How to work in devsecops

•

2 gefällt mir•643 views

This is a no-punches-pulled honest conversation about authentic dev-sec-ops and not the vendor favourite buzzwords that have become proper nouns and marketing hooks. We investigated an (updated) definition of done; how we are sometimes unknowingly still creating silos; some anti-patterns in devops; how to possibly structure your transformations and your teams; how to engage your staff; which roles to include and if any are excluded; how the 'shifting left' movement should include operations and security too; and more.

Technologie

Dev Sec Ops
And QA, and Product, and UX,
and other team members.
Theresa Neate
30 May 2018

©2018 theresaneate.com https://twitter.com/TheresaNeate
Introductions
Theresa Neate
● Lead QA & Developer Advocate at REA Group
● Writer at DevOps Agenda (TechTarget)
● Advisory Board member at DevOps Agenda
● DevOps Girls Co-organiser
images: https://twitter.com/MillyRowboat
2

©2018 theresaneate.com https://twitter.com/TheresaNeate
History of devops
2001
Agile Manifesto
2009
Velocity Conference
Allspaw and Hammond
“10+ Deploys Per Day...”
Agile conference Toronto
Debois & Shafer
“Agile Infrastructure”
2008
Origins of Lean
Goldratt
Ohno
Deming
~1940s to ~1997
devopsdays
Patrick Debois
2009
3

©2018 theresaneate.com https://twitter.com/TheresaNeate
devops is not this
4

©2018 theresaneate.com https://twitter.com/TheresaNeate
nor this
5

©2018 theresaneate.com https://twitter.com/TheresaNeate
nor this
6

©2018 theresaneate.com https://twitter.com/TheresaNeate
nor this
7

©2018 theresaneate.com https://twitter.com/TheresaNeate
nor this
8

©2018 theresaneate.com https://twitter.com/TheresaNeate
Faulty interpretation of dev(sec)ops
Is that it excludes
roles or disciplines
not explicitly
mentioned.
9

©2018 theresaneate.com https://twitter.com/TheresaNeate
Just because devops doesn’t say SEC
Does not mean
Security is not
included!
10

©2018 theresaneate.com https://twitter.com/TheresaNeate
dev(sec)ops is about working together
ALL of us.
11

©2018 theresaneate.com https://twitter.com/TheresaNeate
How do we do that?
Because devsecops is devops which explicitly mentions
Security ...
And devops is agile infrastructure …
And agile infrastructure is about agility …
12

©2018 theresaneate.com https://twitter.com/TheresaNeate
The answers lie in its origins of lean &
agility
13

©2018 theresaneate.com https://twitter.com/TheresaNeate
The answers lie in lean & agile (cont’d)
14
http://agilemanifesto.org/principles.html
“Deliver working software frequently”
“Build projects around motivated
individuals. ...”
“The most efficient and effective
method of conveying information to
and within a development team is
face-to-face conversation.”
“Working software is the primary
measure of progress.”
“Continuous attention to technical
excellence and good design enhances
agility.”
“Simplicity--...is essential.”

©2018 theresaneate.com https://twitter.com/TheresaNeate
How some have defined dev-sec-ops
15
http://www.devsecops.org/

©2018 theresaneate.com https://twitter.com/TheresaNeate
Theresa’s translation
16
1. Proactivity
2. Efficiency & Lean
3. Feedback
4. Systems thinking
5. Continuous
learning
6. CAMS - Culture,
Automation,
Measurement,
Sharing

©2018 theresaneate.com https://twitter.com/TheresaNeate
“Done” without security (or ops) is not
DONE
17

©2018 theresaneate.com https://twitter.com/TheresaNeate
A possible day in the life of dev-sec-ops
1. Work is broken into small pieces
2. Definition of done is defined,
including security and ops and
monitoring and testing
requirements for THAT story/task
a. Automated tests written
against these requirements
3. These “non functional”
requirements are coded in (as
much as possible) alongside the
functionality (security as code,
infrastructure as code)
18

©2018 theresaneate.com https://twitter.com/TheresaNeate
A day in the life of dev-sec-ops (cont’d)
4. Local tests pass (bring on the early feedback!)
5. If tests pass, code is committed to CI and integrated to trunk
6. Wider automated (integration, etc.) tests are run where applicable, including
security tests as part of build pipeline
7. If required, manual tests are done, e.g. security scan, exploratory testing, etc.
8. Rinse, repeat.
It’s just how the team flows: no afterthoughts, quality is baked in.
19

©2018 theresaneate.com https://twitter.com/TheresaNeate
The danger of proper noun “models”
20
https://pragdave.me/blog/2014/03/04/time-to-kill-agile.html

©2018 theresaneate.com https://twitter.com/TheresaNeate
The danger of proper noun “models”
21

