Reception and Opening
Welcome & Opening Remarks
Lindsay Holmwood - Chief Product Officer at CipherStash
«DevOps and Data Security: words vs actions»
LastPass. Shangri-La. Optus. The last 12 months have seen a reckoning for data security around the world.
But are these examples really that out of step with how we actually do security in our own organisations (not just what we tell ourselves about how we do it)?
What do organisations doing devops actually think about data security? Who do they think they are defending against? What steps are they taking to safeguard customer data?
This talk will explore two years of qualitative interviews with business and government organisations about how they think and act on data security.
We’ll explore devops tools, architectures, and processes to set you up for the changed threat landscape, and what techniques you can use today to better protect your customer data.
Yegor Naumov - Product Marketing Lead, TeamCity at JetBrains
«Optimizing your CI/CD pipelines for 40% more speed with TeamCity»
In this workshop, we will take a look at how JetBrains builds its largest project: IntelliJ, and talk about how TeamCity lets them save 38 build years per month on their CI/CD pipelines. We will then take a look at a live demo of how you can achieve similar results for reducing your CI/CD build time and costs. We will focus on build chains, cloud profiles, build caches, and test parallelization – features that enable you to unlock the power of parallelization and get results with speeds that might seem unimaginable for large projects.
Mayank Goyal - DevOps Engineer at Zoom
«Achieve fully automation: Tips, Tricks, & Tools»
Do you still work on tasks manually, OR do you use scripts to automate your day-to-day work, but you may still have to run a script or job manually? We generally call it semi-automation, but what if we can achieve 100% automation without manual intervention? Where you don’t even need to look at your tasks, everything will be handled automatically, whether Deployment, Configuration or Provisioning. Well, we can do this by integrating Jira and Jenkins. The goal is that the process should automatically get started whenever a Jira Task/Ticket lands in your Jira project queue. All the deployment, provisioning OR configuration will be handled automatically. You don’t need to perform any step manually everything will be taken care of by the Automation, even closing the Jira ticket after completing the task. Join this session to learn how to achieve 100% automation in your daily work.
Lunch
Gabriel Mesquida Masana - CPO ATM Twin at AIRLAB
«Optimising flight arrivals in Singapore using a Digital Twin»
Air Traffic Control has the purpose of sorting out the traffic in the skies with one key requirement: safety. Safety trumps any other requirement. This means that our systems are extremely resilient and predictable, giving the Air Traffic Control the right information, in a precise way, without room for error or ambiguity, using proven technologies that have been working for years and, sometimes, decades. But, how do you innovate in an environment like this? This is where Singapore AIR Lab shines. Jointly created by the Civil Aviation of Singapore, CAAS, and Thales, world leader in Air Traffic Management systems, we have created an ATM Twin (Kubernetes based), we have connected it to the live system through a Secure Data Bridge (also Kubernetes based) and we have started prototyping new functionalities. One of them is Continuous Descent Operations to optimise the descents in Changi, which we have been trialling in the second quarter of 2023. This allows us to prototype new, not existing, functionalities, safely from cloud infrastructure. This specific innovation experience and its architecture will be presented in the talk.
Kelvin Mun - Senior Systems Engineer, Kasten by Veeam – APJ at KASTEN
«Effortless Kubernetes Application Aware Data Protection»
The developer-driven nature of Kubernetes has led to increased adoption of open-source tools. Cloud-native applications comprise various components including data services, storage systems, and related Kubernetes objects. Each component requires its own data protection tools, strategy, and domain expertise. A robust solution aligned with business requirements often involves complex workflows. What if there was a way to coordinate the implementation of these workflows while optimizing how backups are moved into storage?
Regardless of the source of data protection tools, it is critical to have the features and capabilities needed for creating and managing Kubernetes application data protection services at scale. During this talk, Kelvin will talk about the pitfalls to avoid within DIY data protection approaches. He will then demonstrate how two open-source tools, Kanister and Kopia, work together to optimize backup and recovery for Kubernetes applications and data services.
