Loading…
Simple
Expanded
Grid
By Venue
strong>CloudX: DevOps Summit [clear filter]
Tuesday, November 5
 

2:00pm PST

PRO WORKSHOP (CloudX): Building Observability on AWS
Tuesday November 5, 2024 2:00pm - 2:50pm PST
CloudX -- Stage 1
Ulili Nhaga, AWS, Principal Cloud Application Architect

Observability is a critical requirement that you must implement for modern application and operation! Please join me in this session to learn how to define the strategy for Observability on AWS using AWS Native Observability Services or Managed Open-Source Services, and to learn how to implement these strategies in your application’s code. 
Speakers
avatar for Ulili Nhaga

Ulili Nhaga

Principal Cloud Application Architect, AWS
Ulili Nhaga is a Principal Cloud Application Architect at Amazon Web Services (AWS) in San Diego, California and an AWS re:Invent 2021 Speaker. He helps customers migrate, modernize, architect, and build highly scalable cloud-native applications on AWS. Outside of work, Ulili loves... Read More →
Tuesday November 5, 2024 2:00pm - 2:50pm PST
CloudX -- Stage 1
  CloudX: DevOps Summit, Observability

3:00pm PST

PRO WORKSHOP (CloudX): Revolutionizing Continuous Integration and Deployment: A Paradigm Shift
Tuesday November 5, 2024 3:00pm - 3:50pm PST
CloudX -- Main Stage
Mayank Goyal, Zoom, DevOps Engineer

CI/CD is a cornerstone in software development, guiding us towards efficiency and agility. However, as technology accelerates, the traditional tools of Bash and YAML, which have been reliable allies, are starting to show their age. This session is a call to arms for developers, DevOps practitioners, and sysadmins who are looking for the next evolution in CI/CD practices. We’ll delve into CI/CD as code, highlighting tools like Dagger.io for novel solutions. Discover how these approaches tackle current challenges, boosting scalability, maintainability, and pipeline efficiency. We’ll blend exploration with practicality, empowering you to navigate CI/CD’s evolving landscape. Through shared experiences and strategies, we’ll foster collaboration, learning from each other’s triumphs and challenges.
 
Speakers
avatar for Mayank Goyal

Mayank Goyal

DevOps Engineer, Zoom
Mayank Goyal excels as a DevOps Engineer at Zoom, building on his background as a Software Engineer at RedHat, where he developed a passion for automation. His expertise includes streamlining Release Pipelines within RHELWF. Beyond work, Mayank champions open-source tech, staying... Read More →
Tuesday November 5, 2024 3:00pm - 3:50pm PST
CloudX -- Main Stage
  CloudX: DevOps Summit, CI/CD
 
Wednesday, November 6
 

10:30am PST

PRO SESSION (CloudX): Which Vault? Don’t Tell Me Your Secret(s)!
Wednesday November 6, 2024 10:30am - 10:55am PST
CloudX -- Stage 1
Michel Schildmeijer, SSC-ICT, Lead Technologist

Secret management is a crucial aspect of DevOps, as it involves the protection of sensitive data that is used by applications and services. Secrets can include API keys, credentials, tokens, certificates, and passwords that grant access to various resources and systems. If these secrets are compromised, attackers can exploit them to cause damage, steal information, or disrupt operations.
One of the challenges of secret management is how to securely store, distribute, and rotate secrets in a dynamic and distributed environment. Traditional methods of hard-coding secrets in configuration files or environment variables are not secure, scalable, or reliable. Moreover, secrets need to be updated frequently to comply with security policies and regulations, and to prevent unauthorized access.
To address these challenges, several tools and frameworks have been developed to provide secret management solutions for DevOps.
These tools can help DevOps teams to implement best practices for secret management.
Speakers
avatar for Michel Schildmeijer

Michel Schildmeijer

Lead Technologist, SSC-ICT
Michel started his career as a medical officer in the Royal Dutch Airforce, with a focus on pharma. After the air force, he continued in pharma, followed by time working in clinical pharmacology. While there, he transitioned to IT by learning UNIX and MUMPS, and developed a system... Read More →
Wednesday November 6, 2024 10:30am - 10:55am PST
CloudX -- Stage 1
  CloudX: DevOps Summit, DevSecOps

1:00pm PST

PRO SESSION (CloudX): Thinking Beyond Chatbots! - What’s Next for Observability + AI
Wednesday November 6, 2024 1:00pm - 1:25pm PST
CloudX -- Stage 1
Ruchir Jha, Cardinal, CEO

Ever felt like RunBooks are just bandaids for tech mishaps? They pop up after an incident and only help when the same gremlins strike again. But where’s the RunBook for leveling up your troubleshooting game (fast)? Every company is a unique beast with its own architecture, tech stacks, and dependency webs. Scrambling to link faces with systems and knowing who to call during a crisis can be stressful.
And then there’s the real kicker: How do you gauge the true business fallout from an outage, and and determine the best course of action? What if Observability Tools could pull something like your IDE, learning from “anonymous usage stats” to improve over time for everyone on the team? Imagine tapping into the instincts of senior engineers and sharing their troubleshooting savvy across the board. My talk dives into how Retrieval Augmented Techniques (RAG) in AI can make this more seamless in reality.
Join me to explore how we can turn troubleshooting into a collective superpower!
Speakers
avatar for Ruchir Jha

