* OPEN Talks
Thursday, February 18, 2021
How can IT deliver the rapidly increasing feature backlog with not so rapidly increasing developer pool? How can IT leverage the legacy workforce that once was on the leading edge of tech but over the years became more known for business expertise than the cutting edge tech we need them to be experts on? How can we make that work force churn out code rapidly using latest tech without them having to learn intricate details of the underlying tech? How can we enable everyday deploy without having to hire a large pool of dev ops engineers? Come learn Low Code No Code Development that will address these issues.
While the Lo Code No Code movement has been evolving for a few years now, what’s really emerging is the pace at which the providers are increasing their market cap. Added to that trend is the acquisitions of some of these by the Cloud providers - AWS, Microsoft and Google. Enterprises will start looking at options beyond the Cloud in the next few years and this is why, it’s really important to fully evaluate this for applicability in your enterprise. IT Executives need to have their Strategy and Architecture teams evaluate this NOW to make an impact on planning for future.
In this session, we will go over those platform trends briefly but will focus on areas of an enterprise that can potentially benefit from this technology. Attendees an walk away with an understanding of the potential footprint this tech is best suited to occupy, potential benefits of this tech, ways to exploit the non-traditional workforce in IT development, and an understanding of potential pivot points in the tech transformation efforts that are currently underway in their organizations.
Microservices are becoming mainstream now and the majority of new applications are developed using microservices architecture. But they throw some unique challenges around DevOps and Observability due to following:
- Rise of API ecosystem
- Application complexity is rising
- Applications are becoming more distributed
- Tech Stack is becoming broader and bigger everyday
- Hybrid and multi-cloud is becoming reality
- Monoliths to Microservices
Distributed Tracing, which is getting a lot of mindshare in the last few years is now becoming the new foundation of DevOps. Unlike traditional Application Performance Monitoring (APM), Distributed Tracing is intended to address the observability challenges and use-cases in the new microservices world.
eBPF advancement in Linux kernel brings whole new opportunities around kernel and application tracing. eBPF used in conjunction with distributed tracing unlock many interesting opportunities.
Eventually, Distributed Tracing will be a new APM, addressing MELT use-cases comprehensively (Metrics, Events, Logs and Traces). It is particularly well-suited to debugging and monitoring modern distributed software architectures, such as microservices. It helps pinpoint or isolate where failures occur and what causes sub-optimal performance.
It basically traces a network request as it travels through your services, as it would be in a microservices-based architecture. One of the main reasons you may want to do this is to troubleshoot or monitor the latency of a request as it travels through the different services.
In this talk, we will discuss Distributed Tracing and it’s various use cases in today’s cloud native world along with Demo of Distributed Tracing using some sample applications!
Today, unfortunately, many agile teams are not yet able to create a true shippable increment every sprint. This is because their Definition of Done (DoD) is weak (immature).
As such, teams have a lot of UNDONE work at the end of every sprint. This work may take a lot of different forms and is usually passed on to a 'special' UNDONE department or group to be handled. In Scrum and in Large Scale Scrum UNDONE department do not exist.
It may seem that reasons for having UNDONE department are purely technical [limitations]. But this is rarely so. For the most part, they are political and have to do with traditional organizational design and sphere of control.
Unless you've been living under a rock for the past 4 to 5 years, you know that containers have swept the DevOps landscape by enabling the deployment of microservices a heck of a lot easier than doing the same with virtual machines.
In this talk we will look at some emerging trends for containerization and services that run in micro:
1. App Modernization
2. Simplicity and Elasticity
3. Moving from the Margins to the Center of DevOps
4. Thinking of Containers as a service.
Containers are the new ZIP format to distribute software" is a fitting description of today's development world. However, it's not always that easy and this talk highlights the development of Elastic's container strategy over time:
- Docker images: A new distribution model.
- Helm Chart: Going from demo to production.
- Kubernetes Operator: Day two operations with upgrades and scaling.
Besides the strategy, we'll discuss specific technical details and hurdles that appeared during the development. Or why the future is a combination of Helm Chart and Operator.
How confident are you that your code—including any 3rd party code your team brought in—is running in a secure and compliant manner before you deploy to production?
Imagine this - your developers check-in code for a new feature. It includes pieces of code your team wrote and pieces of code from a 3rd party. The code passes SAST & SCA and you deploy it to production. A day later, your production server is breached...and the attacker leveraged a bug in your code that caused privilege escalation and was able to become root.
In today’s microservices-containers/Kubernetes/Docker-DevOps world, a static code scanner isn't sufficient. You need RUNTIME observability into the application’s security, privacy, and compliance. Your developers need to know if their code or a 3rd party’s code can cause issues at runtime.
This panel of RUNTIME observability and security developers and experts will discuss the what, why, and how DeepFactor’s Continuous Observability platform:
- Automatically observes more than 170 parameters—across system call, library, network, web, and API behaviors in every thread of every process in every running container of your application—and detects security and compliance risks in your CI pipeline
- Detects insecure behaviors that only manifest at runtime and cannot be caught with code scanning or just looking at known CVE databases
- Reduces alert volume by prioritizing the findings of your SCA tools with runtime insights from observability tools
- Empowers Engineering leadership to accelerate productivity and decrease mean-time-to-remediate (MTTR) security and compliance risks pre-production as their teams ship secure releases on schedule
You’ll leave this session armed with the knowledge to immediately leverage continuous observability to consistently deploy apps with confidence.
Need a Kubernetes cluster for a short amount of time, but always forget to destroy them? Worry no more, as in this session we'll show you how to create a self-destructing Kubernetes Cluster.
During this talk, we'll showcase a number of technology principles: Infrastructure as Code, CI/CD, identity in the cloud and scheduling jobs on Kubernetes. We'll use Terraform, GitHub Actions and Azure Kubernetes as demo material, but the concepts of this talk translate to any technology platform.
By attending this talk you'll get a practical understanding of Infrastructure as Code, CI/CD, identity in the cloud and scheduling jobs on Kubernetes.
