous delivery practices have evolved to enable quality innovation at speed. Rob will talk through what organisations need to get their head around to deliver faster and safer for customers
1:05 -- 1:35

Sarah Young - Security Architect at Microsoft

How to lose container in 10 minutes

Moving to the cloud and deploying containers? In this talk I discuss both the mindset shift and tech challenges, with some common mistakes made in real-life deployments with some real life (albeit redacted) examples. We’ll also look at what happens to a container that’s been left open to the Internet for the duration of the talk. Overview of cloud-native services and containers Encryption and containers Isolating containers Structuring containerised applications Orchestrator configuration Using good container images Running as root in the container Secret/credentials storage Deploying containers ephemerally Shifting security to the left Deploying a container-aware security toolset
1:35 -- 2:35

Lunch

2:35 -- 3:05

Amir Mohtasebi - Head of Engineering at Trade Me

Continuous Delivery for the Rest of Us

Trade Me Jobs is a small business unit within a larger Trade Me family. This team was traditionally very focused on direct commercial outcomes and did not have a dedicated IT delivery team about four years ago. This talk is about how a medium-sized delivery team managed to translate continuous delivery benefits to organizational and commercial outcomes, turn it to one of their strategic priorities, and improve their IT performance by 25%.
3:05 -- 3:50

Andrew Nimick - GM of Digital Development at NZME

Gates to stiles going for flow.

Andrew will talk about his experience of different approaches to implementing DevOps and why building strong teams and capability should always be first. A holistic model of delivering customer products.
3:50 -- 4:20

Break

4:20 -- 5:05

Mike Owen - Domain Chapter Lead of Future Practice & Technology at Spark

Ankit Gupta - Chapter Lead and Product Owner of DevOps Tooling Team at Spark

How to switch on DevOps in an Enterprise

The competitive market environment coupled with the growing pace of business and technology disruptions have brought digital and customer experience as an important factor in telecom industry. Digital business demands that enterprises respond rapidly to customer needs, boost the success rate of new products and realize value faster. Enterprise agility and technology-driven innovation is key to ensuring the above. This presentation is about how we can make a difference with Integrated Agile and Automation services underpinned through a process excellence framework and a platform approach. What approach Spark NZ as an organisation adapted to deliver faster and what challenges were faced in achieving agility due to the legacy processes, systems and culture. DevOps — Scaled Agile Implementation Journey and will cover approaches we tried and what worked for us Common Challenges faced in implementing DevOps from our experience working with different teams How Spark started with DevOps and Scaled up DevOps across organization Culture and Process Excellence Automation of Build and Deployment and Integration with CI/CD Adaptability and maturity of an implemented framework
5:50 -- 6:35

Ricardo Ferreira - Developer Advocate at Confluent

Getting Superman X-Ray Vision: Bringing Observability to your Stream Processing.

Microservices is rapidly becoming the de-facto standard way to develop complex information systems, by breaking down the domain problem into multiple reusable, highly scalable and efficient services. However, when it comes to monitoring these services, developers often have to leverage distributed tracing technologies such as Jaeger to make the code execution flow observable. Though this might be an easy task while dealing with request-response microservices, it might not be that easily bring observability to event-driven/asynchronous architectures built on Apache Kafka. This talk will explain how observability through Jaeger can be introduced into pipelines built with Apache Kafka, specifically in pipelines built using KSQL. Finally, this talk is also going to show how to implement observability in a generic way so developers don’t have to write code for every single producer and consumer they have. To accomplish this, it will be shown examples of how to leverage Kafka’s Interceptor API, which is usually known for the ‘Monitoring Interceptors’ that Confluent provides for Control Center, but can also be used to implement other scenarios such as this.
6:35 -- 8:35

Entertainment, Networking, Discussions Open Space Discussions, Beer, Fingerfood Entertainment Entertaiment and Discussions

Day 2
27th of March
8:00 -- 9:00

Reception and Opening

9:00 -- 10:00

John Willis - Founder at Batchagalupe

Devops' Seven Deadly Diseases

Devops is now officially 10 years old. What have we learned? Although prescriptive practices like Lean, Agile, SAFE and even DevOps may be necessary for IT acceleration they are in most cases are not sufficient for long-term systemic improvement. In other words, you can’t Lean, Agile, SAFE or Devops your way around institutionalized organizational habits. Therefore, the key to long-term improvement lies in an understanding where human capital interconnects with technology. The following is a list of the «Seven Deadly Diseases»: Invisible Work Management System Toil Tribal Knowledge Misalignment of Incentives Incongruent Organizational Design Misunderstanding Complexity Security and Compliance Theater These seven diseases of organizational behavior must be uncovered with absence of prescriptive practice through a process of organizational fact-finding. In this presentation, we will look at the «Seven Deadly Diseases» of IT organization work and show examples of how to uncover these diseases through a process of organizational forensics (i.e., fact-finding).
10:00 -- 10:45

