GitOps and Best Practices for Managing Infrastructure with Javeria Khan!
FOLLOW & SUBSCRIBE TO DEVSLOP
LinkedIn: https://www.linkedin.com/company/owasp-devslop
Twitter: https://twitter.com/Owasp_DevSlop
YouTube: https://www.youtube.com/c/OWASPDevSlop
DEV.TO: https://dev.to/devslop
Hosts: Nancy Gariché, Nicole Becher (@thedeadrobots), Tanya Janca (@shehackspurple)
Guest Host: Renan Dias (@DojoWithRenan)
Tanya Janca (@shehackspurple) wrote a book on application security! You can pre-order 'Alice and Bob Learn Application Security'! It will teach you how to create secure software, from A to Z! here: https://amazon.com/dp/1119687357/
SPECIAL MENTIONS
Dojo with Renan
TWITTER: https://twitter.com/DojoWithRenan
MEETUP: https://www.meetup.com/Slalom-Tech-Talks/
YOUTUBE: https://www.youtube.com/c/DojowithRenan/
GitOps and best practices for managing infrastructure
Kubernetes and containers have now gained widespread usage for all kinds of workloads including AI, ML, IoT etc. While containerization itself has brought on many benefits like better resource utilization, cost savings, cleaner dev and testing lifecycles to name a few, it has also introduced a new complexity in optimally managing these workloads simultaneously in multiple test and production environments along with managing the declarations for the environments they run in.
During the last few years, we have seen how this shift has made organizations rethink CI/CD from storing all declarative aspects in git, to reducing the use of manual kubectl commands and managing deployments using PRs.
One such optimization pattern is GitOps, which is a way to do Continuous Delivery by using git as a single source of truth for declarative infrastructure and applications.
In this talk, I'll describe how you can introduce GitOps into software lifecycles, and mention some of the more popular GitOps open source tools, and how they work in real-world production environments. Which one is better for cloud or on-prem? How do you integrate them with container building tools? Which ones are easier for developers to use in local environments?
Prerequisite knowledge:
------------------------
Working/Operational knowledge of docker, kubernetes, and software development lifecycle.
Who is this presentation for?
-----------------------------
Software and Infrastructure engineers looking to leverage more optimal patterns in their containerized application testing and deployment lifecycles.
What you'll learn?
------------------
The pros and cons of using popular GitOps tools and methods, and how to leverage templates such as the Kubernetes operator patterns to quickly deploy them in production ready environments.
OUR GUEST: JAVERIA KHAN
Javeria Khan is a Senior Platform Engineer and has 9 years of technical experience. She started off as a hardware engineer and then switched to software & systems 7 years ago. She's been a part of infrastructure teams at startups and public companies, where she's helped build and manage cloud and on-prem production environments, with a special focus on scaling, reliability, automation and operability.
You can find Javeria on social media:
https://twitter.com/javeriak_
Видео GitOps and Best Practices for Managing Infrastructure with Javeria Khan! канала OWASP DevSlop
LinkedIn: https://www.linkedin.com/company/owasp-devslop
Twitter: https://twitter.com/Owasp_DevSlop
YouTube: https://www.youtube.com/c/OWASPDevSlop
DEV.TO: https://dev.to/devslop
Hosts: Nancy Gariché, Nicole Becher (@thedeadrobots), Tanya Janca (@shehackspurple)
Guest Host: Renan Dias (@DojoWithRenan)
Tanya Janca (@shehackspurple) wrote a book on application security! You can pre-order 'Alice and Bob Learn Application Security'! It will teach you how to create secure software, from A to Z! here: https://amazon.com/dp/1119687357/
SPECIAL MENTIONS
Dojo with Renan
TWITTER: https://twitter.com/DojoWithRenan
MEETUP: https://www.meetup.com/Slalom-Tech-Talks/
YOUTUBE: https://www.youtube.com/c/DojowithRenan/
GitOps and best practices for managing infrastructure
Kubernetes and containers have now gained widespread usage for all kinds of workloads including AI, ML, IoT etc. While containerization itself has brought on many benefits like better resource utilization, cost savings, cleaner dev and testing lifecycles to name a few, it has also introduced a new complexity in optimally managing these workloads simultaneously in multiple test and production environments along with managing the declarations for the environments they run in.
During the last few years, we have seen how this shift has made organizations rethink CI/CD from storing all declarative aspects in git, to reducing the use of manual kubectl commands and managing deployments using PRs.