Runtime security for containers, Kubernetes and cloud native isn't for the faint of heart. To confidently secure your applications, you need a recipe. And, much like the one grandma used for her consistently amazing chocolate chip cookies, the one you get from this session will guarantee your security success.
In this session, Scott Surovich and POP will share practical experience and excerpts from Scott's new book Kubernetes and Docker - An Enterprise Guide. They’ll share the key ingredients for tooling that provides an engine, ruleset, and outputs that fit real-world scenarios.
They will cover:
- An introduction to CNCF open source project Falco for runtime security of applications/ cloud native infrastructure
- Real world use cases of Falco with a short demo showing rulesets and outputs valid for your business
- A primer to how to contribute your own capabilities to Falco
- A kickass chocolate chip cookie recipe to wow your friends and family
Building modern DevOps pipelines relies on using best-in-class developer tools, with a deep focus on providing real actionable developer value, and gluing them together. At Cloudsmith we believe good old package management needs a serious refresh, with a name befitting its focus on DevSecOps. We call it Continuous Packaging.
Today, building automation and security into software supply chains requires packaging source code, dependencies, and containers into logical, versioned units. Shift-Left security is not enough. Every organization needs a reliable Package Delivery Network, a single pane of glass through which you can see the flow of packages providing much-needed isolation and provenance. Two concepts we’ll outline as vital for managing secure distribution and deployments.
OPEN TALK (CloudWorld): Learn How to Manage Better Your Costs on AWS, Make Your Bill Less Scary or Your Credits Last Longer
Should you really always run your cluster in multiple availability zones? How can a transition rule to Glacier double your storage costs? I want to monitor and understand my data transfer costs, where should I start? Why are backups eating my database budget? What, one more storage class on S3? Following so-called “best practices” works only when you fully understand the implications, costs included. We will address a few cloud anti-patterns, making your bill smaller and your deployment better.
Product Manager or Product Owner, this is a title that is very hard to explain and most of the time comes with big responsibilities but yet it is easy to overlook. Moreover, in the Application Modernization journey that focuses on modernizing your legacy application.
At the beginning of this year, I built Superpeer with a serverless architecture. We got a total of $10M investment in two different rounds.
Going serverless was one of the best decisions I made at the very beginning, and I am going to talk about the topics below:
- What did we learn from Cloud Functions, and why we switched to Cloud Run?
- How could I continue sleeping during our biggest launches?
- How serverless allowed me to scale my engineering team to 17 engineers?
- How about the costs?
It can be difficult to have all your team members gathered in one place and, nowadays, many projects are done by teams that are distributed around the globe. There are many factors influencing productivity of distributed teams: communication strategies, communication technology, personal and cultural differences, language barriers. The talk will cover the difficult aspects of working remotely and the benefits of collocation as well as discuss how latter can be transferred to the environment of a distributed agile team.
Context switching between your IDE, Github.com, JIRA, Terminal, and Slack is no way to optimize collaboration and it results in countless hours of distraction and lack of focus, hurting code quality. Team alignment and productivity depend on just the right mix of collaboration and staying in the zone. Extensible IDEs are opening the door to great innovation in developer workflow. Turning the IDE into the true Hub of the development flow is the best way to integrate the essential tools into a cohesive and streamlined process. In the future, your code host, issue tracker and messaging app will be placed where they belong: In your editor. Here we will discuss how such an integration should happen, and we will spell out the benefits that accrue to the individual developer, the team and the organization.
The evolution of architecture from monolithic to microservices-based has enabled organizations to meet the ever-evolving needs of their customers. The need for getting insights into these microservices has become critical for developers and operations teams alike. In this session, we will explore how observability plays a critical role in the microservices world. We will deep dive into distributed tracing to achieve full observability and monitoring for production environments. Finally, we will discuss the checklist that every DevOps person should look into for incorporating observability into their environment. The attendees can expect to learn about the three pillars of observability, details of distributed tracing and strategies for achieving observability and monitoring.
Not too long ago, a reactive variant of the JDBC API was released, known as Reactive Relational Database Connectivity (R2DBC). While R2DBC started as an experiment to enable integration of SQL databases into systems that use reactive programming models, it now specifies a robust specification that can be implemented to manage data in a fully-reactive and completely non-blocking fashion.
In this session, we’ll briefly go over the fundamentals that make R2DBC so powerful. We'll keep light on the slides so that we can jump directly into application code to get a first-hand look at the recently released R2DBC client from MariaDB. From there we'll examine how you can take advantage of crucial concepts, like event-driven behavior and backpressure, that enable fully-reactive, non-blocking interactions with a relational database.
Shifting Application Security Left and into the hands of developers has been a topic of discussion, but remains just that, a discussion. Legacy solutions in the market are not built from the ground up to enable this and achieve DevSecOps. In this session we will discuss the key features that your AppSec testing tools need to enable shift left, or shift everywhere, to empower developers to detect, prioritise and remediate security issues EARLY, as part of your agile development and unit testing processes, without slowing down DevOps. The talk will include specific examples from leading organizations that have deployed these solutions, the business impact they have achieved and the steps you can take to achieve the same, across your applications and APIs
The Lean Startup is based on the idea of having a Build-Measure-Learn loop, and making it as short as possible. In this session, you will learn how to shorten the Build stage, so that you don't waste precious R&D resources and money, and still experiment and validate ideas.
Real-life examples will be presented, based on work in Ad-Tech and Fintech companies.
The DevOps movement has been undeniably pulling Developers into Operations. “Shift left” and “You build it, you run it” have become familiar rallying cries. But how do you actually enable developers to participate in Operations when so many policies, processes, and tools were designed to keep them out? This talk will look at how Real-Time Operations enables the safe (and sane) delegation of operational control, wherever it is needed.