Anthony Rees - APAC Solutions Architect at Chef

DevOps Tools That Play Well With Others

When you bring together the Operations and Development teams, it’s important to review the tools you use for software development and their role in your stack with a new perspective. In this short presentation, we will look at two open source projects that DevOps teams can leverage and bring new measurable value to their organisation. Most importantly, these tools work well with multiple Cloud platforms, Windows and Linux and on-premise in data centres. In DevOps, code is King and therefore when you are bringing security into the picture in a DevSecOps scenario, you need a common way to define your companies audit and compliance rules in a format that can be checked into Git and pushed through a Continuous Delivery Pipeline. We will demonstrate this on a range of platforms using InSpec and show how this can be achieved with working software and real world examples. Managing applications in DevOps environments with fast deployment cycles is always a challenge, let alone using the same technique for multiple technologies and older applications. We will take a look at an open source project called Habitat where you can Build, Deploy and Manage your applications with speed and efficiency in a range of environments such as cloud, docker, kubernetes etc. Whether you are new to DevOps and its practices or looking for improvements that your teams can leverage, this talk will give you some great ideas to take back to the office
10:45 -- 11:15

Break

11:15 -- 12:00

Amy Boyle - Lead Software Engineer at New Relic

A DevOps Practitioners Guide.

To facilitate building products at New Relic, we on the Core Data Platform team provide a real-time distributed data platform at scale. We receive billions of data points a minute, which we need to process reliably and quickly. I’ll discuss lessons learned about designing, building and deploying software applications while carrying the pager. Modern software development involves having knowledge about how to build observability into your system, and how to collaborate effectively with other teams. My goal is to provide practical takeaways on how to build and maintain modern software more effectively.
12:00 -- 12:45

Ken Thompson - Technical Evangelist at Microsoft

To Hot Dog or Not Hot Dog? That is the question.

It’s easier than ever to add artificial intelligence to your apps. As a developer with no machine learning expertise, you can leverage off-the-shelf APIs or with a little extra effort, you can customise and train models already developed by data scientists. We’re going to have some fun with this one and look at how you can build the SeeFood (Not Hotdog) app from HBO’s Silicon Valley. We’ll create an image classifier and setup a DevOps pipeline to automate the development, training and testing of this classifier that incorporates into our overall application release pipeline.
12:45 -- 1:45

Lunch

1:45 -- 2:15

Lindsay Holmwood - Engineering Manager at Envato

Mirrors, networks, and boundaries – what technical leaders need to know for the next 10 years of devops.

This time ten years ago, a movement was starting to coalesce to better align developers and operators. Looking back in the rear view mirror, we can say pretty clearly that movement was on to something. DevOps has transformed how organisations use technology and organise people to deliver value to their customers faster and more safely. But the landscape is changing. New challenges are coming into view, and leaders need to start preparing themselves for what comes next. What’s got us here won’t get us there. In this talk we’ll look at what organisational psychology, product design, and anthropology have to say about what skills we need when navigating uncertainty.
2:15 -- 3:00

Matty Stratton - DevOps Evangelist at Pager Duty

The Four Agreements of Incident Response

Major outages, incident calls, war rooms, whatever you want to label them, can be stressful and frustrating experiences. In this talk, I will use the lessons of the book «The Four Agreements» by don Miguel Ruiz, to illustrate an easy-to-remember modality for effective and humane incident response. Don Miguel Ruiz’s book, https://www.amazon.com/Four-Agreements-Practical-Personal-Freedom/dp/1878424319/, presents a code of personal conduct based on ancient Toltec wisdom to help remove self-limiting structures and beliefs. Each of the Four Agreements can help us understand a more mature, effective, and humane approach to incident response in our organizations. In this talk, I will address how the Agreements can be expressed as a modality for Incident Response. Using the Agreements, it is easier to understand modern approaches to resolving incidents as effectively as possible, and even help reduce burnout as well!
3:00 -- 3:30

Break

3:30 -- 4:15

Craig Box - Cloud Native Advocacy Lead at Google Cloud

Knative: Building serverless experiences on top of Kubernetes.

You’re following DevOps or SRE best practices, perhaps even with containers and Kubernetes. You might even have implemented Istio! But are you exposing this system to your programmers? Wouldn’t they rather just write code, and have the system figure it out for them? Knative is a platform for allowing just that. In this talk, Craig will tell you about the Knative platform and its three primary components — build, serving and events — and how you can offer serverless experiences to your users, but on top of all those servers you still love.
4:15 -- 5:00

Panel Discussion. DevOps and Enterprise Challenges

5:00 -- 5:05

Closing Remarks

5:05 -- 7:05

Entertainment, Networking, Discussions Open Space Discussions, Beer, Fingerfood Entertainment Entertaiment and Discussions

WORKSHOPS
9:30 — 17:00

DevOps Leadership Workshop

Working through the many changes for yourself and your team, understanding the role of a manager in an agile work environment, dealing with the financial implications of «waterfall» not being the way to do work are just a few of these challenges.

This workshop, lead by managers who have gone through this transition, will focus on the techniques that will set you up for success in managing and directing the DevOps Transformation.

At the end of this workshop participants will be able to

  • Articulate the vision driving their DevOps Transformation
  • Describe new practices that will help foster the Transformation

Level 8, 500 Collins Street Melbourne