Name: Critical Lessons Learned While Adopting DevOps Lifecycle for SecOps using Agile
Start: 2019-04-24T15:00:00Z
End: 2019-04-24T15:59:39.000Z
Location: BrightTALK
Rating: 0

Cloud computing is a general concept that incorporates software-as-a-service (SaaS), platform-as-a-service (PaaS), infrastructure-as-a-service (IaaS) and other recent well-known technology trends in which the common theme is reliance on the Internet for satisfying the computing needs of the users.  

This channel features presentations by thought leaders who cover the key topic areas in this increasingly important field.

Enterprise Strategy Group conducted an in-depth survey of 357 IT, DevOps, and application development professionals to understand the current state, challenges, and opportunities in observability and found:
1. There is near-universal pressure on organizations to accelerate operations.
2. As observability practices expand, complexity and tool sprawl increase.
3. AIOps and cloud cost optimization tools burgeon to accelerate IT and DevOps.

In this engaging research-based presentation, Enterprise Strategy Group (ESG) Lead Analyst for Observability, Sustainability, and IT Operations will give an overview of the current state of adoption and explore the three major themes that are impacting how organizations adopt, deploy, and use Observability tools today.  Use this information to benchmark your own observability practice and to learn best practices that organizations use to get the most value from their observability investments.

Observability- From code to cloud

Cloud storage has become an essential component of many businesses' IT infrastructure. However, storing data in the cloud comes with its own unique set of security challenges. This webinar will cover best practices for ensuring the security of your business data in the cloud. We will discuss topics such as data encryption, access control, network segmentation, software updates, and security audits. We will also examine the risks associated with cloud storage, such as data breaches, data loss, and insider threats. Additionally, we will explore the security measures taken by cloud service providers and how to evaluate their security. Finally, we will examine emerging trends and technologies in cloud storage security. This webinar is suitable for anyone interested in cloud storage security, including IT professionals, business owners, and decision-makers.

Key Takeaways : 
- Cloud storage security is essential for protecting your business data from data breaches, data loss, and insider threats.
- Best practices for cloud storage security include data encryption, access control, network segmentation, software updates, and regular security audits.
- Cloud service providers have their own security measures in place, but it's important to evaluate their security and ensure they meet your organization's security requirements.
- Emerging trends and technologies in cloud storage security include serverless computing security and security automation.
- Regularly assessing and updating your cloud storage security measures is important to stay ahead of evolving security threats.

Cloud storage security: How to ensure your data is secure in the cloud

In recent years, cloud backups have become all the rage, and for good reason. Cloud backups solve many of the most pressing challenges associated with conventional backups. Even so, not all cloud backups are created equally, and in some situations it might even be better not to use a cloud backup.

This informative and vendor neutral presentation from best-selling author and expert Brien Posey will explore numerous practical considerations as they relate to cloud backups. In it, you will learn various strategies for keeping your data better protected while also keeping costs in check. A few of the topics of discussion include:

- When you should and shouldn’t back up to the cloud.
- Important features to look for in a cloud backup solution.
- Strategies for meeting your backup SLAs.
- The true cost of cloud backup and restoration.

About the speaker:
Brien Posey is an internationally best-selling technology author and speaker, and a 21x Microsoft MVP. Prior to going freelance, Posey served as CIO for a national chain of hospitals and healthcare facilities, a network engineer for the United States Department of Defense at Fort Knox, and as a network administrator for some of the largest insurance companies in America. In addition to his ongoing work in IT, Posey has been training to be a commercial astronaut since 2015 in preparation to fly on a mission to study polar mesospheric clouds from space.

Practical considerations for cloud backups

By now, we all see the opportunity with core cloud storage services. The object storage that seems to underlie everything we do in IT these days.  But cloud storage is becoming more than just objects in space -- it's evolving up the stack to include more layers of critical management, security, functionality, and even utility!  And of course, most IT vendors are claiming their solutions, whatever they really are, are now also cloud solutions. Overall cloud adoption is still growing, but the very definition of cloud itself is changing too. What does cloud storage really mean today and where is it going?

In this webinar, Mike Matchett, Principal Analyst with Small World Big Data, will look at some key data and cloud storage trends driving our use of the word “cloud”. We'll unpack some new ways to stay in control of hybrid architectures, securing the no-longer centralized data center, and manage edge data intelligence. Users need to stay ahead of the latest trends driving big changes in data storage. How do we handle support for new big AI models (i.e., when every LOB wants their own ChatGPT...), end user expectations for seamless global access to data anywhere, clean data security in a hostile internet, and what the heck is zero trust, really, just between you and me?  