We went from a single monolith to a set of microservices that are small, lightweight, and easy to implement. Microservices enable reusability, make it easier to change and scale apps on demand but they also introduce new problems. How do microservices interact with each other toward a common goal? How do you figure out what went wrong when a business process composed of several microservices fails? Should there be a central orchestrator controlling all interactions between services or should each service work independently, in a loosely coupled way, and only interact through shared events? In this talk, we’ll explore the Choreography vs Orchestration question and see demos of some of the tools that can help.
Starting by the premise that the way a PM measures success, shapes her Product more than any feature they'll ever ship - I’ll talk about the 4 steps one should go through to properly define and measure such success.
Step 1: Related to the end-goal-definition of the company, where I introduce the concept of Customer Equity
Step 2: where I talk about focusing on a specific family of problems, by deciding between bringing new customers in vs. keeping the existing ones loyal
Step 3: Where I use the case of Booking and Fever, to break down those families of problems into specific KPIs
Step 4: Where I provide actionable guidelines and tips on how to ultimately define / choose a KPI
Historically, data security has been an afterthought — something that others handle; the IT team will handle it after our software goes live, the client will handle it with hardware. In today’s environment of large-scale data breaches, data security as an afterthought is too little too late.
Application and data security should be part of every design and product roadmap discussion just like functionality, stability and user experience. The more mobile the data needs to be, the more agile the solution needs to be. By shifting security conversations to early in the product development lifecycle instead of after code has already been released, software organizations can save money, better differentiate their offerings and scale more effectively in the long run. This session will discuss important design considerations for application-level security and how to select tools and methods that support your software architecture instead of dictating it.
Human connections are so important to us all. By adding the ability to have real time conversations, it allows communities to grow and flourish, increase trust in transactions, drive down cancelations, and improve stickiness. Join us in exploring what makes humans, and real time communications, tick.
The role of the developer continues to change as they sit on the front line of application and even cloud infrastructure security. Today, developers are focused on innovating fast and improving security, but how do high-performing teams accomplish this? They commit code frequently, release often and update dependencies regularly (608x faster than others).
In this webinar, we discuss the key traits of high-performing teams and how that impacts the role of the developer.
Choose the best third party dependencies
Determine the lowest effort upgrades between open source versions
Solve for issues in both direct and transitive dependencies with a single-click
Block and quarantine suspicious open source components
As software engineers, we strive to better our craft and leave a lasting mark on the organizations we work for. Throughout our careers, we balance two types of knowledge: the combination of business domain and technical stack is our bread and butter.
No matter if you work for a bank or an app that is revolutionizing wine delivery for pets, as an engineer you tend to get better at developing features. Design patterns and approaches learned on one project can transfer into others, while the new challenges add to your skillset. Ironically what does not transfer easily between projects is the process of deploying and releasing the software that you work so hard to build. For most organizations, deployments and releases are team-centric since applications are unique but Continuous Delivery is changing that.
Learn in this session how modern Continuous Delivery approaches are ushering in standardization in one of the last and sometimes scary frontiers for software engineers, your releases. Core to Continuous Delivery is making strides in engineering efficiency. With advancements with AI/ML in your CI/CD pipelines, even the most snowflake based deployments can benefit from standardization.
With trillions of programmable endpoints to be interconnected and the “new” urgency to drive digitization, API’s role in the open, Hybrid Cloud world is poised to grow exponentially. In addition, APIs will create powerful ways for us to streamline how we engage with our ecosystem and together deliver new services and applications that empower our consumers and developers to build solutions.
IBM API Hub is the platform to drive the API Economy and easily discover, try, adopt and consume APIs from all of IBM and an open ecosystem. Key highlights are –
· Built on Industry-proven platform of IBM API Connect in Cloud
· Simplified onboarding
· Subscription and Key management
· Self-service lifecycle management
· Cognitive based Recommendation
· High availability infrastructure
Explore the integrated Playground experience that comes loaded with code accelerators to start on a fast track to build solutions for their business needs.
This session will reinforce the importance of APIs in the “Digital” world and how IBM is driving the API Economy mission with a reimagined developer experience as well as ecosystem.
OPEN TALK (CloudWorld): Pragmatic App Migration to the Cloud: Quarkus, Kotlin, Hazelcast and GraaIVM in Action
At a point in the past, it was forecast that Java would die, but the JVM platform would be its legacy. And in fact, for a long time, the JVM has been tremendously successful. Wikipedia itself lists a bunch of languages that run on it, some of them close to Java e.g. Kotlin, some of them very remote e.g. Clojure.
But nowadays, the Cloud is becoming ubiquitous. Containerization is the way to go to alleviate some of the vendor lock-in issues. Kubernetes is a de facto platform. If a container needs to be killed for whatever reason (resource consumption, unhealthy, etc.), a new one needs to replace it as fast as possible. In that context, the JVM seems to be a dead-end: its startup time is huge in comparison to a native process. Likewise, it consumes a lot of memory that just increase the monthly bill.
What does that mean for us developers? Has all the time spent in learning the JVM ecosystem been invested with no hope of return over investment? Shall we need to invest even more time in new languages, frameworks, libraries, etc.? That is one possibility for sure. But we can also leverage our existing knowledge, and embrace the Cloud and containers ways with the help of some tools.
In this talk, I’ll create a simple URL shortener with a “standard” stack: Kotlin, JAX-RS and Hazelcast. Then, with the help of Quarkus and GraalVM, I’ll turn this application into a native executable with all Cloud/Container related work has been moved to the build process.
Session is to provide practitioner view to Product Managers on how they can take benefit of Kanban approach and maximize the value of their products
Serverless cloud technologies have been around for some time now and most of us know the benefits include simpler management and pay-per-use billing. There are additional benefits on top of these, however, adoption of this technology is not as straightforward as other cloud transition strategies. In this talk, we explore the advantages of serverless technologies, highlight the architectures that support them, and discuss the challenges of adoption.
As we go through these points you will hear from an organization that has embraced Serverless technology and are well on their journey towards full adoption. You will hear about the reasons they selected serverless, the challenges they faced while adopting the serverless mindset, and how they overcome these challenges.