©2018 theresaneate.com https://twitter.com/TheresaNeate
Closing
22

©2018 theresaneate.com https://twitter.com/TheresaNeate
Thank You!
Questions?
23
(See next page for reading
suggestions)

©2018 theresaneate.com https://twitter.com/TheresaNeate
Reading
The Phoenix Project: A Novel About IT, DevOps, and Helping Your Business Win by Gene Kim, Kevin Behr,
George Spafford, IT Revolution Press, 2013.
http://www.devsecops.org/
http://itrevolution.com/devops-culture-part-1/
https://itrevolution.com/the-three-ways-principles-underpinning-devops/
https://devopsagenda.techtarget.com/opinion/Its-past-time-to-revisit-Agiles-definition-of-done
https://xp123.com/articles/coaching-drills-and-exercises/
https://www.agilealliance.org/the-agile-root-of-devops/
https://twitter.com/royrapoport/status/996013869230272512
https://pragdave.me/blog/2014/03/04/time-to-kill-agile.html
24

Weitere ähnliche Inhalte

Was ist angesagt?

Imagine this … As soon as any developed functionality is submitted into the code repository, it is automatically subjected to the appropriate battery of tests and then released straight into production. Setting up the pipeline capable of doing just that is becoming more and more common and something you need to know about. But most organizations hit the same stumbling block—just what IS the appropriate battery of tests? Automated build architectures don't always lend themselves well to the traditional stages of testing. In this hands-on tutorial, Melissa Benua introduces you to key test design principles—applicable to organizations both large and small—that allow you to take full advantage of the pipeline's capabilities without introducing unnecessary bottlenecks. Learn how to make highly reliable tests that run fast and preserve just enough information to let testers and developers determine exactly what went wrong and how to reproduce the error locally. Explore ways to reduce overlap while still maintaining adequate test coverage. Take back ideas about which test areas could benefit from being combined into a single suite and which areas could benefit most from being broken out altogether.

Test Design for Fully Automated Build Architecture

TechWell

Project Priority Status Report

Demand Metric

SESSION TITLE Defying Parkinson's Law: Sustainable Development and Beyond SESSION THEME Agility SESSION OVERVIEW "Work expands so as to fill the time available for its completion", can we afford it during a sprint? Agile team need to focus on delivering value and eliminating waste. They need to cut down the distractions and non-productive time. Pomodoro Technique along with Time boxing and paired programming can be very effective to increase productivity. Eisenhower's Urgent/Important Principle comes in handy when team need to prioritize their activities. In today’s competitive era, time to market is shrinking, so cycle time should be reduced and learning feedback loop needs to be speedup. In this presentation paper, an effort has been made to describe about how to manage time effectively during a sprint. It illuminates some innovative insights into areas like DoD, time boxing, task slack, WIP, task switching, pair programming, osmotic communication, disciplined delivery and value stream mapping etc. For an effective time management team can utilize Parkinson’s law to define sustainable development in their workplace. SESSION AGENDA Parkinson’s Law and Sustainable Development? Effective Time Management Eisenhower's Urgent/Important Principle Pomodoro Principle Cut down the distractions and non-productive time Better Agile Practices: like DoD, time boxing, task slack, WIP, task switching, pair programming, osmotic communication, disciplined delivery and value stream mapping etc. SESSION TAKEAWAYS What is Sustainable and Unsustainable development? Tasks prioritization techniques Time Management Continual refinement How to inculcate sustainable development in work culture DURATION 45 Mins

Defying Parkinson’s Law: Sustainable Development and Beyond | Talk | AGILE GU...

AgileNetwork

Why agile

Luis Gonçalves, CSP

DOES SFO 2016 - Greg Padak - Default to Open

Gene Kim

This session (and slide deck) was specifically created for training and consulting companies interested in offering DevOps training courses. Jayne Groll, co-founder of ITSM Academy and an expert on ITSM, Agile, Scrum DevOps, leading the session. This deck covers: 1. A brief overview of DevOps – its history, concepts and relationship to other frameworks such as Agile and ITSM 2. The increasing interest in DevOps at the enterprise level 3. The value of adding DevOps training to your portfolio -Small / Medium Size Training Companies -Large Training Companies -Consulting Companies 4. Scenario’s for Successfully Going to Market with DevOps 5. How You Can Get Started

Enterprise DevOps: Crossing the Great Divide with DevOps Training

ITpreneurs

Three pillars of components in the design system

Czech Design Systems Community

What makes Continuous Delivery easy and what makes it hard? Should it be all Scala + Docker + microservices or is .Net + Windows + monoliths a safer bet? This session compares and contrasts the successful continuous delivery journeys of two completely different cultures. Both achieved weekly releases to Production, but one was a .Net monolith, the other a set of Scala microservices. We’ll explore the lessons learnt by looking at the blockers and accelerators each faced.