Dave Hall - Managing Director at Skwashd Services
«Proactive Ops: Event Driven IT Operations»
Traditional IT operations is overwhelmingly reactive - humans respond to incidents and tickets. There is so much noise! Alerts, tickets, audits, chat threads. What if ops could catch the small things before they turn into big problems? What if we could use events and serverless to remediate issues? Engineering teams are adopting event driven architectures with herds of serverless microservices. Why can’t Ops play buzzword bingo too? Most significant issues in productions start off as small problems that are overlooked or ignored. These small problems are usually can be captured via events. Those events can be routed to handlers than can react and remediate the issues. During this session we will explore what “proactive ops” platform can look like. Areas covered in this session will include capturing events from SaaS products, event routing, building reusable composable components, and the different approaches to deal with policy violations. By then end of session an attendee should be able to start building their own serverless, event driven, proactive ops platform.
Break
Takahiro Yamaki - VP, Technology DevOps at Singapore Exchange
«DevSecOps policy and implementation at Singapore Exchange.»
Singapore Exchange (SGX Group) has been rolling out shared CI/CD system for internal developers (20+ teams, 200+ git repository users) since 2021. Our CI/CD system helps to increase internal developers’productivity and also puts in place check points by which we can ensure that our SDLC is compliant with financial services industry requirements. In short, CI process is developers-centric and CD process is governance-centric. To realize developers-centric CI pipelines, we are balancing standardization and customization. As for CD pipelines, we're implementing (1) GitOps concept (for both containers on kubernetes and applications on virtual machines) and (2) binary promotion. I’d like to share our 2 years’ experience with DevOps community.
Sergiu Bodiu - Strategic Pursuit Director at Red Hat
«How to build Platform Engineering in your organization?»
| Instituting a cost optimization program consisting of a balanced portfolio of ideas that are focused on relative business value versus mere cost reduction is ideal. However, the reality is that budget freezes do happen, and cost reduction mandates take place. Understanding exactly where platform engineering fits into the IT operations and management landscape can be confusing. While there's a clear need for platform engineering teams, there are challenges. You needa clarity of vision by leadership to see how a platform team adds value and creates efficiencies through automation and standardization. For platform teams to be successful, partnerships must be created with the application teams, or lines of business, that solve customer problems. Ensure your platform engineering team is building systems that solve user problems. Your platform team should know what the end goal is and work toward, it needs to pick tools that developers will want to use to reduce friction of adoption. |
Closing Remarks
Open Space Discussions, Drinks, Fingerfood
Reception and Openning
Welcome & Opening Remarks
Scott Shaw - CTO Asia Pacific at Thoughtworks
«Platforms in Practice»
| Platforms are everywhere. Multiple forces have converged in recent years to put internal technical platforms in the spotlight for digital businesses. Platform teams have become commonplace in engineering departments. Gartner even lists “Platform Engineering'' as one of its top 10 technology trends for 2023. Done right, these platforms can align application delivery to common standards, make engineers more productive, optimize cloud usage, and improve the resilience and security of custom-built applications. But the features, architectures, delivery methodologies and operating models for engineering platforms vary widely from business to business. Given the level of investment required to make these platforms successful, very few organizations have the luxury of trying different approaches to see what works best. Moreover, if the value of the platform isn’t clearly articulated, it’s hard to even say what success is. Fortunately, Thoughtworks has extensive experience building internal technical platforms for clients all over the world. Along the way, we’ve identified some patterns, practices, tools and metrics that improve the chances of success in a platform building endeavour. In this talk I’ll share some of the lessons we’ve learned and offer up some speculation about where platform work is going in the not too distant future. |
Yoshi Yamaguchi - Developer Relations Engineer at Google
«Track fifth key metrics of DORA: SLO»
SLO based operation is a key practice in SRE and SLO is counted as fifth key metrics in State of DevOps Report 2022 for better operations. This session introduce the concepts of SLO, actual calculations, and how you can apply them in your organizations.