Society is grappling with the simultaneous ubiquity of technology in all aspects of our lives and decreasing trust that it is in our best interests. We are over-worked and under-nourished - the simplicity and connection technology promises is too great to resist. As we focus more and more time on our digital self, we hand over our most precious commodity -- our attention.
Innovators and technologists are in an unprecedented position to create experiences that impact how society interacts with every facet of our world. How can we create meaningful products that improve our lives and are worthy of our attention?
During this talk, Carey will share her perspective on how the intersection of ethics and technology leads to the development of more compelling products and more conscious innovation cultures. She’ll unpack how technologists have not just a responsibility, but a mission, to design and build more intentionally with creativity, diversity and the purpose to foster a more positive world.
For the past few years the terms cloud-native and microservice architecture have been used interchangeably. However recently people have questioned whether microservices are the go-to solution for all problems, reflecting a growing maturity in our understanding of how to best take advantage of the benefits of cloud computing.
While microservices have many benefits, they also bring their own challenges and better understanding (and some failed microservices projects) have led to a more critical evaluation of the suitability of microservices to all problems. This evolved understanding has resulted in a new interest in the place for monoliths and other architecture styles in the cloud. Whether referred to as macroservices, or cloud-native monoliths there is an apparent loosening of the association between the terms cloud-native and microservices.
What does this industry evolution mean? Can monoliths truly be cloud-native? If it's not microservices, what makes something cloud-native? Join me as we take a look at microservices and monoliths in the context of cloud-native.
Building on its rich history of innovation, Choice Hotels used a cloud-first approach to accelerate innovation and battle digital-native competitors.
To make the cloud promise a reality, Choice Hotels brought on an API-first programmable data infrastructure platform to automate data compliance and data delivery. By doing so, the organization broke down data silos, allowing software teams to significantly improve the quality and speed of application testing and development.
In this fireside chat with Jason Simpson, VP of Engineering at Choice Hotels, you’ll discover:
Learnings from a migration of hundreds of applications from legacy systems to Amazon Web Services (AWS)
Insights on leveraging data to minimize the risk of outages and delivering a frictionless experience for customers and franchisees across platforms
Reaping the scalability of cloud to manage unexpected business shifts including impacts from COVID-19
Perspectives on how Programmable Data Infrastructure can be leveraged for Migration, CI/CD Acceleration and even Service Restoration with APM Integration
Every error does not concern every engineer. Your team members don’t need to be pinged about every application error, especially when an error occurs in someone else’s part of the code. In fact, it can become a negative distraction that takes away focus from their work. Join Bugsnag's Sr. Solution Engineer to discover why eliminating noise and focusing on the bugs that you can and should fix, drive a culture of code ownership, and improves developer productivity.
If you are building applications today, you are probably using either cloud or Kubernetes ... or both! As a result, we are entering an era that we don’t have to make complex architecture decisions by weighing tradeoffs on scale, uptime, and usability. Patrick McFadin has been building and supporting scale applications for a long time and has seen all the evolution that has brought us to today. Engineer to engineer, Patrick wants to show you his journey into this world and what he’s been doing at DataStax and the Apache Cassandra project to help make it a reality. Here’s what he’ll cover.
-How you can shorten application development time and ship code fast
-The role of open source in this next wave of modern application development
-Ways to participate in this fast-moving community of data services
-How you can futureproof your code and be ready for the next big thing
How do you know your feature is working perfectly in production? If something breaks in production, how will you know? Will you wait for a user to report it to you? What do you do when your staging test results do not reflect current production behavior? In order to test proactively as opposed to reactively, try testing in production! You will have an increased accuracy of test results, your tests will run faster due to the elimination of bad data, and you will have higher confidence before releases. This can be accomplished through feature flagging, canary releases, setting up a proper CI/CD pipeline, and data cleanup. You will leave this talk with strategies to mitigate risk, to better your understanding of the steps to get there, and to shift your company’s testing culture, so you can provide the best possible experience to your users. At the end of the day, we don't care if your features work in staging, we care if they work in production.
Learn about a cloud service which provides not only app testing but also AI/ML driven app insights that can drive lower TCO by offering targeted testing recommendations
This talk is a call-to-arms for product managers, UX designers, engineering and all those involved in the software development process to build products for a user base with growing expectations of data privacy and information protection. How can can we, as product leaders, regain trust the of internet citizens by building user-trust-centered experiences in our product? It's not always easy, there are technical limitations, problems at scale, so how can we address them?
In this session, we’ll explore how to secure your delivery pipelines, from development to deployment with key learnings including:
- Combining continuous packaging with integration & delivery.
- Applying holistic security principles across the whole value stream.
- Using infrastructure-as-code techniques to build, stage, and deploy.
With the business increased the pressure and demand of flexibility of the development team, the agile movement was pushed to the limits. CI/CD was born to reduce manual step to reduce human errors and increase speed to go-live! Last not least, with DevOps the teams took application responsibilities, from cradle to grave. Nevertheless, software security is still missing in many full-stack developers resume and application security responsibilities are pushed off to the security department still. Petty, because the exactly agile, CI/CD and DevOps are security enabling practices.
This session is explaining Shift-left, early security enablement in the development Lifecycle. As the application development becomes more developer centric, the developer’s toolset must match the new challenges to have responsibilities matching capabilities. Learn from rugged software to supply chain cleanliness. Learn to avoid the common pitfalls and benefits of modern application development strategies. Hear why security champions programmes tend to fail, compliance driven security trainings are a waste of time and money. Take back the best practices, proven solutions and Shift Left beyond the development.
Observability, instrumentation, telemetry--what does it all mean? This introduction to observability is for software practitioners who want to better understand the health of their production systems. Learn how to generate better data and gain new insights. You'll walk away ready to use observability to level up everyone on your team!