Lyndsay Prewer - Smoothing the continuous delivery path - a tale of two teams

Agile Lietuva

The Business Value of Test-Driven Development

Rob Myers

How is testing different in a DevOps agile team. A perspective from the team.

TEST Huddle

Assessing the business value of Agile Engineering Practices

Rob Myers

Continuous Testing: Preparing for DevOps

STePINForum

How do you become a high performing technology team? It all comes down to execution. Over the past five years, the State of DevOps Report has shown how the highest-performing technology teams decisively outperform their lower-performing peers. Dr. Nicole Forsgren shares insights into the key technical, architectural, and product capabilities that drive these outcomes, including new findings from cloud, outsourcing, and open source. She offers highlights and surprises uncovered over the last five years from over 30,000 responses.

Software as Craft

Nicole Forsgren

DevOps and Continuous Delivery Reference Architectures (including Nexus and o...

Sonatype

(Talk given at Continuous Lifecycle London 2016) Continuous Delivery techniques and practices are often misunderstood. This session will explore some Continuous Delivery anti-patterns based on work 'in the wild' with a wide range of organisations across different industry sectors: - Believing that "Continuous Delivery is not for us" - Ignoring the database - Thinking that a deployment pipeline is just a series of chained jobs in Jenkins - Not funding the build/test/deployment capability properly - No effective logging or application metrics By avoiding these pitfalls, we can increase the effectiveness of our software delivery efforts.

Continuous Delivery antipatterns from the wild - Matthew Skelton - Continuous...

Skelton Thatcher Consulting Ltd

Presentatie vtwonen

SanomaCrossing

DevOpsGuys FutureDecoded 2016 - is DevOps the Answer

DevOpsGroup

2012 - A Release Odyssey

Ernest Mueller

Agile Past The Team - Pillar Template

Mike Cottmeyer

How do you become a high performing technology organization? Over the past five years, the State of DevOps Report has shown how the highest-performing technology teams decisively outperform their lower-performing peers. The report has also investigated the effects of burnout, culture and employee engagement on organizational performance. Nicole Forsgren shares insights into the key leadership, technical, architectural, and product capabilities that drive these outcomes, including new findings from cloud, outsourcing, and open source. She offers highlights and surprises uncovered over the last five years from over 30,000 responses.

The Data Behind DevOps: What Does it Take to be a High Performer? Jenkins Wor...

Nicole Forsgren

Was ist angesagt? (20)

Test Design for Fully Automated Build Architecture

Project Priority Status Report

Defying Parkinson’s Law: Sustainable Development and Beyond | Talk | AGILE GU...

Why agile

DOES SFO 2016 - Greg Padak - Default to Open

Enterprise DevOps: Crossing the Great Divide with DevOps Training

Three pillars of components in the design system

Lyndsay Prewer - Smoothing the continuous delivery path - a tale of two teams

The Business Value of Test-Driven Development

How is testing different in a DevOps agile team. A perspective from the team.

Assessing the business value of Agile Engineering Practices

Continuous Testing: Preparing for DevOps

Software as Craft

DevOps and Continuous Delivery Reference Architectures (including Nexus and o...

Continuous Delivery antipatterns from the wild - Matthew Skelton - Continuous...

Presentatie vtwonen

DevOpsGuys FutureDecoded 2016 - is DevOps the Answer

2012 - A Release Odyssey

Agile Past The Team - Pillar Template

The Data Behind DevOps: What Does it Take to be a High Performer? Jenkins Wor...

Ähnlich wie How to work in devsecops

DevOps Days New Zealand 2018 talk. "Really? Testers do DevOps? Don’t swing from the fully sick enterprise waterfall model with battery hens of QAs gate-keeping releases & acting like bullish custodians of quality to the other end of the swing where we don’t need specialists, not Ops, nor QA. Where do your testers still add value?" https://www.devopsdays.org/events/2018-wellington/program/theresa-neate/

Lean QAs : T-shaped QAs in the DevOps world

Theresa Neate

Salesforce empowers non-programmers to become App Builders and declarative developers in ways that administrators could only dream of before Visual Workflow and Process Builder had been introduced. With great powers comes great responsibility, and just because you actually could click a sweet process straight in production doesn’t mean that you should do so. Meighan and Daniel are going to present patterns for building your apps not just faster, but also better, more sustainable, and more robust. Slides from our presentation at Tahoe Dreamin 2018 - Jan 19, 2018

IT SIMPLY WORKS! … UNTIL IT BREAKS. STANDARDS, BEST PRACTICE AND ENTERPRISE P...

Daniel Stange

DevOps Roadtrip Final Speaking Deck

VictorOps

DevOps Game Theory / Observability Deck

Kevin Crawley

This presentation was delivered at the XP Days Ukraine conference in November of 2019. In this presentation we demonstrate how putting both developers and operations on-call and adopting DevOps methodologies are capable of transforming software developement organizations. Once the silos are torn down, a new challenge emerges, and that's around observability and monitoring the onslaught of new services and features that the organization is prepared to deliver now that they've been transformed into high and elite performing development teams.