One such optimization pattern is GitOps, which is a way to do Continuous Delivery by using git as a single source of truth for declarative infrastructure and applications.
In this talk, I'll describe how you can introduce GitOps into software lifecycles, and mention some of the more popular GitOps open source tools, and how they work in real-world production environments. Which one is better for cloud or on-prem? How do you integrate them with container building tools? Which ones are easier for developers to use in local environments?
Prerequisite knowledge:
------------------------
Working/Operational knowledge of docker, kubernetes, and software development lifecycle.
Who is this presentation for?
-----------------------------
Software and Infrastructure engineers looking to leverage more optimal patterns in their containerized application testing and deployment lifecycles.
What you'll learn?
------------------
The pros and cons of using popular GitOps tools and methods, and how to leverage templates such as the Kubernetes operator patterns to quickly deploy them in production ready environments.
OUR GUEST: JAVERIA KHAN
Javeria Khan is a Senior Platform Engineer and has 9 years of technical experience. She started off as a hardware engineer and then switched to software & systems 7 years ago. She's been a part of infrastructure teams at startups and public companies, where she's helped build and manage cloud and on-prem production environments, with a special focus on scaling, reliability, automation and operability.
You can find Javeria on social media:
https://twitter.com/javeriak_
Видео GitOps and Best Practices for Managing Infrastructure with Javeria Khan! канала OWASP DevSlop
Показать
Комментарии отсутствуют
Информация о видео
Другие видео канала
![Embrace Secure Defaults, Block Anti-patterns, and Kill Bug Classes with Semgrep with Clint Gibler](https://i.ytimg.com/vi/GoeONtFx0bA/default.jpg)
![How to Analyze Code for Vulnerabilities using Joern](https://i.ytimg.com/vi/qtGRNb_2Khs/default.jpg)
![OWASP DevSlop Show: Rapid Threat Model Prototyping with Geoffrey Hill!](https://i.ytimg.com/vi/6eUlRVzcbaU/default.jpg)
![DevSlop Game Day Recap & Solution with Renan Dias](https://i.ytimg.com/vi/1py6iNroHBM/default.jpg)
![Privilege Escalation in the Cloud with Carlos Polop](https://i.ytimg.com/vi/DHLuUVx32RI/default.jpg)
![Threats Against Application Identities in the Microsoft Cloud](https://i.ytimg.com/vi/heHiv6nLrFA/default.jpg)
![The Act of Balancing: Burnout in Cybersecurity with Chloé Messdaghi!](https://i.ytimg.com/vi/5H2-wvn0UbA/default.jpg)
![Github Actions Security Best Practices with Reethi Kotti](https://i.ytimg.com/vi/B5X_2q_ko5U/default.jpg)
![Containers in a nutshell — ähm pod! Containers in a pod](https://i.ytimg.com/vi/1nUoIFSon50/default.jpg)
![Knock Your SOCs Off: Modernizing Security Operations with Kat Sweet!](https://i.ytimg.com/vi/0-5mHRwvZ7w/default.jpg)
![Shifting Cloud Security Left: Scanning Infrastructure as Code for Security Issues](https://i.ytimg.com/vi/mw-mEnLxNj4/default.jpg)
![Logging & Monitoring on AWS 101 with Veliswa Boya! - OWASP DevSlop](https://i.ytimg.com/vi/5YbAqXiHkMM/default.jpg)
![AppSec at the Speed of DevOps: 3 Common Mistakes with Erica Anderson!](https://i.ytimg.com/vi/ExL_DT0Jhwc/default.jpg)
![Vulnerability Writeups: The Magical 5 Minute Formula](https://i.ytimg.com/vi/xGRF715ElAw/default.jpg)
![Ceci n'est pas une Pipeline: is it CI/CD or WHAT?](https://i.ytimg.com/vi/VeKqDWALWBc/default.jpg)
![Compromised Compilers - A new perspective of supply chain cyber attacks](https://i.ytimg.com/vi/55kaaMGBARM/default.jpg)
![Automating Cloud Security with Open Policy Agent with Josh Stella! - OWASP DevSlop](https://i.ytimg.com/vi/mRT41T7eQQg/default.jpg)
![Cloud Security and IAM for Developers](https://i.ytimg.com/vi/juGTP9A6VMI/default.jpg)
![Yellow Team + Blue Team = Green Team](https://i.ytimg.com/vi/6fkz_3lU1Ic/default.jpg)
![Account Security beyond 2FA with Neil Matatall](https://i.ytimg.com/vi/hrAKE6LaizE/default.jpg)