The always-on, always-available expectations of digital services have increased the requirements of technical teams to provide response and readiness around the clock. For teams new to this concept, introducing on-call can be challenging. There are technical and cultural considerations to keep in mind when adding on-call responsibilities to new teams. In this talk, we’ll look at some of those challenges and provide recommendations for folks who are dreading their new duties.
Many enterprises want to become multi-cloud or have the ability to switch clouds. However, cloud providers try very hard to lock in customers with proprietary core services. Cloud Sidecar provides a simple way to take existing software and deploy it to different clouds without complex rewrites. Learn about Cloud Sidecar and how it can unlock your software from only working on one cloud.
When we imagine an ideal product team our vision is usually of a small, autonomous group of product strategists, designers and engineers all aligned and moving with momentum towards a shared mission.
The reality tends to be somewhat different … especially in large enterprises where functions like Product Management, UX and Engineering sometimes remain inextricably and intransigently siloed even when they are ostensibly working on delivering the same product.
In this talk we’ll explore:
- The roles of Product Management and UX across the full product lifecycle
- Common misconceptions and frustrations about product and UX functions and how skillset biases and levels of influence across functions can radically impact what a team does and what actually gets build
- Essential tips for getting product teams aligned around What to build, How to build it and most importantly, WHY to build it
- Case studies from The SIX on using Design Sprints and rapid prototyping to help teams align and test product market fit in 5 days or less.
Creating consistent, quality APIs is a tough job, especially as ecosystems move past 100 APIs and beyond. API Style Guides can help, but developers rarely read them, and those that do don't always remember everything. API Design Reviews and Governance tooling is maturing to help solve this, automating API Style Guides allowing teams to introduce new guidance over time. Learn how to roll this out at your company easily.
Peter Cronin demonstrates how current software development practices (e.g. Scrum) are no longer keeping up with today's software development environment. Ultimately crippling our ability to provide continuous delivery without compromising software quality. To counter this, Peter introduces Pace, a radical yet proven method that successfully brings planning and development into alignment with the speed of modern development cycles and finally delivers on the promises that Agile has been making for decades. No fluff, no nonsense, just a revolutionary process that reboots software development so management can plan, implement and deploy at a faster rate with fewer risks and greater potential for growth.
When DevOps surfaced as a concept 10 years ago, the economy was struggling, the cloud was a toddler, servers lived in office closets, and deploys were a monthly — or quarterly — Saturday exercise. DevOps was a novel concept, focused on breaking down silos and reducing conflict between developers and operations folks. It was simple, yet difficult to understand and implement. A decade on, I find myself like a kid in the backseat asking, “Are we there yet?” And even if we were, how would we know? This talk explores the state of DevOps, cloud expansion, and what’s next for modern engineering organizations.
The low-code movement is creating a lot of buzz. In this workshop, hear about how no/low-code identity verification is making compliance and fraud prevention more cost-effective and accessible.
-How no/low-code solutions can be easily implemented by anyone, including non-technical entrepreneurs
-Why identity verification is making cross-border KYC and fraud mitigation faster with less friction
-How an identity platform streamlines verification workflows by leveraging multiple identity solutions and a network of single-point data sources
OPEN TALK (CloudWorld): Performance & Latency Prediction Using AI/ML on Streaming and Eventing Platforms
Streaming and Eventing platforms like RabbitMQ, Kafka and IBM MQ are key enablers of Messages-Oriented-Middleware & Event Driven Architectures which are foundational to Digital Transformation.
Performance management for interactions with these platforms is always challenging.
Latency could have wide ranging impact on business
Creating Machine Learning based models to predict latency related anomalies would help avoid business outages before they happen.
Friday, February 19, 2021
Benchmarking cloud providers is difficult and time-consuming. In 2017 our cloud provider decisions were based on tests and informed assumptions. But when we started to see results that contradicted our assumptions, we dug further. Were our assumptions leading us astray?
This led us to develop the Cloud Report, a benchmark comparison of Amazon Web Services (AWS),Google Cloud Platform (GCP), and Microsoft Azure. Every year since, cloud infrastructure improves, so we have developed a cadence of benchmarking to keep our own engineering team, as well as our customers, at the cutting edge. In this talk, John breaks down how we benchmark each of the clouds, how we select the benchmarks, and the difficulties that we encounter -- no matter how variables we control for.
Did you know that over $200M has been paid out to Shopify app developers in the past 4 years? That Salesforce AppExchange is a $4B+/year business? In this session, we're going to demystify this under-the-radar world of SaaS platform app ecosystems. We'll be discussing hot topics related to SaaS app ecosystems like:
* When does a SaaS platform open up for developers to build apps on?
* What kind of business models exist for these SaaS app ecosystems?
* What team should own this?
* What kind of internal apps do companies build on SaaS platforms?
* Can these apps become venture-scale businesses?
Bring your questions and get ready to learn about about this underdog world of SaaS-on-SaaS startups that is quietly generating several billion in revenue underneath the hood!
OPEN TALK: WordPress as a Service: Get It Done in Less Than 30 Minutes with Terraform & K8s on IONOS Cloud
Let’s assume that we’d like to become the next big internet tycoon by offering an awesome, high end managed WordPress service to the world, including monitoring, completely dedicated database, backups, restores and the whole nine yards. In addition to our great idea, let’s also set some…less realistic goals:
– We need a Proof of Concept up and running in less than 30 minutes
– We need to reach our goal(s) without having to deep-dive into WordPress specifics
– A new dedicated wordpress site needs to be deployable with a single command or API call.
– Upon deployment, each WordPress website needs to be secured through HTTPS
This speech will give you an overview on how to start a project like this by leveraging the power of Kubernetes Operators running on the IONOS Cloud infrastructure.