Changing the Game: Breaking Down IT Silos

Kevin Crawley

Tools and practices to use in a Continuous Delivery pipeline

Matteo Emili

Processing Twitter Stream with Oracle Event Processing (OEP)

Trivadis

Many of the IBM Lotus Notes customers are switching over to Microsoft SharePoint for their team rooms, discussions, document libraries, and many other custom applications. While this exodus off Notes has been happening over the past decade, it has become more of a custom in the past year. As an IT Manager owning the migration project, it is imperative that you plan a detailed approach of migration that includes methodology, tools & decide on what to migrate before embarking on this endeavour. In this webinar, you will learn about: ● Third party workflow solutions on Sharepoint Online ● Nintex and how it helps migration ● Best Practices of migrating applications to Sharepoint Online when using Nintex Workflows ● Challenges and how to overcome them ● Live demo of how to build using Nintex Workflows

Migrating Lotus Notes Applications to Sharepoint Online with Nintex

Maarga Systems

IT SIMPLY WORKS! … UNTIL IT BREAKS. STANDARDS, BEST PRACTICE AND ENTERPRISE PATTERNS FOR DECLARATIVE SOFTWARE DEVELOPMENT Presentation held by Meighan Brodkey and Daniel Stange at Tahoe Dreamin', Jan 19, 2018 Salesforce empowers non-programmers to become App Builders and declarative developers in ways that administrators could only dream of before Visual Workflow and Process Builder had been introduced. With great powers comes great responsibility, and just because you actually could click a sweet process straight in production doesn’t mean that you should do so. Meighan and Daniel are going to present patterns for building your apps not just faster, but also better, more sustainable, and more robust.

Tahoe Dreamin 2018: It simply works... until it breaks!

Daniel Stange

Tous les développeurs entendent parler d'AngularJs et de toute la magie que cette plateforme peur faire pour vos applications. Afin de démarrer votre aventure avec AngularJS, cette session est une introduction aux concepts AngularJS appliqués à tout développement Office365. Les différentes expériences d'Office365 seront traitées (Mail, Calendrier, Fichiers, etc.) et le Microsoft Graph sera notre principale source de données. En tant que développeur, vous apprendrez les concepts de base d'AngularJS et serez en mesure de les appliquer dans un contexte Office 365. Vous serez alors en mesure de développer des applications riches (SPA ou Single Page Application) qui utilisent les données stockées dans votre tenant Office365!

SharePoint Saturday Paris 2016 - AngularJS with the Microsoft Graph

Sébastien Levert

WinOps Conf 2015 - Steve Thair - Why we need a DevOps on Windows Conference

WinOps Conf

What would happen if we would bring design, front end, back end etc. all together? How could we improve the user-flows by thinking of alternative, non-happy flows? What would happen to the performance and therefore the user-experience when back end is already involved before the finalised wireframes are handed over?! That's all nice and dandy. But we do need to deal with some concerns like: - Knowledge gap: How can the different disciplines with their specialty understand each other and come to conclusions? - Shared responsibilities: Where do start and where do they end? - Efficiency: What would it do to the efficiency of the team when they get different tasks? In this session we’ll dive in together; - seeing what the pro's and con's are of a multidisciplinaire way of working, - what tips and tricks can be exchanged, - and what kind of tools can help in smoothing out the concerns that arise

Co-creating_UX_Software_DevoxxBE.pdf

SimonedeGijt

Observe Changes of Taiwan Big Data Communities with Small Data

Jazz Yao-Tsung Wang

"Top Tips for Maximizing Tealium iQ" - First Data + WAD, Digital Velocity 2015

Tealium

20100214 TweeSpeed @ CafeNumerique

Pascal Alberty

DevOps Roadtrip Minneapolis

VictorOps

DevOps Roadtrip NYC

VictorOps

The DevOps First Amendment

Fawzy Manaa

This session will present how to connect to the Twitter Streaming API and process and analyse the tweets in real-time by using Oracle Event Processing. We will see how typical analytics on a such social media data can be done directly on the event stream using Java and/or the Continuous Query Language (CQL). How do we best store the results, so that they can be made available continously to a dashboard for presentation will be shown as well. Additionally the so-called Lambda architecture will be presented, where such an event streaming solution plays a critical part, in combination with a Big Data batch processing layer.

Processing Twitter Stream with Oracle Event Processing (OEP)

Guido Schmutz

20210428 - Sustainable Engineering practices & API Communities: Adoption Best...

Angel Alberici

Ähnlich wie How to work in devsecops (20)

Lean QAs : T-shaped QAs in the DevOps world

IT SIMPLY WORKS! … UNTIL IT BREAKS. STANDARDS, BEST PRACTICE AND ENTERPRISE P...