Starting today, where should we put our mighty but limited data storage efforts in 2023? Should we still be managing storage, or should the AI be managing it for us?

About the speaker 
Mike has been writing and publishing expert IT industry analysis and nuanced market-focused opinions, articles and technology reports for over 17 years. In addition to being widely quoted, you can find his analysis and opinions in publications like SearchStorage, SearchDatacenter, Virtualization Review, InfoStor and Enterprise Systems Journal.

Ever changing clouds: Is that a castle or a clown?

Kubernetes security is crucial in ensuring the safety and integrity of your organization's data and systems. However, keeping up with the latest security threats and vulnerabilities can be a daunting task. This is where Kubernetes Goat comes in - a "vulnerable by design" Kubernetes Cluster environment that allows you to practice and learn Kubernetes security in a hands-on way.

In this webinar, Pragmatic Security Leader Madhu Akula presents the latest version of Kubernetes Goat and demonstrates how to use it to identify and mitigate vulnerabilities in Kubernetes and containerized environments. He will cover various attack scenarios and real-world vulnerabilities and show how Kubernetes Goat scenarios can be mapped with them. The session will also explore open-source security tools that can be used to write secure code and deploy secure containers in production.

Key Takeaways:
- Gain practical, hands-on experience with Kubernetes security through 25+ offensive and defensive scenarios.
- Learn about the latest security threats and vulnerabilities in containers, Kubernetes, and cloud-native environments.
- Access detailed documentation, labs, and other resources to continue your learning and development in Kubernetes security.
- And more...

Mastering Kubernetes Security with Kubernetes Goat

We're told that a "DevOps culture" involves developers fully embracing operations, and understanding how their applications are deployed and maintained. In the cloud, however, anyone who has looked at the CNCF landscape recently will probably have given themselves a headache! 

The number of technologies available to solve cloud native application deployment problems is as dazzling as the number of problems is terrifying. How can a development team be product-centric and work on improving their applications all the time whilst still keeping a DevOps mindset and maintaining a secure, cost-effective cloud native platform?

The answer is in creating a platform to assist them. But platform engineering as a discipline has been around a long time, and has so far not succeeded in freeing up development teams. Why is this? What needs to change? I'll discuss the concept of product-centric teams and the developer platform, and go through a few major and important points to consider when setting up a platform of your own.

Key takeaways:
- The cloud native landscape is too complex for developer teams to fully understand and also be productive to their business area.
- There must be a platform team to support them.
- The platform team must be agile and must be customer-centric.

Platforms for product-centric teams

In the digital era of business, IT infrastructure and reliability are critical to success. However, with increasingly complex and dynamic environments to grapple with, maintaining IT reliability in enterprises is challenging.  

As the rate of innovation continues to speed up, open-source observability tools are transforming IT operations, creating clarity from chaos, by providing insights into potential issues before they become problems. 

In this session, Atulpriya Sharma (CNCF Ambassador) shares insights and best practices for leveraging open-source observability tools to optimize IT operations in modern enterprises. 

Join this session to:
- Explore the role of observability in driving IT reliability
- Understand the four pillars of observability and explore popular open-source observability tools
- Hear case studies, demonstrating the real-world impact of open-source observability on IT reliability and
- Discover how to leverage community-driven advancements in open-source observability to optimize enterprise IT operations
- And more...

From chaos to clarity: How open source observability transforms IT reliability

The cloud native development ecosystem is expanding at an unprecedented and chaotic pace. With access to increasingly powerful technologies, developers should be well-positioned to drive innovation forward and work more creatively than ever. However, the problems they are attempting to solve have become more complex than ever, creating friction in the innovation process and limiting developers' ability to deliver.

In this session, Suzanne Daniels shares her insights on how organizations can overcome these challenges and improve developer velocity. She will discuss three key solutions that organizations can use to help their developers be more productive and explains how to combine them using an internal developer portal.

Topics for discussion include:
- Why platform engineering is not just "the new DevOps," and why it's essential to improving developer velocity.
- How to improve collaboration between developers and other teams to streamline software development and speed up innovation.
- How a developer portal can help organizations embrace chaos, foster collaboration, and integrate solutions for greater productivity.

Designing an internal portal to supercharge developer velocity

In today's fast-paced business environment, cloud computing has become a critical component for many organizations. As companies embrace the cloud, it's important to understand the various cloud architecture frameworks available and choose the one that best fits your business needs. Using the right cloud architecture framework can help you achieve greater scalability, reliability, security, and cost-effectiveness. 