Join our resident Kubernetes and modern apps experts in a discussion of the challenges of Kubernetes traffic management in today’s technology landscape. While Kubernetes Ingress gets most of the attention, how you handle egress traffic is just as important. Egress isn’t just about traffic leaving a cluster, either, but also concerns traffic among managed and unmanaged services within the cluster. We demo a solution using NGINX Service Mesh and NGINX Ingress Controller to control egress from the cluster and between NGINX Service Mesh and unmanaged services. Whether you’re new to modern application architectures, or looking to improve your current microservices deployment, this webinar is for you.
Join this webinar to learn:
* Solutions to common challenges when managing traffic in Kubernetes
* How to control both ingress and egress in a single configuration
* Which solutions from NGINX can best serve your needs, depending on your requirements
* About NGINX Service Mesh and NGINX Ingress Controller with live demos
Customer experience is customers’ perception of how your company treats them. These perceptions affect their behaviors, build memories and feelings to drive their loyalty.
Customers are willing to pay a price premium of up to 13% to 18% for luxury and indulgence services, simply by receiving a great customer experience. Empathy, trust & loyalty are key factors affecting the consumer retention & ultimately business. User experience with product is not sufficient, 360-degree experience of a consumer is the need.
In other words, if they like you and continue to like you, they are going to do business with you and recommend you to the others.
Empathising with customers not only helps in identifying the various touch points but also helps in analysing the business potential at each interaction stage. To target the overall 360 degree customer experience, business has to move away from only-product strategy to end to end customer journey strategy. This essential means ‘Organizations & teams needs to focus on the ‘Customer Experience Vision’.
“Make UX driven strategies across different touchpoints”
In this talk I would like to present the key important aspects of crafting the 360 degree experience for consumer and identifying the user journeys.
Topics to be covered
• Product vs Overall experience
• Why it is important to focus on overall ecosystem
• Crafting 360 degree experience through journey mapping
• Journey mapping
• Key Ingredients of Journey mapping
• Process to prepare the journey mapping
• Case studies
• UX Culture and process in organisations
• Value of targeting experience at overall level
• User Research for identifying Journey mapping
• Customer Experience vision for organizations
Manage Databases with MySQL
Create, Deploy, and Manage Containers with Docker
Build and Manage Websites with Plesk
Over the past 17 years, the Linode community has grown to serve millions of developers and small businesses around the world. Tap into a diverse and growing community to accelerate your app's awareness and adoption.
Simplify your sales cycle, discover new customers and leverage co-marketing support from the Linode Partner Team. We're here to guide you through listing on the Linode Marketplace, and see what opportunities come next.
Once your listing is created, developers, teams, and companies can discover your solution in our library and quickly deploy it from our Cloud Manager, API, or CLI.
Tech giants like Amazon, Google, and Microsoft have set a north star for companies around the world to stay competitive. They engineer away every impediment to fast, reliable software releases.
To achieve Internet and cloud speed and scale, you can’t wait for anything. Everything has to be programmable and API-driven.
Over the last two decades, storage, compute, and code have all been automated, giving rise to the cloud and fast CI/CD releases.
Data is the last automation frontier. It is heavy, complex, and filled with security and privacy risk.
With the average enterprise organization consuming thousands of APIs, it has become increasingly challenging for developers to locate or socialize created APIs. It is even more difficult for organizations to manage their API collections. Even companies are now offering to socialize business partner’s APIs to their customers in order to create microservices, complex integrations, and product solutions.
IBM’s answer to this problem is the IBM API Hub. This essential API hub offering allows for managing friction, preventing resource duplication, and breaks silos. It provides a single place for organizations to publish and share created APIs in an easy discoverable, searchable, highly available, and curated environment.
In this session, learn about the key attributes of the IBM API Hub. Explore the consumer experience and its low barrier of entry for any API Provider. Discover how IBM Sterling has created an all new enriched experience for their developers using the IBM API Hub. Try out the IBM API Hub yourself with a full set of API consumer features and functionality.
Cloud and Kubernetes adoption led to greater container usage in 2020. Staying up-to-date with the latest trends in security and monitoring for Kubernetes and container environments is more important than ever.
In this session, you’ll hear real-world examples of nearly one billion unique containers deployed in today’s modern global enterprises. You’ll walk away with new knowledge about:
- How organizations are dealing with container security concerns
- Interesting shifts in runtime and registry usage
- Usage trends that impact container security
- Practices others are using to to run containers with greater confidence
- Trends in lifespan and density as container usage matures
Kubernetes brings promises of application modernization and agile applications development and deployment, but it also brings new challenges in managing these environments. Nowhere are these challenges more of an issue than with traffic management and security of microservice environments, especially in those which require high-volume, high-reliability, and high-security. But the good news is that you’re not alone: These challenges impact everyone moving to Kubernetes, and there are solutions to make traffic management and security in Kubernetes microservice environments easier. Come join NGINX Service Mesh engineers to talk about NGINX Service Mesh and tools available for your microservice traffic management challenges. This session will be an engineering round-table where we'll have an open discussion about service mesh use cases, demos, and a Q&A with the engineers. Join us to talk all things mesh, the need for ingress/egress traffic management within a mesh, and some best practice guidelines with microservice traffic management.
We’ve all heard the buzz around pushing application security into the hands of developers, but if you’re like most companies, it has been hard to actually make this a reality. You aren’t alone - putting the culture, processes, and tooling into place to make this happen is tough. Join StackHawk CSO Scott Gerlach as he shares his triumphs and failures while building DevSecOps practices and tools at companies such as GoDaddy, SendGrid, and Twilio. Dig into specific reasons why developers struggle with AppSec and what you can do to make it work better. Whether you’re a seasoned DevSecOps pro or just starting out, this will be an entertaining (and judgement-free!) talk you won’t want to miss!
PDF forms are widely created and used in many facets and applications. You’ve probably seen, filled out, or maybe even created your own PDF Forms for your clients or customers to fill out. In this talk, we’ll cover XFA PDF forms and AcroForms which are the two most common types of PDF Forms. XFA forms were designed to enhance the processing of web forms, however, they are not always compatible with PDF viewers and software. This means that a majority of PDF software does not support the XFA format and you can’t open, view, process, convert or print these forms. So what can you do to fix it? In this presentation, we’ll dive into showcasing PDF forms and their advantages, we’ll also cover XFA forms and explore why they are such a unique PDF Form format, and guide you on how to efficiently work with any PDF forms despite some of their challenges.
