Uncover Data Security Blind Spots in your Cloud, Big Data & DevOps Environment

As organizations mature on their DevOps adoption journey, adopting Continuous Integration and Continuous Delivery (CI/CD) automation, and breaking down organizational silos, application delivery and infrastructure provisioning speed is being accelerated. The next challenge now being exposed is the lack of agility in delivering Data into non-production environments.

Development and Testing require the availability of relevant data in the production-like Dev and Test environments on demand, to ensure rapid testing and validation of each Build. Data is however difficult to provision and deliver on demand. This results in Data Friction being the impediment to true ‘flow’ through application delivery pipelines. Other than the inherent cost and time it takes to provision and store data instances, there is also the risk that exponentially increases as more and more instances of Data are provisioned in multiple non-production environments.

As Dev-Test teams deliver faster and leverage more environments across parallel development streams, the number of non-production Data instances is typically several orders of magnitude higher than Production instances, increasing the exposed surface area. The ask hence is to be able to provision and deliver production-like Data instances, on-demand, as, when and where Dev-test practitioners need them in non-prod environments, while securing the Data at the same time.

In this session Sanjeev Sharma, VP and Global Practice Director for Data Modernization will discuss practices large enterprises need to adopt, across Process, Technology and People in order to be able to Provision, Deploy, Manage, Govern, and Secure Data in Application Delivery Pipelines, addressing Data Friction and Data Security challenges that may be impeding DevSecOps adoption.

Most people think “adopting containers” means deploying Docker images to production. In practice, adopting containers in the continuous integration process provides visible benefits even if the production environment are VMs. In this webinar, we will explore this pattern by packaging all build tools inside Docker containers. Container-based pipelines allow us to create and reuse building blocks to make pipeline creation and management MUCH easier. It’s like building with Legos instead of clay.

This not only makes pipeline creation and maintenance much easier, it also solves a myriad of classic CI/CD problems such as:
Putting an end to version conflicts in build machines
Eliminating build machine management in general
Step portability and maintenance

In a very real sense, Docker-based pipelines reflect lessons learned from microservices in CI/CD pipelines. We will share tips and tricks for running these kinds of pipelines while using Codefresh as a CI/CD solution as it fully supports pipelines where each build step is running on its own Docker image.

This webinar focuses on the aspects of Docker and Containers that can help you in the development lifecycle of your applications. By utilizing containers you can save time and simplify your development workflow. The benefits you will learn about range from frictionless onboarding of new developers, consistent environments, saving time in managing workstations and dependencies to quickly adapting to new requirements. You will understand the challenges of developing applications within containers and techniques to overcome them. After this session, you will understand:

- How to utilize containers to speed up your development process and free up resources
- Where to start and how to drive progress on integrating containers into your development workflow
- Challenges you might encounter along the way and techniques to overcome them
- The ways containers will shape how you think about application and infrastructure design


Julian is a Software Engineer, Online Educator, and Container Enthusiast. He automates all the things and containerizes Ruby applications at day. At night he sleeps. In between those times, he is busy climbing, hiking and teaching people about Docker and Containers at LearnDocker.online. His current life goal is to drastically reduce the time he sits per day.

The application development language, COBOL, is 60! September 1959 saw the first mention of the technical acronym “COBOL”, which was then adopted as the name for the language being specified and developed. Our first COBOL SIG session will kick things off describing the computing language’s contemporary relevance, use cases and prevalence. The language’s history is a fascinating study - the way in which it was designed, its continued evolution and relevance, and a number of defining characteristics have ensured it remains in widespread usage. Join us as we discuss and outline those attributes.

Cloud and Cybersecurity Series [Ep.6]: Next-Generation Cybersecurity: Policy Process and Organization

Resources are finite. So deploying them wisely is what differentiates successful cybersecurity organizations from those that are less successful. Find out how these successful cybersecurity organizations are structured, what policies they have in place, and what strategies they do—and don’t—follow to protect their enterprise organizations.

As organizations mature on their DevOps adoption journey, adopting Continuous Integration and Continuous Delivery (CI/CD) automation, and breaking down organizational silos, application delivery and infrastructure provisioning speed is being accelerated. The next challenge now being exposed is the lack of agility in delivering Data into non-production environments.

Development and Testing require the availability of relevant data in the production-like Dev and Test environments on demand, to ensure rapid testing and validation of each Build. Data is however difficult to provision and deliver on demand. This results in Data Friction being the impediment to true ‘flow’ through application delivery pipelines. Other than the inherent cost and time it takes to provision and store data instances, there is also the risk that exponentially increases as more and more instances of Data are provisioned in multiple non-production environments.

As Dev-Test teams deliver faster and leverage more environments across parallel development streams, the number of non-production Data instances is typically several orders of magnitude higher than Production instances, increasing the exposed surface area. The ask hence is to be able to provision and deliver production-like Data instances, on-demand, as, when and where Dev-test practitioners need them in non-prod environments, while securing the Data at the same time.

In this session Sanjeev Sharma, VP and Global Practice Director for Data Modernization will discuss practices large enterprises need to adopt, across Process, Technology and People in order to be able to Provision, Deploy, Manage, Govern, and Secure Data in Application Delivery Pipelines, addressing Data Friction and Data Security challenges that may be impeding DevSecOps adoption.

We’re all looking at ways to prevent vulnerabilities from escaping into our production environments. Why not require scans of your Docker images before they’re even uploaded to your production Docker registry? SHIFT LEFT!

When your engineers get information about security vulnerabilities earlier, they're more efficient with fixes!