Ruchir Jha

CEO, Cardinal
Ruchir is the co-founder and CEO of Cardinal, which helps improve the ROI (Return On Investment) of an existing Observability Stack. In his previous life, he spent 7 years as a Lead Engineer on Netflix's Observability team, where he built petabyte-scale Observability products that... Read More →
Wednesday November 6, 2024 1:00pm - 1:25pm PST
CloudX -- Stage 1
  CloudX: DevOps Summit, Observability

2:00pm PST

PRO SESSION (CloudX): Boosting Developer Productivity: Implementing Efficient Pipelines with Helm & CI/CD
Wednesday November 6, 2024 2:00pm - 2:25pm PST
CloudX -- Stage 1
Sanyogeeta Lawande, Ford Motor Company, Software Engineer

In today's fast-paced development environment, efficiency is key. In this talk, we will explore the implementation of efficient CI/CD pipelines to ensure that testing on the development branch is smooth and unblocked. By leveraging Helm and advanced pipeline strategies, developers can enjoy a more seamless integration process, reducing bottlenecks and enhancing productivity. Learn practical techniques and best practices to optimize your development workflow, enabling your team to deliver high-quality software faster and with greater confidence. 
Speakers
avatar for Sanyogeeta Lawande

Sanyogeeta Lawande

Software Engineer, Ford Motor Company
Sanyogeeta is a seasoned Software Engineer specializing in scaling and optimizing complex, high-volume data systems. Currently, she is shaping the future of automotive telemetry at Ford, previously at Autonomic LLC in Palo Alto, CA, where she has scaled telemetry streaming services... Read More →
Wednesday November 6, 2024 2:00pm - 2:25pm PST
CloudX -- Stage 1
  CloudX: DevOps Summit, CI/CD
 
Thursday, November 7
 

9:30am PST

OPEN SESSION (CloudX): Surging Supply Chain Attacks: Risks and Defenses
Thursday November 7, 2024 9:30am - 9:55am PST
CloudX -- Main Stage
Richard Clark, JFrog, Senior Solutions Architect

As supply chain attacks continue to evolve and proliferate, there is a critical need for organizations to fortify their defenses. Especially with the ever growing usage of open source technology in today’s software landscape, open source vulnerabilities have become a prime target for attackers seeking widespread impact. In this session, Richard Clark, Senior Solutions Architect at JFrog will emphasize the importance of proactive measures, including educating developers to use reputable tools, and adopting software composition analysis to safeguard against the growing menace of supply chain vulnerabilities.

In this session, Richard will also discuss:
How software bills of materials or SBOM standards, such as CycloneDX and SPDX, enhance visibility into software dependencies;
The rapid adoption of faster release cycles in business operations and how it heightens vulnerabilities in supply chain management;
The importance of collaboration between security teams and developers.
Speakers
avatar for Richard Clark

Richard Clark

Senior Solutions Architect, JFrog
Richard is a Senior Solutions Architect with JFrog. He is also an entrepreneur/inventor, having previously run a startup in the Internet of Things space, where he holds technology patents and has been a key member of several M&A startups. In his spare time, he enjoys cooking and traveling... Read More →
Thursday November 7, 2024 9:30am - 9:55am PST
CloudX -- Main Stage
  CloudX: DevOps Summit, DevSecOps

10:30am PST

OPEN SESSION (CloudX): 5 Steps to VEX Success: Managing the End-to-End Workflow
Thursday November 7, 2024 10:30am - 10:55am PST
CloudX -- Main Stage
Cortez Frazier Jr., FOSSA, Principal Product Manager

If you work in vulnerability management or DevSecOps programs, you’re probably familiar with the painful condition known as CVE overload. Each year, tens of thousands of new vulnerabilities are reported, which causes stress and late nights for the teams tasked with remediating them.

And that’s not to mention the herculean tax of distinguishing between potential vulnerabilities and confirmed vulnerabilities. The reality that most vulnerabilities are only potentially exploitable (as determined by the deployed context of each package) also means remediation often results in a lot of wasted time and effort.

A proposed solution is VEX (Vulnerability Exploitability eXchange): a set of formats that communicates vulnerability impact status, whether a vulnerability is exploitable in its deployed context, and mitigation steps. In theory, VEX (when used alongside other prioritization inputs) makes it possible to remediate more efficiently. But as with most security frameworks, efficacy depends on proper implementation.

This talk will cover five steps to leveraging VEX throughout the vulnerability remediation lifecycle, from the time a vulnerability is disclosed to the time you publish and distribute a VEX statement. We’ll cover the tools and workflows teams need to know to effectively use VEX in their organizations.
Speakers
avatar for Cortez Frazier Jr.

Cortez Frazier Jr.

Principal Product Manager, FOSSA
Cortez Frazier Jr. is the product lead for FOSSA’s SaaS and on-premises enterprise applications. FOSSA is a developer tool (in the software composition analysis category) for managing open source license compliance and security vulnerabilities.Before joining FOSSA, Cortez served... Read More →
Thursday November 7, 2024 10:30am - 10:55am PST
CloudX -- Main Stage
  CloudX: DevOps Summit, DevSecOps

11:30am PST

PRO SESSION (CloudX): Infrastructure in a Flash: Deploy via Code in Under 30 Minutes!
Thursday November 7, 2024 11:30am - 11:55am PST
CloudX -- Stage 1
Jagrut Sharma, Adobe, Senior Software Engineer

Unlock the power of managing infrastructure through code in this dynamic session! You'll dive into the fundamentals of infrastructure as code (IaC) with a focus on AWS CloudFormation. Step-by-step, you'll learn how to write your first template to efficiently create, update, and delete cloud resources.