In the last few years, Roblox has grown into a massive online platform with over 150 million users and a diverse global community of 2+ million creators on the platform. In the past year, the company has doubled the developer team internally to meet the needs of the platform. With two sets of developer communities, Roblox has thoughtfully nurtured and scaled each to create a thriving, inclusive environment that makes it easy for developers of all ages and skill levels to be able to create compelling content for millions of players across the globe. In this talk, Roblox VP of Developer Relations Matthew Curtis will highlight the key management principles that helped Roblox foster and manage not just the creator community, but also the internal developer team including enabling self-organization, removing friction and fostering cooperation.
OPEN TALK (CloudWorld): The Good, the Bad and the Ugly: Keeping Your Service Reliable with SLIs and SLOs
With increasing service traffic and services scaling, the need to ensure reliability and customer satisfaction has never been higher. How can we ensure that a service is reliable and the needs of customers are met?
Through defining and monitoring SLIs and SLOs! This talk will cover why strategically defining SLIs, SLOs and SLAs and monitoring SLIs can help improve the reliability of your service and ensure customer satisfaction in the long term. We follow this by walking through the process of defining these critical metrics, and go through some case studies and industry practices.
We need a strategy to embrace, evolve and innovate product practices through collective engagement
This talk proposes an enterprise level Gamification strategy and eventually highlights the Convergence of Gamification and Machine Learning to build next-generation products
The Enterprise level Strategy for gamification lays the foundation for -
- Introduce culture of experimentation
- Measuring innovation by integration of scores
- Engage End-User in Gamification, mock-up..
- Introduce researchers in the process
- Creating Open-Source Projects
- Map the Road to Organized innovation
First steps in this journey understanding "Gamification" - integration of game elements like point systems, leaderboards, badges, or other elements to build collective thinking on complex problems of future
Second step to identify critical business question for future & next-generation product portfolio
- Non Linear products & Features
- New security threats
- New Data Sources & Data Protection
- Optimal level of Agility
- People Driven Compliance
- Hyper- Automation
Third Step onboard to a Gamification Strategy to answer critical business Questions of future
- Shortest lead-time ( How fast )
- Smallest number of errors
- Hyper-Automation challenges for complex task
- Ranking based “Toil” removal
- Loyalty points where customer redeem points
K8ssandra has made it effortless to deploy Apache Cassandra on Kubernetes. Long a simple means of deploying stateless applications, modern tooling and APIs has facilitated the move of databases to this pervasive platform. Join Chris Bradford in deploying the K8ssandra stack to Kubernetes. Learn how it packages a production Cassandra deployment with supporting tooling alongside Stargate, a next generation data gateway. We will explore everything from the management interfaces leveraged by DevOps teams to performant, highly available, REST, Graph, and Document APIs for developers.
After a long evolution, the browser has become a programmable client that lives in a globally connected world of APIs. This combination of a ubiquitous client with a sea of serverless APIs and the emergence of APIs with advanced security features have enabled the new, client-serverless application model. In such a model, we slowly move away from three-tier applications. In three-tier applications, APIs were typically guarded by the backend. In client-serverless, clients are rapidly taking on a more central role, where clients become responsible for gathering their data services directly from the data source. Needless to say, this reduces complexity, but also brings an entirely different security model which SaaS providers will need to prepare for.
The task at hand: brief your executives and the board on the progress you’ve made this quarter. Business execs and board members want to see what it is your team is doing, or whether and why you are or are not doing whatever is in their head. This can be tough when it comes to engineering. You may know how your team is performing, and you know what they’re doing, but it can be a challenge to present this to the business and board members. What topics should technical leaders cover, and how should they present those topics to answer the board’s questions even before they’re asked?
Andrew Lau, engineering leader turned CEO of Jellyfish has experienced these presentations from both sides. In this session, he’ll walk through:
- Why engineering leaders can and should be more influential in executive decision-making
- The most important topics that your board will want to hear about
- How and where to find the data
- How to present it in ways that will resonate with business executives
FEATURED TALK: Transitioning to the Internet of Intelligence (IoI): How to Leverage IoT as an Enablement Layer to Develop IoI Solutions
Join Zebra Technologies’ Global Futurist, Drew Ehlers, to further understand global trends influencing the current supply chain landscape and the emerging use case problems that need to be solved. Discussion will include an in-depth look at the evolving development approaches to solving problems, as well as best practices and use cases for leveraging IoT as an enablement layer to create opportunities for IoI solutions. Drew will illustrate usage of sensors, on-premises software, hybrid, cloud, microservices, edge computing, computer vision, machine vision, point cloud data, and Machine learning, to name a few, used to solve these problems.
If an Agile team is self-managing, then what's the manager supposed to do?
When a leader stops micro-managing, and truly empowers and trusts the team, they will have ample time to do what an Agile leader should be doing.
A high-performing Agile leader:
1. Understands and works to continually improve the system
2. Hires awesome people and then mentors and coaches them to assist them with their career goals.
3. Provides the tools, training, and environment the teams need to be successful
4. Shields the team from unnecessary outside distractions
5. Removes roadblocks
This session explains these 5 Agile Leadership responsibilities, with specific examples and concrete ways to successful carry out each one on a daily basis.
Paperwork and PDFs are the primary bottlenecks restricting faster adoption of digital tools in every industry. But in 2020, companies can free themselves from the burden of endless paperwork, mundane tasks, and antiquated ways of working by adopting software that helps bridge the gap.
In this talk, I will share:
* How PDFs became the default medium for information transfer
* How and why that needs to evolve for the digital world
* A live demo of the Anvil PDF API, the easiest way to incorporate PDF creation, filling, and signing into your product
The networked software systems we build are increasing in complexity every moment. From the abstractions of cloud hosting and inherited libraries to container scheduling and third-party vendors, the turtles go all the way around!