DevOps Roadtrip Final Speaking Deck

DevOps Game Theory / Observability Deck

Changing the Game: Breaking Down IT Silos

Tools and practices to use in a Continuous Delivery pipeline

Processing Twitter Stream with Oracle Event Processing (OEP)

Migrating Lotus Notes Applications to Sharepoint Online with Nintex

Tahoe Dreamin 2018: It simply works... until it breaks!

SharePoint Saturday Paris 2016 - AngularJS with the Microsoft Graph

WinOps Conf 2015 - Steve Thair - Why we need a DevOps on Windows Conference

Co-creating_UX_Software_DevoxxBE.pdf

Observe Changes of Taiwan Big Data Communities with Small Data

"Top Tips for Maximizing Tealium iQ" - First Data + WAD, Digital Velocity 2015

20100214 TweeSpeed @ CafeNumerique

DevOps Roadtrip Minneapolis

DevOps Roadtrip NYC

The DevOps First Amendment

Processing Twitter Stream with Oracle Event Processing (OEP)

20210428 - Sustainable Engineering practices & API Communities: Adoption Best...

Mehr von Theresa Neate

You might well wonder what “intelligent” software engineering is. The Britannica Dictionary defines the word “intelligent”: as: “having or showing the ability to easily learn or understand things or to deal with new or difficult situations”. Software Engineering is a specialised discipline, and can be done well or badly. So too, leadership. And so too, software engineering leadership. In this talk, Theresa Neate will discuss how to intelligently lead Software Engineering. And also what that synergy and symbiosis with its partners Product and Design looks like: where engineering is adaptive, resilient and above all co-leads mutual success in building products that customers love. https://agileaustralia.com.au/2023/theresa-neate/ https://theresaneate.net

Leadership for Intelligent Software Engineering - Agile Australia 2023

Theresa Neate

Everything we do has consequences, good or bad. That is because everything—while it sometimes may appear independent—is always interdependent. Interdependence is fundamental to systems. Our life is a system. Everything is also, conversely, a component of a bigger system. We call this systems thinking. https://www.linkedin.com/posts/devsecops-days-melbourne_conference-onlineconference-devsecops-activity-6859021278280605696-eEqY

DevSecOps Days Melbourne 2021 - Systems thinking, incidents, and the support ...

Theresa Neate

Testing and Quality: Correlation does not equal Causation

Theresa Neate

Presented to meetup : https://www.meetup.com/the-web/events/268161161/ Talk: How often have you heard "Our quality is poor, we need more testing (or testers)"? When you hear this, know that this indicates a fundamental misunderstanding of what testing is or does. Improving or increasing testing does not necessarily lead to improved quality. While testing and quality can be correlated, let's talk about how they are distinct as disciplines and in causality. Speaker: Theresa Neate is a QA practice lead & developer advocate, who loves lean and agility and advocates for holistic system quality and systems thinking. Her recent experience includes ThoughtWorks, Australia Post’s Digital Delivery Centre and since early 2016 she has been at digital media icon REA Group. You can find out more about her here: https://theresaneate.com/

Testing and Quality: Correlation does not equal Causation

Theresa Neate

DevOpsGirls at TConf 2019

Theresa Neate

This is a lighthearted but realistic conversation where I challenge some of the buzzwords, including DevOps itself. And what 'cargo-culting' looks like in this space. I will then further discuss how Testers are and have always been members of DevOps, and what this looks like practically. The voice that I bring is a different perspective of keeping things sensible, away from extremism or “cargo culting” or fanaticism. My focus is on pragmatism and finding your place in this conversation. https://www.ministryoftesting.com/events/testbash-australia-2019

DevOps Mythbusting

Theresa Neate

Every team has a customer. You’ve heard of Customer Experience and User Experience. Now, allow Theresa Neate to introduce Developer Experience! Your developers and tech staff are customers, too. They are both your customers when you provide services to them such as build and deployment tools, and customers of any external services and tools they use. They’re also users. They are users of interfaces, tools, libraries and platforms. As a highly skilled technology staff, do the rules of CX and DX apply to them? http://agileaustralia.com.au/2019/speakers/theresa-neate/

What is Developer Experience, and why does it matter?

Theresa Neate

Theresa Neate at Dev Ops Girls Feb 2019

Theresa Neate

Quality Analysts (QAs) are not there to assure quality. They are there to analyse quality and quality practices and advise on approaches to system quality. They are particularly good at helping mitigate quality risks because of their trained ability to question what seems to be there. They are neither the gatekeepers of the releases, nor meant to be the bottlenecks for testing, nor the owners of quality. We always need testing and feedback, but do we always need testers? Sometimes we do, and sometimes we don’t. This talk is knowing when one is relevant and then knowing HOW to be relevant. This includes looking after your career as QA and staying ahead of the curve and remaining employable.