The public cloud offers so many services and features that it can be overwhelming to navigate. From microservices and event-driven architecture to serverless, containers, and modern compute, choosing the best tools for your needs is by no means easy. 

In this session, join Marius Zaharia (Cloud Solutions Architect & Principal Engineer at Societe Generale) to get insights into the Modern Architecture and explore the factors you should consider when deciding what cloud architecture framework is best for your business needs.  

Topics for discussion include: 

- The fundamentals of Modern Architecture and how it can help you make sense of the modern cloud landscape. 
- How to evaluate and choose the best approach for your needs, from microservices to serverless to containers and beyond. 
- Best practices for designing and implementing cloud architecture.

Navigating modern cloud architectures in 2023

Have you ever worked in an environment where servers were sort of just sitting around under-utilized? What about in an environment where you requested resources and they weren’t available? On-prem, this was a big deal. In the cloud world, you don’t see that as much.

Instead, you see something just as bad -- if not worse. In the cloud, resources (compute, storage, etc.) are always either over- or under-provisioned. Organizations are either spending way too much money monthly in the cloud for resources that aren’t needed or “scaling up” strategies aren’t in place, which ends in production environments not performing the way engineers are expecting. How can you plan for resource and cost optimization in the cloud?

In this session, you will learn:
- How to optimize Kubernetes clusters from a resource perspective.
- How to optimize Kubernetes resources/objects.
- Cost optimization strategies.
- Planning how resources will be used to avoid over or under utilization.

Kubernetes Resource Optimization

When given a resource that has unlimited scalability, software developers and other IT personnel can become like kids in a candy store. Nothing is off limits because there are no limits to what the cloud can provide. Unfortunately, the same IT personnel using these resources are not the ones paying the bills.  

In this session, instructor and architect Brian Kirsch will explore ways to control your cloud costs through cost optimization and resource discovery and allocation. In addition, he will review better policy and procedure tips to help streamline the initial requests, work to remove the need for going back and correcting cost issues as well as how to make sure you see a sustainable impact forward that does not affect the users.

Key takeaways: 
- Cost Optimization.
- Resource Discovery.
- Resource Allocation.
- Policy Request Tips.
- Procedure Tips.
- Reporting.

Controlling costs in a resource that has no limits...

Using cloud and cloud-migration to accelerate business growth and explore new ways to innovate and quickly implement new services emphasizes the need to adopt the mindset of security-by-design and zero trust. Without a solid foundation of cyberprotection, businesses open a gateway for cyberattacks and cybercriminals to cause severe and irreparable damage. 

The core and foundation of true cybersecurity is validated digital identities (eID): The prerequisite of all other cybersecurity measures. Validated digital identities must be the one and only authorized way to identify and gain access across all user groups, services, and devices. 

For more than 15 years, Denmark has provided public access to the eID-solution MitID. 3rd. generation is now available delivering one unified system giving both citizens, employees, public authorities, and businesses easy access to validated digital identities. Bjarke Alling has been closely involved in the development of the solution and will share insights into how it is used and how validated digital identities can be implemented. 

Takeaways: 
1.) How the Danish solution for validated digital identities works 
2.) What the Danish solution for validates identities gives access to 
3.) How to adopt validated digital identities as the foundation of a truly cybersecure cloud infrastructure 

About the speaker:
Bjarke Alling is co-founder and acting Group Managing Director of cybersecurity company Liga. He is a current member and prior co-chair of the National Danish Cyber Security Council, former chair of their IT-security committee, member of the board at The Danish ICT Industry Association (ITB), and member of the board of D-Mærket (D-Seal)

Building a Cybersecure Cloud Infrastructure with Validated Digital Identities

Tune into this webinar from DevOps expert Ethan Jewett to learn about distributed cloud patterns for SAP environments, including techniques for secure authentication and identity propagation. This will focus on how to build applications and business logic to extend your SAP environment using cloud technologies, how to expose the data and business logic within your SAP system as services that can be leveraged in cloud environments, as well as how to achieve interoperability between SAP Business Technology Platform (BTP) and hyper-scaler services such as AWS, Azure, and GCP. We’ll cover each of these topics through reference architectures and potential applications.

Key Takeaways:
- Learn some of the basic of ERP and SAP environments, which are often insulated from the rest of the enterprise.
- Understand the challenges of integrating SAP systems and tools into a distributed cloud environment.
- Learn techniques for working with SAP-related groups in your organization to merge SAP (and other) applications into your enterprise cloud strategy.
- Find out about resources available to support this integration.