Today the most successful builders and operators are embracing complexity through CI/CD, Chaos Engineering, and innovation in Incident Response. They realize that the adaptive world around us is advancing at such a breakneck speed, it is leaving our capacity to understand it in the dust. That humans and technology must race a gauntlet of automation surprises and collaboration challenges as a team, learning and improving along the way.
This session showcases methods of deploying, running, and navigating complexity. It offers a practical view of how software systems can scale and remain robust to failure (like fallbacks or high-availability), achieve highly reliable socio-technical operations (via runbooks and game-days), and adapt to surprise through techniques of resilience engineering (graceful extensibility and building for adaptation).
Are you ready to say goodbye to your application backlog, and hello to developing apps at lightning speed? Look no further than progressive web apps.
Progressive web apps (PWAs) are web apps that provide end-users with a frictionless experience while still offering the features of the native-like applications they know and love. Some of the key benefits of PWAs include cross-platform, independent distribution, no installation, and offline capabilities.
In this session, Rui Barbosa, Developer Advocate at OutSystems, will demonstrate how to quickly build a mobile application from scratch and immediately distribute it using PWA technology. See how the OutSystems platform can empower you to become a world-class problem solver!
Amazon and AWS have a long history with DevOps, averaging 1 production release a minute. While other companies may not release at that scale, it has become increasingly clear that DevOps is both a unique opportunity and a key challenge in the SDLC. In this session, we will go over DevOps at AWS and how our tooling supports our customer’s journey to DevOps Nirvana.
Technology Product Management is a highly coveted job- sitting at the cusp of product definition, product marketing, business development and customer engagement. However, it is challenging too- with a variety of issues related to people, cross-functional alignment, fast paced market, changing customer requirements, and so on. Product Management is as much a skill acquired by experience, as it is an art refined with passion and natural inclination. In this session, we will explore what makes women handle this job skillfully and artistically.
And please don't mistake this session to be a comparison of Women's skills with other professionals. It is about the special skills Women can leverage to be successful at the product management discipline.
Fintech is changing at a rapid pace and developers are always iterating and building on platforms to create new features and tools to make better user experiences. At Plaid, we’ve been uniquely positioned to build a platform to help developers start and grow their apps and services to solve for some of the most challenging problems in financial services.
Over the last few years since we first launched Plaid Link, the interface that connects users with fintech apps that integrates directly with the Plaid API, we’ve learned a lot of valuable lessons about how to build a platform that’s optimized for growth and user experience. Samir Naik, Director of Engineering at Plaid is going to share some of the key lessons that Plaid has learned over the years building alongside this community of developers and navigating the ever changing fintech landscape. He’ll talk about how Plaid thinks about the developer experience and building an API that has enabled thousands of apps in the ecosystem to connect to over 11,000 financial institutions in North America
Why neutral foundational elements like identity can unlock a future of agility.
Modern applications require neutrality and flexibility. Long gone are the days where a developer could rely upon a single vendor’s technology stack or assume that connecting systems would share the same language, platform, geography or timezone. Organizations have evolved from on-premises, to cloud to multi-cloud strategies and with this complexity comes the added requirement that development go faster, user stories become richer and code lives longer. Teams must demonstrate agility through neutrality in order to achieve increased velocity.
Okta is rooted in the concept that proprietary methods and restrictive ecosystems are contrary to the precepts of the modern developer. In this session, a discussion will revolve around why identity is the common thread that allows for interoperability and extensibility across systems, infrastructure and technologies. Identity isn’t a component of an application, but rather a fundamental attribute of all applications.
Are you struggling with security testing of your APIs, web-services or cloud-native applications? Are you looking for new ways to test security without impacting velocity? Would you like to get visibility into sensitive data that your application handles? If answer to any of these questions is yes, allow us to introduce you to new and unique ways to perform security testing. In this session, we will give you an overview of developer friendly security test tools from Synopsys for unparalleled accuracy and visibility into application vulnerabilities with remediation guidance and just-in-time contextual training to help your developers with remediation effort to improve your application security posture.
A technical talk on architecture choices that help build data-driven microservices with loose coupling and bounded contexts. The workflow and data flows have to be architected together, as concepts of CRUD, CQRS, Event sourcing, and Sagas come to the forefront of app, message, and data scaling. Built on a modern cloud platform, we illustrate a sample food ordering application with microservices patterns that can be applied in any project. A containerized converged database architecture with a variety of data types on the cloud can make it simple to build and operate the data layer, but these principles can be applied to special purpose databases too. The app and data interfaces are explored with support from the data layer making the app coding simpler, especially with Messaging patterns and Saga APIs that reduce the load on the Java developer using a Microservices framework. A free self-service hands-on-lab is available for developers to go through on their own to test these.
Provisioning AWS resources one by hand is tedious and cumbersome, especially in an environment where you have multiple similar set ups. Learn how you can use AWS CloudFormation to simplify setting your virtual machine up and how it can be used to even install and configure your software for you.
Understanding your working environment
Creating a compelling job description
Build the recruiting funnel
Scaling hiring (the 5 disciplines)
Through this live coding session, you will learn how to setup a Kotlin Ktor project with some routes using the framework tools and features (Routing, DataConversion, ContentNegotiation...) and communicate with a sample Android app.
Let see how we can easily setup a Postgres database connection with Exposed, an ORM library for Kotlin and see how clean architecture can be a good choice for developping your brand new API.
We can even go further and see that we can actully share code from your backend application and your Android application (say hi to Swagger!).
The people that know our business best, are our business people and the people that know our products best are the people that use them everyday. Building a champion network of employees from your business can not only help you boost engagement and adoption but can also be a great way to get real feedback and build a roadmap that continually drives value for your users.
This session will discuss the importance of building a champion network, where to start and who to select.