By the end of this hands-on workshop, you'll have added a valuable skill to your repertoire and be equipped with the knowledge to further explore the vast possibilities of infrastructure as code. Join to enhance your technical skillset and embark on a journey of continuous innovation in cloud infrastructure management.
Speakers
avatar for Jagrut Sharma

Jagrut Sharma

Senior Software Engineer, Adobe
Jagrut Sharma is a senior software engineer at Adobe, where he leads the architecture and development of services enabling innovative machine-learning solutions and use cases. With over 20 years of experience in technology, Jagrut has contributed to a wide variety of projects across... Read More →
Thursday November 7, 2024 11:30am - 11:55am PST
CloudX -- Stage 1
  CloudX: DevOps Summit, Infrastructure-as-Code

1:00pm PST

OPEN SESSION (CloudX): The Critical Role of Observability in Cloud Native Applications: Ensuring Reliability and Minimizing Downtime
Thursday November 7, 2024 1:00pm - 1:25pm PST
CloudX -- Main Stage
Greg Leffler, Splunk, Director of Developer Evangelism - Observability

As organizations have moved to the cloud and increased their pace of innovation to ship software more often, it becomes harder to validate the impact of changes – both to their business and to their customers’ experience. That’s where Observability comes into play. Observability has emerged as a critical aspect of cloud native applications due to its ability to provide comprehensive insights into the complex and dynamic environments these applications operate within. By enabling real-time monitoring, tracing, and logging, observability allows users to proactively identify and resolve performance issues, improve reliability and build better digital experiences. This is crucial in helping organizations lower the cost of unplanned downtime and be more resilient.

Downtime not only results in direct financial losses, often quantified in thousands of dollars per minute for large enterprises, but also incurs indirect costs such as reduced customer satisfaction, loss of trust, and potential long-term reputational damage. To illustrate these benefits, we will demonstrate a troubleshooting scenario in a microservice environment using an advanced observability tool, showcasing how timely insights can present and resolve issues efficiently. As a result, investing in robust observability tools and practices is essential for maintaining the reliability and efficiency of cloud native applications, ultimately supporting business continuity and growth.
Speakers
avatar for Greg Leffler

Greg Leffler

Director of Developer Evangelism - Observability, Splunk
Greg Leffler heads the Observability Developer Evangelism team at Splunk and is on a mission to spread the good word of Observability to the world. Greg's career has taken him from the NOC to SRE, from SRE to management, with side stops in security and editorial functions. In addition... Read More →
Thursday November 7, 2024 1:00pm - 1:25pm PST
CloudX -- Main Stage
  CloudX: DevOps Summit, Observability

1:30pm PST

OPEN SESSION (CloudX): Unlocking the Promise of AIOps: Leveraging AI to Realize Full-Context Operations
Thursday November 7, 2024 1:30pm - 1:55pm PST
CloudX -- Main Stage
Fred Koopmans, BigPanda, Chief Product Officer

Context is fundamental to well-run tech operations: With the right context, IT teams can better understand their systems, interpret real-time data quickly, and facilitate better incident management to achieve operational efficiency. But too often, gathering the necessary context is a lengthy, inconsistent, and elusive process. IT teams are forced to grapple with fragmented tools, siloed workflows, and inconsistent manual processes, which have turned context collection into a definitive pain point for the ITOps industry. Teams are losing out on precious time, money, and attention that should be directed towards digital transformation and innovation.

The tech industry has recently transformed thanks to the AI boom: ITOps is at a critical juncture where AI can enable faster, more efficient ITOps as well as deliver Full-Context Operations. Fred Koopmans, Chief Product Officer of AIOps platform BigPanda, will speak to the promise of Full-Context Operations – the process of unifying IT teams’ tools and processes with AI to provide the institutional knowledge needed to address every incident immediately. He’ll dive deep into the ways that teams can tangibly benefit from having the right context, outlining how the IT industry can leverage AI to collect comprehensive and contextual data to help operators achieve better incident resolution. Fred can share detailed proof points from developing BigPanda’s AI-powered assistant that was purpose-built for delivering full context in IT operations. With Full-Context Operations, the IT industry can finally fulfill the long-sought-after promise of AIOps, putting AI into practice to deliver unprecedented operational efficiency.
Speakers
avatar for Fred Koopmans

Fred Koopmans

Chief Product Officer, BigPanda
Fred Koopmans, BigPanda's Chief Product Officer, is dedicated to driving innovation and collaboration, building trusted partnerships with customers, creating product roadmaps, and empowering individuals to achieve the extraordinary. He leads product strategy, product management, product... Read More →
Thursday November 7, 2024 1:30pm - 1:55pm PST
CloudX -- Main Stage
  CloudX: DevOps Summit, Automated Testing & Monitoring & Reporting

2:00pm PST

PRO SESSION (CloudX): Building Robust Networks: The Power of CI/CD in Network Validation
Thursday November 7, 2024 2:00pm - 2:25pm PST
CloudX -- Stage 1
Naveen Achyuta, Roblox, Network Reliability Engineer

While CI/CD practices are well-established in software development, the networking field is still adapting to these methodologies. This presentation demonstrates a method for validating network configurations in a lab environment, both pre- and post-deployment, to build confidence before implementing changes in production networks. Using open-source tools, custom scripts, and containerlab, we'll walk through each step of implementing a CI/CD pipeline. This approach not only enhances confidence in network deployments but also bridges the gap between traditional networking practices and modern DevOps methodologies. 
Speakers
avatar for Naveen Achyuta