Evolving and remaining relevant as QA - TConf 2018

Theresa Neate

Agile Testing - LAST Conference 2015

Theresa Neate

Agile Testing - First Conference 2015 - Melbourne Australia

Theresa Neate

Mehr von Theresa Neate (11)

Leadership for Intelligent Software Engineering - Agile Australia 2023

DevSecOps Days Melbourne 2021 - Systems thinking, incidents, and the support ...

Testing and Quality: Correlation does not equal Causation

DevOpsGirls at TConf 2019

DevOps Mythbusting

What is Developer Experience, and why does it matter?

Theresa Neate at Dev Ops Girls Feb 2019

Evolving and remaining relevant as QA - TConf 2018

Agile Testing - LAST Conference 2015

Agile Testing - First Conference 2015 - Melbourne Australia

Kürzlich hochgeladen

Increase engagement and revenue with Muvi Live Paywall! In this presentation, we will explore the five key benefits of using Muvi Live Paywall to monetize your live streams. You'll learn how Muvi Live Paywall can help you: Monetize your live content easily: Set up pay-per-view access to your live streams and start generating revenue from your content. Increase audience engagement: Provide exclusive, premium content behind the paywall to keep your viewers engaged. Gain valuable viewer insights: Track viewer data and analytics to better understand your audience and tailor your content accordingly. Reduce content piracy: Muvi Live Paywall's security features help protect your content from unauthorized distribution. Streamline your workflow: The all-in-one platform simplifies the process of managing and monetizing your live streams. With Muvi Live Paywall, you can take control of your live stream monetization and create a sustainable business model for your content. Learn more about Muvi Live Paywall and start generating revenue from your live streams today!

Top 5 Benefits OF Using Muvi Live Paywall For Live Streams

Roshan Dwivedi

Boost Fertility New Invention Ups Success Rates.pdf

sudhanshuwaghmare1

Following the popularity of "Cloud Revolution: Exploring the New Wave of Serverless Spatial Data," we're thrilled to announce this much-anticipated encore webinar. In this sequel, we'll dive deeper into the Cloud-Native realm by uncovering practical applications and FME support for these new formats, including COGs, COPC, FlatGeoBuf, GeoParquet, STAC, and ZARR. Building on the foundation laid by industry leaders Michelle Roby of Radiant Earth and Chris Holmes of Planet in the first webinar, this second part offers an in-depth look at the real-world application and behind-the-scenes dynamics of these cutting-edge formats. We will spotlight specific use-cases and workflows, showcasing their efficiency and relevance in practical scenarios. Discover the vast possibilities each format holds, highlighted through detailed discussions and demonstrations. Our expert speakers will dissect the key aspects and provide critical takeaways for effective use, ensuring attendees leave with a thorough understanding of how to apply these formats in their own projects. Elevate your understanding of how FME supports these cutting-edge technologies, enhancing your ability to manage, share, and analyze spatial data. Whether you're building on knowledge from our initial session or are new to the serverless spatial data landscape, this webinar is your gateway to mastering cloud-native formats in your workflows.

Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME

Safe Software

Tata AIG General Insurance Company - Insurer Innovation Award 2024

The Digital Insurer

Artificial Intelligence Chap.5 : Uncertainty

Khushali Kathiriya

The 7 Things I Know About Cyber Security After 25 Years | April 2024

Rafal Los

With more memory available, system performance of three Dell devices increased, which can translate to a better user experience Conclusion When your system has plenty of RAM to meet your needs, you can efficiently access the applications and data you need to finish projects and to-do lists without sacrificing time and focus. Our test results show that with more memory available, three Dell PCs delivered better performance and took less time to complete the Procyon Office Productivity benchmark. These advantages translate to users being able to complete workflows more quickly and multitask more easily. Whether you need the mobility of the Latitude 5440, the creative capabilities of the Precision 3470, or the high performance of the OptiPlex Tower Plus 7010, configuring your system with more RAM can help keep processes running smoothly, enabling you to do more without compromising performance.

Boost PC performance: How more available memory can improve productivity

Principled Technologies

Webinar Recording: https://www.panagenda.com/webinars/why-teams-call-analytics-is-critical-to-your-entire-business Nothing is as frustrating and noticeable as being in an important call and being unable to see or hear the other person. Not surprising then, that issues with Teams calls are among the most common problems users call their helpdesk for. Having in depth insight into everything relevant going on at the user’s device, local network, ISP and Microsoft itself during the call is crucial for good Microsoft Teams Call quality support. To ensure a quick and adequate solution and to ensure your users get the most out of their Microsoft 365. But did you know that ‘bad calls’ are also an excellent indicator of other problems arising? Precisely because it is so noticeable!? Like the canary in the mine, bad calls can be early indicators of problems. Problems that might otherwise not have been noticed for a while but can have a big impact on productivity and satisfaction. Join this session by Christoph Adler to learn how true Microsoft Teams call quality analytics helped other organizations troubleshoot bad calls and identify and fix problems that impacted Teams calls or the use of Microsoft365 in general. See what it can do to keep your users happy and productive! In this session we will cover - Why CQD data alone is not enough to troubleshoot call problems - The importance of attributing call problems to the right call participant - What call quality analytics can do to help you quickly find, fix-, and prevent problems - Why having retrospective detailed insights matters - Real life examples of how others have used Microsoft Teams call quality monitoring to problem shoot problems with their ISP, network, device health and more.