Join Codefresh, as we demonstrate setting up vulnerability and compliance thresholds in a CI pipeline. We will show you how to give your teams access to your Docker images’ security reports & trace back to your report from your production Kubernetes cluster using Codefresh.

The shift to the cloud is about breaking down traditional barriers and opening new lines of communication and collaboration to solve problems. If you have already implemented DevOps practices in your organisation you will find it much easier to transition to the cloud.

Why? Because cloud transformation requires significant collaboration between different teams. Because cloud adoption is complex a diverse, cross-functional team with experience and perspectives from around the company, can help create a collaborative environment that enables success.

In this talk you will learn:

How to manage the cultural shift required for a successful cloud project;

How to build cross-teams, establish processes, adopt new tools and define KPIs;

How to identify areas for improvement, increase agility and efficiency.

To win with DevOps, you need to be aware of potential issues and know how to overcome the challenges so that you can make the most of its benefits.

With the incredible growth of DevOps in a short space of time comes numerous questions about how best to adopt it. From insights and driving factors of adoption - to dealing with legacy systems and incorporating robust security features - join our panel of experts to hear advice and learnings from those at the forefront of DevOps adoption.

Panelists:
Brad Schick, CTO, Skytap
Jeremy Brown, Director, Red Hat Open Innovation Labs - EMEA, Red Hat
Daniel Breston, Technology Leadership Transformation Coach, Virtual Clarity

The concept of “shift left” engages security earlier in the development cycle of cloud-native applications, accelerating development while reducing risk. However, migrating to cloud-native environments also necessitates the security team to “shift up”, focusing on the application layer to account for the shared-service model and “thin OS” environments that are prevalent in these environments.

Attend this webinar to learn why Shifting Up provides improved security and cost efficiency in cloud-native environments, including:

- Kubernetes orchestrated applications
- Containers running on VMs
- Serverless containers (e.g., AWS Fargate and Azure Container Instances)
- Serverless functions (e.g., AWS Lambda and Azure Functions)

Cloud and Cybersecurity Series [Ep.5]: Application Security Meets Multicloud

Enterprises are developing and buying applications to run everywhere: across multiple clouds, multiple data centers, desktops, mobile devices, and IoT devices. In a multicloud environment, IT needs to take a multipronged approach to securing applications.

We'll how organizations approach securing their applications for the multicloud, ranging from changes in the development process to the embrace of security technologies including IAMaaS, microservice authentication, and enterprise secure cloud access and policy enforcement (ESCAPE).

This webinar presents data from Nemertes' in-depth research study of 335 organizations in 11 countries across a range of vertical industries.

We've spent six years studying secure coding practices of DevOps and Continuous Delivery organizations by surveying over 15,000 IT professionals. We've analyzed their staffing practices, educational priorities, automation choices, and process improvements that improve their cybersecurity preparedness. Our study has also uncovered details of where automation fails, awareness falls short and breaches happen.

Come participate in this session where we will share the 10 habits practiced by the DevSecOps Elite that you can then apply to -- or further mature within -- your own organization. We will also uncover what our analysis revealed about securing CI/CD pipelines, including what popular Jenkins plug-ins are used for security.

Learning objective:
We've spent six years studying secure coding practices of DevOps and Continuous Delivery organizations. Learn the 10 habits practiced by the DevSecOps Elite -- including their approaches to training, process, and automation -- that you can apply to your own organization.

Michal Brygidyn, Cloud Solutions Architect and Security Researcher for PGS Software, will suggest helpful hints and tips on how Data Leaks occur and what your organisation can do to mitigate the risk. He'll also be discussing:

- Black Hats – How They WILL Exploit You
- Cloud Infrastructure Security: AWS Oriented Good Practices
- How can these security issues be tackled

Register for this session, listen in live and put your questions to Michal.

Intelligent Customer Engagement Series [Ep.6]: Setting Budgets, Finding Stakeholders for AI-Enabled DCX Projects

As IT and business leaders evaluate their how to use AI to improve customer experience, one of the biggest roadblocks is funding.

This webinar provides step-by-step guidance on finding stakeholders to fund the projects, with specific data on how much companies are spending today on their AI-enabled initiatives.

Intelligent Customer Engagement Series [Ep.5]: CX Success Stories Require Technology, Leadership, Data

A great story requires more than a compelling narrative. Marketing teams can significantly elevate their success with the right combination of leadership, technology, and data derived from well-planned customer interviews.

Crafting that perfect story requires an expanded mindset about what comprises “marketing.”

In this webinar, join Nemertes Research President Robin Gareiss, who recently completed detailed research with 518 companies on how they use advanced technologies and reshape their organizational structure to improve customer experience. Based on this research and her experience as a journalist, marketing content developer, and CX advisor, she will cover:

1. Organizational overhaul: Why a Chief Customer Officer is vital, and how the CMO and CCO work together for joint success.
2. Technology leverage: What are the key technologies and contact-center initiatives that result in measurable CX success—ultimately delivering crucial data to marketing teams that support their success stories?
3. The perfect story: How to conduct interviews that get real-world data to support your mission.

Cloud and Cybersecurity Series [Ep.4] Next-Generation Cybersecurity - Technology Foundations

The bad news? Threats evolve. Bad actors continue to improve their games.
The good news? Cybersecurity technology is also evolving and improving. This webinar drills down into the emerging technologies that successful cybersecurity organizations are deploying to protect their firms. Find out what works, what's a waste of resources--and how to deploy the technologies that work.