Naveen Achyuta

Network Reliability Engineer, Roblox
Naveen works as a Network Reliability Engineer at Roblox and lives in the Bay Area. After graduating with his master's degree, he initially worked as a network engineer at Comcast. He then transitioned to network software engineering to build network automation systems that streamline... Read More →
Thursday November 7, 2024 2:00pm - 2:25pm PST
CloudX -- Stage 1
  CloudX: DevOps Summit, CI/CD

2:30pm PST

PRO SESSION (CloudX): Petabyte-Scale Deployments: Balancing Immutability and Flexibility
Thursday November 7, 2024 2:30pm - 2:55pm PST
CloudX -- Stage 1
Anup Ghatage, Salesforce, Lead Member of Technical Staff
Varun Shah, Salesforce, Software Engineer

At Salesforce, our team does Kubernetes deployments at the petabyte scale, with 100+ clusters, 10000+ pods, and 25+ PiB of provisioned storage and innumerable Kubernetes jobs. Operating at this massive scale necessitates an approach that reduces engineering toil. Maintaining such mammoth clusters while keeping security in mind is a whole different challenge.

We specifically talk about how and why we picked immutability and Infra-as-code as the cornerstone of our design and the challenges around it. Immutability provides security and scalability and eliminates config drift. Infra-as-code guarantees that changes to our infrastructure follow the same software lifecycle. but the trade-off is a lack of flexibility to adapt to changing requirements.

In this talk, we go over the unique design choices that help us manage, grow, and configure petabyte-scale deployments at Salesforce.
Speakers
avatar for Anup Ghatage

Anup Ghatage

Lead Member of Technical Staff, Salesforce
Anup works on Salesforce's Infrastructure platform.Previously, he has worked on database internals, query processing and storage at SAP, Cisco Systems and other companies for more than 8 years. Anup holds a BS from the University of Pune and an MS from Carnegie Mellon University... Read More →
avatar for Varun Shah

Varun Shah

Software Engineer, Salesforce
BE with a specialization in Computer EngineeringMS in Electrical EngineeringWorking on enterprise software since 2009 with companies like Brocade (now Broadcom) / VMware and currently with Salesforce.Using cloud native technologies to scale Salesforce software stack.
Thursday November 7, 2024 2:30pm - 2:55pm PST
CloudX -- Stage 1
  CloudX: DevOps Summit, Infrastructure-as-Code
 
Tuesday, November 12
 

11:00am PST

[Virtual] PRO WORKSHOP (CloudX): Building Observability on AWS
Tuesday November 12, 2024 11:00am - 11:50am PST
VIRTUAL CloudX -- Stage 1
Ulili Nhaga, AWS, Principal Cloud Application Architect

Observability is a critical requirement that you must implement for modern application and operation! Please join me in this session to learn how to define the strategy for Observability on AWS using AWS Native Observability Services or Managed Open-Source Services, and to learn how to implement these strategies in your application’s code. 
Speakers
avatar for Ulili Nhaga

Ulili Nhaga

Principal Cloud Application Architect, AWS
Ulili Nhaga is a Principal Cloud Application Architect at Amazon Web Services (AWS) in San Diego, California and an AWS re:Invent 2021 Speaker. He helps customers migrate, modernize, architect, and build highly scalable cloud-native applications on AWS. Outside of work, Ulili loves... Read More →
Tuesday November 12, 2024 11:00am - 11:50am PST
VIRTUAL CloudX -- Stage 1
  CloudX: DevOps Summit, Observability

12:00pm PST

[Virtual] PRO WORKSHOP (CloudX): Revolutionizing Continuous Integration and Deployment: A Paradigm Shift
Tuesday November 12, 2024 12:00pm - 12:50pm PST
VIRTUAL CloudX -- Main Stage
Mayank Goyal, Zoom, DevOps Engineer

CI/CD is a cornerstone in software development, guiding us towards efficiency and agility. However, as technology accelerates, the traditional tools of Bash and YAML, which have been reliable allies, are starting to show their age. This session is a call to arms for developers, DevOps practitioners, and sysadmins who are looking for the next evolution in CI/CD practices. We’ll delve into CI/CD as code, highlighting tools like Dagger.io for novel solutions. Discover how these approaches tackle current challenges, boosting scalability, maintainability, and pipeline efficiency. We’ll blend exploration with practicality, empowering you to navigate CI/CD’s evolving landscape. Through shared experiences and strategies, we’ll foster collaboration, learning from each other’s triumphs and challenges.
 
Speakers
avatar for Mayank Goyal

Mayank Goyal

DevOps Engineer, Zoom
Mayank Goyal excels as a DevOps Engineer at Zoom, building on his background as a Software Engineer at RedHat, where he developed a passion for automation. His expertise includes streamlining Release Pipelines within RHELWF. Beyond work, Mayank champions open-source tech, staying... Read More →
Tuesday November 12, 2024 12:00pm - 12:50pm PST
VIRTUAL CloudX -- Main Stage
  CloudX: DevOps Summit, CI/CD
 
Wednesday, November 13
 

12:30pm PST

[Virtual Exclusive] OPEN SESSION (CloudX): Clearing the Fog and Counting the Hidden Costs of your DevSecOps Journey
Wednesday November 13, 2024 12:30pm - 12:55pm PST
VIRTUAL API World -- Expo Discovery Stage
Darwin Sanoy, GitLab, Field CTO Office

Not having a DevSecOps Maturity Plan is like off-road racing in heavy fog.