Cody De Arkland - Director, Developer Relations at LaunchDarkly
«Ship Fast AND Ship Safe With Feature Flags and LaunchDarkly»
Teams are often forced to choose between speed and safety when it comes to releasing software, but when you're developing with feature flags and LaunchDarkly, you don't have to choose - you get both! Feature flags give you the ability to control how you features are released in your application, and LaunchDarkly gives you the ability to control these dynamically at runtime, target your changes, and scale the feature flag practice to all of your teams. In this talk, Cody will take teams through how they can get started with feature flagging and LaunchDarkly, and show you live how you can ship faster and ship safer.
Lunch
Amarnath Ravikumar - Staff Software Engineer at Funding Societies
«7 ways we use a service mesh to build a secure, reliable system architecture.»
| At Funding Societies, we have a multi-account, multi-region, microservices-based system architecture on the AWS cloud. After a year-long effort, we moved fully to using a service mesh in late 2020 & have been operating production workloads with the mesh for 2+ years now. In this talk, I hope to share the story of our service mesh implementation using the open source Consul Service Mesh & how we leveraged on the same to: * Improve the security, reliability & observability of our distributed applications * Improve the agility of our engineers by reducing code boilerplate (eg. health checks, retries etc.) that deals with distributed system concerns I will specifically be going over seven powerful features of the mesh that we have taken advantage of here at Funding Societies & how we went about doing that. |
Robin Weston - Engineering Director at Boston Consulting Group X
«Building production-ready Generative AI applications»
| Interest in Generative AI has exploded in the past year as businesses seek to capitalize on its groundbreaking capabilities. However, numerous challenges lie ahead for those building real-world production Generative AI applications. In this session, I will share the learnings from building such applications, including performance, cost, ethics, architecture, and security. |
Break
Graeme Wilson - DevOps Lead at Standard Chartered
«Compliance as Code: Enhancing DevSecOps Efficiency and Security»
In this technical presentation, we explore the vital concept of "Compliance as Code" for our DevSecOps audience. By integrating compliance checks directly into the software development lifecycle, we empower teams to ensure security and regulatory requirements are met efficiently. We delve into the benefits of automating compliance through continuous integration and delivery pipelines, reducing manual errors and audit complexities. From policy enforcement to vulnerability scanning, attendees will learn how to utilize version-controlled code to maintain and demonstrate compliance throughout their applications' lifecycle. With Compliance as Code, organizations can foster a culture of security, accelerating development while bolstering resilience against threats.
Baruch Sadogursky - Principal Developer Productivity Engineering Advocate at Gradle
«Developer Productivity – DIY (with ChatGPT) or How I Learned to Stop Worrying and Love the AI»
Dive into a world of wit and wisdom with "Developer Productivity – DIY (with ChatGPT) or How I Learned to Stop Worrying and Love the AI," a conference talk that subtly weaves humor with practical tips for boosting your development prowess. Our spirited speaker will engage in a lively conversation with ChatGPT, the clever AI language model, to uncover innovative strategies for optimizing your development process, from shortening build feedback loops to conquering flaky tests and caching build results like a master.
Be captivated as our speaker embraces the challenge of implementing ChatGPT's suggestions in a live coding session that promises to entertain and enlighten without explicitly flaunting its humor. This engaging exploration of AI-assisted development will leave you with a fresh perspective on productivity and a subtle smile on your face.
By the end of this charming adventure, you'll have a treasure trove of valuable tips and a newfound appreciation for the delightful synergy between AI and your development process. Get ready to revolutionize your workflow and forge a lasting bond with your new AI confidant, ChatGPT.
Closing Remarks
Open Space Discussions, Drinks, Fingerfood
Follow Us