Why Teams call analytics are critical to your entire business

panagenda

ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke

Product Anonymous

MINDCTI Revenue Release Quarter One 2024

MIND CTI

The Good, the Bad and the Governed - Why is governance a dirty word? David O'Neill, Chief Operating Officer - APIContext Apidays New York 2024: The API Economy in the AI Era (April 30 & May 1, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...

apidays

The presentation explores the development and application of artificial intelligence (AI) from its inception to its current status in the modern world. The term "artificial intelligence" was first coined by John McCarthy in 1956 to describe efforts to develop computer programs capable of performing tasks that typically require human intelligence. This concept was first introduced at a conference held at Dartmouth College, where programs demonstrated capabilities such as playing chess, proving theorems, and interpreting texts. In the early stages, Alan Turing contributed to the field by defining intelligence as the ability of a being to respond to certain questions intelligently, proposing what is now known as the Turing Test to evaluate the presence of intelligent behavior in machines. As the decades progressed, AI evolved significantly. The 1980s focused on machine learning, teaching computers to learn from data, leading to the development of models that could improve their performance based on their experiences. The 1990s and 2000s saw further advances in algorithms and computational power, which allowed for more sophisticated data analysis techniques, including data mining. By the 2010s, the proliferation of big data and the refinement of deep learning techniques enabled AI to become mainstream. Notable milestones included the success of Google's AlphaGo and advancements in autonomous vehicles by companies like Tesla and Waymo. A major theme of the presentation is the application of generative AI, which has been used for tasks such as natural language text generation, translation, and question answering. Generative AI uses large datasets to train models that can then produce new, coherent pieces of text or other media. The presentation also discusses the ethical implications and the need for regulation in AI, highlighting issues such as privacy, bias, and the potential for misuse. These concerns have prompted calls for comprehensive regulations to ensure the safe and equitable use of AI technologies. Artificial intelligence has also played a significant role in healthcare, particularly highlighted during the COVID-19 pandemic, where it was used in drug discovery, vaccine development, and analyzing the spread of the virus. The capabilities of AI in healthcare are vast, ranging from medical diagnostics to personalized medicine, demonstrating the technology's potential to revolutionize fields beyond just technical or consumer applications. In conclusion, AI continues to be a rapidly evolving field with significant implications for various aspects of society. The development from theoretical concepts to real-world applications illustrates both the potential benefits and the challenges that come with integrating advanced technologies into everyday life. The ongoing discussion about AI ethics and regulation underscores the importance of managing these technologies responsibly to maximize their their benefits while minimizing potential harms.

Artificial Intelligence: Facts and Myths

Joaquim Jorge

In this session, we will delve into strategic approaches for optimizing knowledge management within Microsoft 365, amidst the evolving landscape of Copilot. From leveraging automatic metadata classification and permission governance with SharePoint Premium, to unlocking Viva Engage for the cultivation of knowledge and communities, you will gain actionable insights to bolster your organization's knowledge-sharing initiatives. In this session, we will also explore how to facilitate solutions to enable your employees to find answers and expertise within Microsoft 365. You will leave equipped with practical techniques and a deeper understanding of how there is more to effective knowledge management than just enabling Copilot, but building actual solutions to prepare the knowledge that Copilot and your employees can use.

Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...

Drew Madelung

Automating Google Workspace (GWS) & more with Apps Script

wesley chun

Strategies for Landing an Oracle DBA Job as a Fresher

Remote DBA Services

Partners Life - Insurer Innovation Award 2024

The Digital Insurer

Scaling API-first – The story of a global engineering organization

Radu Cotescu

Building Digital Trust in a Digital Economy Veronica Tan, Director - Cyber Security Agency of Singapore Apidays Singapore 2024: Connecting Customers, Business and Technology (April 17 & 18, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...

apidays

Real Time Object Detection Using Open CV

Khem

Join our latest Connector Corner webinar to discover how UiPath Integration Service revolutionizes API-centric automation in a 'Quote to Cash' process—and how that automation empowers businesses to accelerate revenue generation. A comprehensive demo will explore connecting systems, GenAI, and people, through powerful pre-built connectors designed to speed process cycle times. Speakers: James Dickson, Senior Software Engineer Charlie Greenberg, Host, Product Marketing Manager

Connector Corner: Accelerate revenue generation using UiPath API-centric busi...