This session lifts the fog to help you plan your way around hidden potholes, rocks, cliffs and trees.

An unplanned approach can end up adding substantial friction to the People, Process and Technology of DevSecOps.

In addition to your typical costs, the session will touch on economies of speed, value stream friction and the super-efficiency of aligning workflows with existing human habit loops.

It will also discuss the frequent anti-pattern of comparing scaling-out DevSecOps capabilities to the cost of doing nothing, when it is well known that doing nothing is not really an option.


Every DevSecOps maturity level carries costs - learn how smart choices can mean lower costs, less friction and better outcomes.
Speakers
avatar for Darwin Sanoy

Darwin Sanoy

Field CTO Office, GitLab
Darwin Sanoy has spent his career in strategy, architecture, engineering and coding for scaled provisioning and operations automation. His early career was in enterprise IT automation, mid-career was running a solo business for enterprise automation training and the last decade has... Read More →
Wednesday November 13, 2024 12:30pm - 12:55pm PST
VIRTUAL API World -- Expo Discovery Stage
  CloudX: DevOps Summit, DevSecOps

1:00pm PST

[Virtual] PRO SESSION (CloudX): Thinking Beyond Chatbots! - What’s Next for Observability + AI
Wednesday November 13, 2024 1:00pm - 1:25pm PST
VIRTUAL CloudX -- Stage 1
Ruchir Jha, Cardinal, CEO

Ever felt like RunBooks are just bandaids for tech mishaps? They pop up after an incident and only help when the same gremlins strike again. But where’s the RunBook for leveling up your troubleshooting game (fast)? Every company is a unique beast with its own architecture, tech stacks, and dependency webs. Scrambling to link faces with systems and knowing who to call during a crisis can be stressful.
And then there’s the real kicker: How do you gauge the true business fallout from an outage, and and determine the best course of action? What if Observability Tools could pull something like your IDE, learning from “anonymous usage stats” to improve over time for everyone on the team? Imagine tapping into the instincts of senior engineers and sharing their troubleshooting savvy across the board. My talk dives into how Retrieval Augmented Techniques (RAG) in AI can make this more seamless in reality.
Join me to explore how we can turn troubleshooting into a collective superpower!
Speakers
avatar for Ruchir Jha

Ruchir Jha

CEO, Cardinal
Ruchir is the co-founder and CEO of Cardinal, which helps improve the ROI (Return On Investment) of an existing Observability Stack. In his previous life, he spent 7 years as a Lead Engineer on Netflix's Observability team, where he built petabyte-scale Observability products that... Read More →
Wednesday November 13, 2024 1:00pm - 1:25pm PST
VIRTUAL CloudX -- Stage 1
  CloudX: DevOps Summit, Observability

2:00pm PST

[Virtual] PRO SESSION (CloudX): Boosting Developer Productivity: Implementing Efficient Pipelines with Helm & CI/CD
Wednesday November 13, 2024 2:00pm - 2:25pm PST
VIRTUAL CloudX -- Stage 1
Sanyogeeta Lawande, Ford Motor Company, Software Engineer

In today's fast-paced development environment, efficiency is key. In this talk, we will explore the implementation of efficient CI/CD pipelines to ensure that testing on the development branch is smooth and unblocked. By leveraging Helm and advanced pipeline strategies, developers can enjoy a more seamless integration process, reducing bottlenecks and enhancing productivity. Learn practical techniques and best practices to optimize your development workflow, enabling your team to deliver high-quality software faster and with greater confidence. 
Speakers
avatar for Sanyogeeta Lawande

Sanyogeeta Lawande

Software Engineer, Ford Motor Company
Sanyogeeta is a seasoned Software Engineer specializing in scaling and optimizing complex, high-volume data systems. Currently, she is shaping the future of automotive telemetry at Ford, previously at Autonomic LLC in Palo Alto, CA, where she has scaled telemetry streaming services... Read More →
Wednesday November 13, 2024 2:00pm - 2:25pm PST
VIRTUAL CloudX -- Stage 1
  CloudX: DevOps Summit, CI/CD
 
Thursday, November 14
 

9:30am PST

[Virtual] OPEN SESSION (CloudX): Surging Supply Chain Attacks: Risks and Defenses
Thursday November 14, 2024 9:30am - 9:55am PST
VIRTUAL CloudX -- Main Stage
Richard Clark, JFrog, Senior Solutions Architect

As supply chain attacks continue to evolve and proliferate, there is a critical need for organizations to fortify their defenses. Especially with the ever growing usage of open source technology in today’s software landscape, open source vulnerabilities have become a prime target for attackers seeking widespread impact. In this session, Richard Clark, Senior Solutions Architect at JFrog will emphasize the importance of proactive measures, including educating developers to use reputable tools, and adopting software composition analysis to safeguard against the growing menace of supply chain vulnerabilities.

