Security at Cloud Native Speed

Abstract Cloud native technologies are increasingly used by organizations to provide a competitive advantage. Containers and Kubernetes jumpstart developer productivity but, they could increase security teams’ workloads. Threat vectors span cloud providers, control planes, developer tooling, and applications in environment hybrid environments. Use these technologies and cultures to improve security and reduce blast radius while improving velocity. This talk will analyze human tendencies and provide tips to improve security postures in cloud native environments. [Read More]

Microsoft Has Come a Long Way

Microsoft has come a very long way in its fight back into the graces of all technologists. There will be some die hards that will never forgive Microsoft for what it attempted to do to open source software. Like there will be some die hards that won’t embrace PowerShell, WSL, and future Microsoft improvements. But, there is no denying that Microsoft has changed as a company in a way that is beneficial to the open source community and beyond. [Read More]

DevOpsDays Charlotte 2018 Ignite Talk on Go

All other DevOpsDays events should be put on notice. DevOpsDays Charlotte 2018 set the bar unattainably high for the quality of the venue and speaker line up. It’ll be insanely hard to beat the great folks who spoke in Charlotte this year. Almost every talk was a home run. The Red Ventures facility was also jaw dropping. Also, I don’t think we could have asked for a more inviting and welcoming speaker lounge either. [Read More]

Go to the rescue: Saving DevOps from TLS turmoil

Abstract Find out about a use case that created a need for testing certificate chains, appropriate web server security settings, and the Go code used for testing. Description Talk would be based on this article: https://opensource.com/article/17/4/testing-certificate-chains-34-line-go-program If you ever need to validate certificates or certificate chains before deploying them, Go provides a near foolproof test method. A 3rd party developed a tool that was then handed off to our DevOps team to manage and maintain. [Read More]

Go: Enabling DevOps to Go Faster

Abstract What is Go? It’s not just another programming language. Go was made with very specific goals in mind by very experienced people. Go’s ideals align quite well with DevOps principles. In this talk we explore why DevOps professionals should be learning and utilizing Go in their organizations. Description What is Go? What wasn’t good enough with other languages? Who made Go? The Go/Google Connection as it Stands Today What is Go Good At? [Read More]

Orchestructure January 2018 Meetup

I spoke at the first Orchestructure Meetup of 2018. I have to admit, this is probably the smoothest run Meetup I’ve been a part of for quite some time. That’s not to say other Meetups weren’t well organized. But, Mario, Bob, and Jorge have their poop in a group. Orchestructure is one great Meetup. If you’re in Michigan, you’re missing out if you haven’t attended. Sign up for DevOps'ish! DevOps'ish is a weekly newsletter covering DevOps, Cloud Native, Open Source, and the 'ish between. [Read More]

DevOpsDays NYC 2018 Ignite Talk on Golang

I had an amazing experience at DevOpsDays NYC 2018. The organizers put together an all-star lineup. You can tell this meant a lot to the organizers by the quality of the event itself; it was top notch. Being a part of the DevOps community is absolutely amazing. I am always thrilled to get invites to DevOpsDays events; they’re so well done. Sign up for DevOps'ish! DevOps'ish is a weekly newsletter covering DevOps, Cloud Native, Open Source, and the 'ish between. [Read More]

Breaking Encryption Won't Make Us Safer

The British government wants to build backdoors into standard encryption libraries. This means the technology that protects your financial transactions could have a backdoor. These same backdoors were just exploited in the WannaCry outbreak that just took down the NHS. Who created that backdoor? The NSA, whose incompetence allowed this “tool” to fall into the hands of a Russian government-affiliated hacking group. Sign up for DevOps'ish! DevOps'ish is a weekly newsletter covering DevOps, Cloud Native, Open Source, and the 'ish between. [Read More]