DianaGray10

Kürzlich hochgeladen (20)

Top 5 Benefits OF Using Muvi Live Paywall For Live Streams

Boost Fertility New Invention Ups Success Rates.pdf

Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME

Tata AIG General Insurance Company - Insurer Innovation Award 2024

Artificial Intelligence Chap.5 : Uncertainty

The 7 Things I Know About Cyber Security After 25 Years | April 2024

Boost PC performance: How more available memory can improve productivity

Why Teams call analytics are critical to your entire business

ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke

MINDCTI Revenue Release Quarter One 2024

Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...

Artificial Intelligence: Facts and Myths

Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...

Automating Google Workspace (GWS) & more with Apps Script

Strategies for Landing an Oracle DBA Job as a Fresher

Partners Life - Insurer Innovation Award 2024

Scaling API-first – The story of a global engineering organization

Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...

Real Time Object Detection Using Open CV

Connector Corner: Accelerate revenue generation using UiPath API-centric busi...

How to work in devsecops

1. Dev Sec Ops And QA, and Product, and UX, and other team members. Theresa Neate 30 May 2018

2. ©2018 theresaneate.com https://twitter.com/TheresaNeate Introductions Theresa Neate ● Lead QA & Developer Advocate at REA Group ● Writer at DevOps Agenda (TechTarget) ● Advisory Board member at DevOps Agenda ● DevOps Girls Co-organiser images: https://twitter.com/MillyRowboat 2

3. ©2018 theresaneate.com https://twitter.com/TheresaNeate History of devops 2001 Agile Manifesto 2009 Velocity Conference Allspaw and Hammond “10+ Deploys Per Day...” Agile conference Toronto Debois & Shafer “Agile Infrastructure” 2008 Origins of Lean Goldratt Ohno Deming ~1940s to ~1997 devopsdays Patrick Debois 2009 3

12. ©2018 theresaneate.com https://twitter.com/TheresaNeate How do we do that? Because devsecops is devops which explicitly mentions Security ... And devops is agile infrastructure … And agile infrastructure is about agility … 12

14. ©2018 theresaneate.com https://twitter.com/TheresaNeate The answers lie in lean & agile (cont’d) 14 http://agilemanifesto.org/principles.html “Deliver working software frequently” “Build projects around motivated individuals. ...” “The most efficient and effective method of conveying information to and within a development team is face-to-face conversation.” “Working software is the primary measure of progress.” “Continuous attention to technical excellence and good design enhances agility.” “Simplicity--...is essential.”

16. ©2018 theresaneate.com https://twitter.com/TheresaNeate Theresa’s translation 16 1. Proactivity 2. Efficiency & Lean 3. Feedback 4. Systems thinking 5. Continuous learning 6. CAMS - Culture, Automation, Measurement, Sharing

18. ©2018 theresaneate.com https://twitter.com/TheresaNeate A possible day in the life of dev-sec-ops 1. Work is broken into small pieces 2. Definition of done is defined, including security and ops and monitoring and testing requirements for THAT story/task a. Automated tests written against these requirements 3. These “non functional” requirements are coded in (as much as possible) alongside the functionality (security as code, infrastructure as code) 18

19. ©2018 theresaneate.com https://twitter.com/TheresaNeate A day in the life of dev-sec-ops (cont’d) 4. Local tests pass (bring on the early feedback!) 5. If tests pass, code is committed to CI and integrated to trunk 6. Wider automated (integration, etc.) tests are run where applicable, including security tests as part of build pipeline 7. If required, manual tests are done, e.g. security scan, exploratory testing, etc. 8. Rinse, repeat. It’s just how the team flows: no afterthoughts, quality is baked in. 19

24. ©2018 theresaneate.com https://twitter.com/TheresaNeate Reading The Phoenix Project: A Novel About IT, DevOps, and Helping Your Business Win by Gene Kim, Kevin Behr, George Spafford, IT Revolution Press, 2013. http://www.devsecops.org/ http://itrevolution.com/devops-culture-part-1/ https://itrevolution.com/the-three-ways-principles-underpinning-devops/ https://devopsagenda.techtarget.com/opinion/Its-past-time-to-revisit-Agiles-definition-of-done https://xp123.com/articles/coaching-drills-and-exercises/ https://www.agilealliance.org/the-agile-root-of-devops/ https://twitter.com/royrapoport/status/996013869230272512 https://pragdave.me/blog/2014/03/04/time-to-kill-agile.html 24

How to work in devsecops

Empfohlen

Empfohlen

Weitere ähnliche Inhalte

Was ist angesagt?

Was ist angesagt? (20)

Ähnlich wie How to work in devsecops

Ähnlich wie How to work in devsecops (20)

Mehr von Theresa Neate

Mehr von Theresa Neate (11)

Kürzlich hochgeladen

Kürzlich hochgeladen (20)

How to work in devsecops