In this session, Richard will also discuss:
How software bills of materials or SBOM standards, such as CycloneDX and SPDX, enhance visibility into software dependencies;
The rapid adoption of faster release cycles in business operations and how it heightens vulnerabilities in supply chain management;
The importance of collaboration between security teams and developers.
Speakers
avatar for Richard Clark

Richard Clark

Senior Solutions Architect, JFrog
Richard is a Senior Solutions Architect with JFrog. He is also an entrepreneur/inventor, having previously run a startup in the Internet of Things space, where he holds technology patents and has been a key member of several M&A startups. In his spare time, he enjoys cooking and traveling... Read More →
Thursday November 14, 2024 9:30am - 9:55am PST
VIRTUAL CloudX -- Main Stage
  CloudX: DevOps Summit, DevSecOps

10:30am PST

[Virtual] OPEN SESSION (CloudX): 5 Steps to VEX Success: Managing the End-to-End Workflow
Thursday November 14, 2024 10:30am - 10:55am PST
VIRTUAL CloudX -- Main Stage
Cortez Frazier Jr., FOSSA, Principal Product Manager

If you work in vulnerability management or DevSecOps programs, you’re probably familiar with the painful condition known as CVE overload. Each year, tens of thousands of new vulnerabilities are reported, which causes stress and late nights for the teams tasked with remediating them.

And that’s not to mention the herculean tax of distinguishing between potential vulnerabilities and confirmed vulnerabilities. The reality that most vulnerabilities are only potentially exploitable (as determined by the deployed context of each package) also means remediation often results in a lot of wasted time and effort.

A proposed solution is VEX (Vulnerability Exploitability eXchange): a set of formats that communicates vulnerability impact status, whether a vulnerability is exploitable in its deployed context, and mitigation steps. In theory, VEX (when used alongside other prioritization inputs) makes it possible to remediate more efficiently. But as with most security frameworks, efficacy depends on proper implementation.

This talk will cover five steps to leveraging VEX throughout the vulnerability remediation lifecycle, from the time a vulnerability is disclosed to the time you publish and distribute a VEX statement. We’ll cover the tools and workflows teams need to know to effectively use VEX in their organizations.
Speakers
avatar for Cortez Frazier Jr.

Cortez Frazier Jr.

Principal Product Manager, FOSSA
Cortez Frazier Jr. is the product lead for FOSSA’s SaaS and on-premises enterprise applications. FOSSA is a developer tool (in the software composition analysis category) for managing open source license compliance and security vulnerabilities.Before joining FOSSA, Cortez served... Read More →
Thursday November 14, 2024 10:30am - 10:55am PST
VIRTUAL CloudX -- Main Stage
  CloudX: DevOps Summit, DevSecOps

11:30am PST

[Virtual] PRO SESSION (CloudX): Infrastructure in a Flash: Deploy via Code in Under 30 Minutes!
Thursday November 14, 2024 11:30am - 11:55am PST
VIRTUAL CloudX -- Stage 1
Jagrut Sharma, Adobe, Senior Software Engineer

Unlock the power of managing infrastructure through code in this dynamic session! You'll dive into the fundamentals of infrastructure as code (IaC) with a focus on AWS CloudFormation. Step-by-step, you'll learn how to write your first template to efficiently create, update, and delete cloud resources.

By the end of this hands-on workshop, you'll have added a valuable skill to your repertoire and be equipped with the knowledge to further explore the vast possibilities of infrastructure as code. Join to enhance your technical skillset and embark on a journey of continuous innovation in cloud infrastructure management.
Speakers
avatar for Jagrut Sharma

Jagrut Sharma

Senior Software Engineer, Adobe
Jagrut Sharma is a senior software engineer at Adobe, where he leads the architecture and development of services enabling innovative machine-learning solutions and use cases. With over 20 years of experience in technology, Jagrut has contributed to a wide variety of projects across... Read More →
Thursday November 14, 2024 11:30am - 11:55am PST
VIRTUAL CloudX -- Stage 1
  CloudX: DevOps Summit, Infrastructure-as-Code

12:30pm PST

[Virtual Exclusive] PRO SESSION (CloudX): Less is More: Unleashing Time-Saving CI/CD Practices
Thursday November 14, 2024 12:30pm - 12:55pm PST
VIRTUAL CloudX -- Stage 1
Monika, AHEAD, Senior Assoc Tech Consultant

Tirith is an open-source policy engine designed to simplify and automate policy enforcement for cloud configurations.
This session will explore how Tirith's key features can streamline cloud management.

Like declarative syntax, multi-stack compliance, and extensibility for various use cases like IaC resources, Kubernetes configurations, and CI/CD pipelines. Tirith helps discover misconfigurations, build reusable policies, and deploy guardrails. The platform integrates seamlessly into CI/CD pipelines, ensuring continuous compliance and centralized visibility across cloud environments.

By the end of this session, you will understand how Tirith can enhance your cloud infrastructure's compliance and security through automated, streamlined policy enforcement.
Speakers
avatar for Monika

Monika

Senior Assoc Tech Consultant, Ahead
- Senior Assoc Tech Consultant @Ahead- Worked with 4 early stage startups.- Organizer at CNCF Gurgaon, India- Mentored 60+ Students Currently.
Thursday November 14, 2024 12:30pm - 12:55pm PST
VIRTUAL CloudX -- Stage 1
  CloudX: DevOps Summit, CI/CD

1:00pm PST

[Virtual] OPEN SESSION (CloudX): The Critical Role of Observability in Cloud Native Applications: Ensuring Reliability and Minimizing Downtime
Thursday November 14, 2024 1:00pm - 1:25pm PST
VIRTUAL CloudX -- Main Stage
Greg Leffler, Splunk, Director of Developer Evangelism - Observability

As organizations have moved to the cloud and increased their pace of innovation to ship software more often, it becomes harder to validate the impact of changes – both to their business and to their customers’ experience. That’s where Observability comes into play. Observability has emerged as a critical aspect of cloud native applications due to its ability to provide comprehensive insights into the complex and dynamic environments these applications operate within. By enabling real-time monitoring, tracing, and logging, observability allows users to proactively identify and resolve performance issues, improve reliability and build better digital experiences. This is crucial in helping organizations lower the cost of unplanned downtime and be more resilient.