Cloud patterns for SAP environments

From the digital core to the data fabric, the data landscape has evolved dramatically over the past decades. We have witnessed the rise in complex data-driven applications, providing solutions to challenges which were previously thought to be unsolvable. Data fabrics will accelerate the development of these type of solutions, to create a seamless experience across disparate data technologies and their varied connection mechanisms. Most importantly, data fabrics will provide the protective umbrella-like cover for effective data management across an organization and when done right, simplify data partnerships across multiple organizations.
 
Join Dr. Pragyansmita Nayak for this data management-focused session to:
1. Define Data Fabric. 
2. Understand its critical role in the data management ecosystem.
3. Gain insight into how it enables data-driven solutions.

Data Fabric 101

The impact of the business need for faster cycles and increasing flexibility is driving DevOps and Cloud ideas throughout the IT value stream.  This has significant meaning for the compute side of the world.  We will explore the  “Environments on Demand” and how it impacts the IT Value Stream.  We will examine key elements of DevOps and cloud that help address the new world and optimize the investment.

In this session, we will discuss: 

1. Accelerating Change – Driving Forces (eg. Change Drivers, Industry Impact)
2. DevOps and Cloud – The Foundation (eg. Continuous Flow, Pipeline, Cloud Services)
3. Environments on Demand – Key Elements (eg. Infrastructure as Code (IAC), Automation, Integration & Ephemeral)
4. Environments on Demand – Real World Scenarios

Presented by: 
Terry Brennan, Managing Director, Orasi

DevOps and Cloud: Driving Environments On Demand and Optimizing Investments

AI brings unprecedented opportunities to businesses, but also incredible responsibility. Its direct impact on people’s lives has raised considerable questions around AI ethics, data governance, trust and legality. In fact, Accenture’s 2022 Tech Vision research found that only 35% of global consumers trust how AI is being implemented by organizations. And 77% think organizations must be held accountable for their misuse of AI.  

As machine learning and AI become more ubiquitous, businesses will need to find ways of overcoming these questions, deploying AI systems that empower employees and fairly impact customers and society.   

Join Monark Vyas (Managing Director – Applied Intelligence, Accenture) to explore how to leverage Responsible AI practices to design and deploy AI systems that engender trust and allow your business to flourish.    

Topics for discussion include:  
- Why AI and Machine Learning systems need to be built responsibly  
- The principles of responsible AI   
- How to put them into practice  
- And more...

Responsible AI: Scaling AI with Confidence

Cloud technology has experienced massive growth, driven by the explosion of remote and hybrid workforces. Cloud computing provides a myriad of benefits for companies like increased growth, improved efficiency and faster workflows. But with this technology rapidly evolving, it is essential to stay on top of the new trends to ensure your company is gaining the most leverage from its cloud use and practicing a forward-thinking approach.

Tune into this panel discussion to hear top experts in the field discuss the key cloud computing trends to keep an eye on for this coming year and suggest how companies can practically apply these technologies while avoiding the trap of immediately jumping on a new cloud technology simply because it's another buzzword. 

Key discussion points:
- The multi-cloud strategy and its many benefits.
- The growing role AI and machine learning capabilities in cloud services.
- The increased adoption of cloud-native apps and how companies can best leverage them.
- The green cloud computing frameworks and how it emphasizes the environmental sustainability of cloud computing.

Moderated by: Simon Ratcliffe, Mentor and Adviser, Ensono
Alicia Howard, Product Manager, VMware Aria Cost powered by CloudHealth

What's on the cloud's horizon for 2023?

This webinar is brought to you by the Vivit DevOps Special Interest Group (SIG).

SecOps teams are always looking to strike a balance between staying ahead of new threats and not getting burned by older ones, all while having to do a hundred other things at once. The SecOps team at VMware will share their experience adopting a DevOps process for continuous improvement, while working to reduce the extreme utilization level of the Security Operations Center (SOC) team and to improve the overall security posture. The session will offer practical lessons learned, from a real 24/7 global SOC, without all the fancy buzzwords and feel good tips that don’t actually work in the real world.

Join this webinar to learn:

•  How shifting the method of working has improved Security Monitoring, without having to spend more money
•  What to be aware of when adopting new methods or techniques
•  How to plan out goals and achieve them in environments where priorities constantly are shifting

Critical Lessons Learned While Adopting DevOps Lifecycle for SecOps using Agile

Vivit

VivitSIGWebinar

DevOps

DevOpsLifecycle

SecOps

Agile

@VMware

@MicroFocusDev

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Critical Lessons Learned While Adopting DevOps Lifecycle for SecOps using Agile

Presented by

About this talk

More from this channel