Downtime not only results in direct financial losses, often quantified in thousands of dollars per minute for large enterprises, but also incurs indirect costs such as reduced customer satisfaction, loss of trust, and potential long-term reputational damage. To illustrate these benefits, we will demonstrate a troubleshooting scenario in a microservice environment using an advanced observability tool, showcasing how timely insights can present and resolve issues efficiently. As a result, investing in robust observability tools and practices is essential for maintaining the reliability and efficiency of cloud native applications, ultimately supporting business continuity and growth.
Speakers
avatar for Greg Leffler

Greg Leffler

Director of Developer Evangelism - Observability, Splunk
Greg Leffler heads the Observability Developer Evangelism team at Splunk and is on a mission to spread the good word of Observability to the world. Greg's career has taken him from the NOC to SRE, from SRE to management, with side stops in security and editorial functions. In addition... Read More →
Thursday November 14, 2024 1:00pm - 1:25pm PST
VIRTUAL CloudX -- Main Stage
  CloudX: DevOps Summit, Observability

1:30pm PST

[Virtual] OPEN SESSION (CloudX): Unlocking the Promise of AIOps: Leveraging AI to Realize Full-Context Operations
Thursday November 14, 2024 1:30pm - 1:55pm PST
VIRTUAL CloudX -- Main Stage
Fred Koopmans, BigPanda, Chief Product Officer

Context is fundamental to well-run tech operations: With the right context, IT teams can better understand their systems, interpret real-time data quickly, and facilitate better incident management to achieve operational efficiency. But too often, gathering the necessary context is a lengthy, inconsistent, and elusive process. IT teams are forced to grapple with fragmented tools, siloed workflows, and inconsistent manual processes, which have turned context collection into a definitive pain point for the ITOps industry. Teams are losing out on precious time, money, and attention that should be directed towards digital transformation and innovation.

The tech industry has recently transformed thanks to the AI boom: ITOps is at a critical juncture where AI can enable faster, more efficient ITOps as well as deliver Full-Context Operations. Fred Koopmans, Chief Product Officer of AIOps platform BigPanda, will speak to the promise of Full-Context Operations – the process of unifying IT teams’ tools and processes with AI to provide the institutional knowledge needed to address every incident immediately. He’ll dive deep into the ways that teams can tangibly benefit from having the right context, outlining how the IT industry can leverage AI to collect comprehensive and contextual data to help operators achieve better incident resolution. Fred can share detailed proof points from developing BigPanda’s AI-powered assistant that was purpose-built for delivering full context in IT operations. With Full-Context Operations, the IT industry can finally fulfill the long-sought-after promise of AIOps, putting AI into practice to deliver unprecedented operational efficiency.
Speakers
avatar for Fred Koopmans

Fred Koopmans

Chief Product Officer, BigPanda
Fred Koopmans, BigPanda's Chief Product Officer, is dedicated to driving innovation and collaboration, building trusted partnerships with customers, creating product roadmaps, and empowering individuals to achieve the extraordinary. He leads product strategy, product management, product... Read More →
Thursday November 14, 2024 1:30pm - 1:55pm PST
VIRTUAL CloudX -- Main Stage
  CloudX: DevOps Summit, Automated Testing & Monitoring & Reporting

2:00pm PST

[Virtual] PRO SESSION (CloudX): Building Robust Networks: The Power of CI/CD in Network Validation
Thursday November 14, 2024 2:00pm - 2:25pm PST
VIRTUAL CloudX -- Stage 1
Naveen Achyuta, Roblox, Network Reliability Engineer

While CI/CD practices are well-established in software development, the networking field is still adapting to these methodologies. This presentation demonstrates a method for validating network configurations in a lab environment, both pre- and post-deployment, to build confidence before implementing changes in production networks. Using open-source tools, custom scripts, and containerlab, we'll walk through each step of implementing a CI/CD pipeline. This approach not only enhances confidence in network deployments but also bridges the gap between traditional networking practices and modern DevOps methodologies. 
Speakers
avatar for Naveen Achyuta

Naveen Achyuta

Network Reliability Engineer, Roblox
Naveen works as a Network Reliability Engineer at Roblox and lives in the Bay Area. After graduating with his master's degree, he initially worked as a network engineer at Comcast. He then transitioned to network software engineering to build network automation systems that streamline... Read More →
Thursday November 14, 2024 2:00pm - 2:25pm PST
VIRTUAL CloudX -- Stage 1
  CloudX: DevOps Summit, CI/CD

2:30pm PST

[Virtual] PRO SESSION (CloudX): Petabyte-Scale Deployments: Balancing Immutability and Flexibility
Thursday November 14, 2024 2:30pm - 2:55pm PST
VIRTUAL CloudX -- Stage 1
Anup Ghatage, Salesforce, Lead Member of Technical Staff
Varun Shah, Salesforce, Software Engineer

At Salesforce, our team does Kubernetes deployments at the petabyte scale, with 100+ clusters, 10000+ pods, and 25+ PiB of provisioned storage and innumerable Kubernetes jobs. Operating at this massive scale necessitates an approach that reduces engineering toil. Maintaining such mammoth clusters while keeping security in mind is a whole different challenge.

We specifically talk about how and why we picked immutability and Infra-as-code as the cornerstone of our design and the challenges around it. Immutability provides security and scalability and eliminates config drift. Infra-as-code guarantees that changes to our infrastructure follow the same software lifecycle. but the trade-off is a lack of flexibility to adapt to changing requirements.

In this talk, we go over the unique design choices that help us manage, grow, and configure petabyte-scale deployments at Salesforce.
Speakers
avatar for Anup Ghatage

Anup Ghatage

Lead Member of Technical Staff, Salesforce
Anup works on Salesforce's Infrastructure platform.Previously, he has worked on database internals, query processing and storage at SAP, Cisco Systems and other companies for more than 8 years. Anup holds a BS from the University of Pune and an MS from Carnegie Mellon University... Read More →
avatar for Varun Shah

Varun Shah

Software Engineer, Salesforce
BE with a specialization in Computer EngineeringMS in Electrical EngineeringWorking on enterprise software since 2009 with companies like Brocade (now Broadcom) / VMware and currently with Salesforce.Using cloud native technologies to scale Salesforce software stack.
Thursday November 14, 2024 2:30pm - 2:55pm PST
VIRTUAL CloudX -- Stage 1
  CloudX: DevOps Summit, Infrastructure-as-Code
 
Share Modal

Share this link via

Or copy link

Filter sessions
Apply filters to sessions.
Monday, November 4
Tuesday, November 5
Wednesday, November 6
Thursday, November 7
Tuesday, November 12
Wednesday, November 13
Thursday, November 14
API World -- Expo Discovery Stage
API World -- Main Stage
API World -- OPEN Workshop Stage
API World -- Workshop Stage A
API World -- Workshop Stage B
API World -- Workshop Stage C
CloudX -- Expo Innovation Stage
CloudX -- Main Stage
CloudX -- Stage 1
Dev Innovation Summit -- Main Stage
Expo Hall
RingCentral Events
Santa Clara Convention Center
Santa Clara Convention Center - Lobby
Santa Clara Hyatt Regency Lobby
VIRTUAL API World -- Expo Discovery Stage
VIRTUAL API World -- Main Stage
VIRTUAL API World -- OPEN Workshop Stage
VIRTUAL API World -- Workshop Stage A
VIRTUAL API World -- Workshop Stage B
VIRTUAL API World -- Workshop Stage C
VIRTUAL CloudX -- Expo Innovation Stage
VIRTUAL CloudX -- Main Stage
VIRTUAL CloudX -- Stage 1
VIRTUAL Dev Innovation Summit -- Main Stage
Virtual Expo Hall
  • 1. Badge Pick-up & Registration
  • 2. Experiences & Official Events
  • 3. Expo Hours
  • 4. Hackathon
  • 5. KEYNOTES & FEATURED
  • API World: API Innovation
  • API World: API Strategy
  • API World: Lifecycle
  • API World: Microservices World
  • CloudX: Cloud Architecture & Infrastructure
  • CloudX: Cloud-Native Development
  • CloudX: Cloud Strategy Conference
  • CloudX: DevOps Summit
  • Dev Innovation Summit
  • OPEN SESSIONS
  • Talk Type
  • OPEN Session
  • PRO Session
  • PRO Workshop
  • Track or Conference
  • AI & ML (CloudX)
  • API Case Studies & Success Stories (API World)
  • API Design / Architecture (API World)
  • API Leadership Summit (API World)
  • API Ops & Scalability & Usability (DX) & Testing (API World)
  • API Program Management (API World)
  • API Security / Compliance (API World)
  • API World
  • API World: API Innovation
  • API World: API Lifecycle
  • API World: API Strategy
  • API World: Microservices World
  • API-First Development (API World)
  • APIs (Dev Innovation)
  • Automated Testing & Monitoring & Reporting (CloudX)
  • CI/CD (CloudX)
  • CI/CD / Deployment (API World)
  • Cloud Development Technologies (CloudX)
  • Cloud Development Technologies (Dev Innovation)
  • Cloud Infrastructure (CloudX)
  • Cloud Innovation (AI & Edge & etc) (CloudX)
  • Cloud Security (CloudX)
  • Cloud Talent & Skills (CloudX)
  • CloudX
  • CloudX: Cloud Architecture & Infrastructure
  • CloudX: Cloud Strategy Conference
  • CloudX: Cloud-Native Development
  • CloudX: DevOps Summit
  • Containers & Kubernetes (CloudX)
  • Deployment Strategies (CloudX)
  • Dev Innovation (CloudX)
  • Dev Innovation Summit
  • Developer Tools (Dev Innovation)
  • DevSecOps (CloudX)
  • Digital Acceleration (CloudX)
  • Emerging APIs: AI & IoT & Blockchain & Web3 & XR (API World)
  • Future of Cloud-Native Computing (CloudX)
  • Hybrid & Multi-Cloud (CloudX)
  • Hybrid APIs & Low Code APIs (API World)
  • Industries: Open Banking & Healthcare & Retail (API World)
  • Infrastructure-as-Code (CloudX)
  • Integration Management (API World)
  • Microservices Design & Architecture (API World)
  • Microservices Design (CloudX)
  • Microservices Management (CloudX)
  • Observability (CloudX)
  • OPEN Session
  • Platform Engineering (API World)
  • Programming Languages (Dev Innovation)
  • Roundtables
  • Service Mesh & Containers & Kubernetes (API World)
  • Sponsor Spotlight
  • Virtual
  • In-Person/Virtual
  • In Person
  • Virtual
  • Virtual Exclusive