Agile + DevOps West 2020 - DevOps Practices | TechWell

Agile + DevOps West 2020 - DevOps Practices

Wednesday, June 10


DevOps, Chapter 2

Add to calendar
Wednesday, June 10, 2020 - 3:00pm to 4:00pm

What do you do after you’ve started adopting DevOps principles? Our clients tell us they want to track value across their delivery pipeline and optimize their investment in the automation of delivery and quality. People have been adopting DevOps for several years. Adoption is widespread and now organizations are questioning how they optimize DevOps to realize the value of their investment in this change of culture. An optimized DevOps approach to software delivery is critical as businesses are moving to a new stage of innovation. They are no longer just experimenting with emerging...

Thursday, June 11


Agile Fireside Chat

Add to calendar
Thursday, June 11, 2020 - 10:00am to 11:00am

You've got agile and lean questions, and Mary and Tom Poppendieck want to answer them for you. They won't really be sitting by the fire, but they will be on hand to talk about all things Lean and agile. Mary has been a programmer, IT manager, and product champion, and is well known for the Lean Software Development books that she wrote with her husband, Tom. Tom has been in computing for 25 years, working with healthcare, logistics, mortgage banking, and travel services, and he holds a Ph.D. in Physics. Bring your questions and be ready for a lively, interactive discussion.

Sanjeev Sharma
Independent Consultant

My Environment, My Code, and Yes...My Data—Addressing Data Friction in DevOps Adoption

Add to calendar
Thursday, June 11, 2020 - 10:00am to 11:00am

The DevOps movement has led to the adoption of Continuous Integration (CI) and Continuous Delivery (CD) in the application delivery pipeline. The end goal of establishing a CI/CD pipeline is to achieve a continuous 'flow' of releases as new features get built, integrated, tested and deployed to production-like non-prod environments, and eventually to Production. This flow depends upon the continuous integration and delivery of small batches of code, database and environment changes. Data Friction results due to the inability to have the right data provisioned to the right environment, as...

Craig Sebenik
Split Software

Lessons Learned Moving to Trunk Based Development

Add to calendar
Thursday, June 11, 2020 - 4:45pm to 5:45pm

Moving from a branching model, such as GitFlow, to “trunk dev” (Trunk-Based Development) isn't trivial and isn't easy, but it is definitely worth the effort if increasing release velocity is your goal. Craig Sebenik led the transition to “trunk dev” at a couple of companies after being involved in a massive project at LinkedIn. Join Craig as he describes "trunk dev" and gives his perspective on the scenarios where the different flavors work best. Discuss what you loose by moving away from a branching model and what you gain with "trunk dev" and why that transition will set up for team for...

Thursday, June 25

Alyssa Miller
Snyk, Ltd.

DevSecOps Summit: So Happy Together: Making the Promise of DevSecOps a Reality

Add to calendar
Thursday, June 25, 2020 - 1:00pm to 1:45pm

It may be hard for some to believe, but it’s been over a decade since DevOps was first introduced. It wasn’t very long after that the concept of DevSecOps began to emerge as security practitioners attempted to keep application security practices engaged in software delivery. However, recent surveys show that even in organizations that have adopted a DevSecOps model, security is still often viewed as a bottleneck. This idea of security as an inhibitor can undermine the promise of DevSecOps to deliver a culture of shared responsibility for security. Hacker, former developer, and application...


DevSecOps Summit: AppSec: Grim Reaper or Archangel of Dev?

Add to calendar
Thursday, June 25, 2020 - 2:15pm to 2:45pm

AppSec has gotten a bad rap as the “no” team, having to bear the bad news of why Development can’t deploy. But it’s not their fault—without effective integration of AppSec into the SDLC, both teams suffer from untimely information, which means AppSec can only deliver bad news, not enable security as a health part of a Development process. With an effective SecDevOps program that includes proactive policy assignment to effectively manage security debt and automate governance, Security shifts from being a blocker to an advisor in decreasing project delivery risk, without sacrificing velocity...

Robert Statsinger
Contrast Security

DevSecOps Summit: Embracing DevSecOps through Embedded Application Security

Add to calendar
Thursday, June 25, 2020 - 3:00pm to 3:30pm

Traditional approaches to application security create unacceptable drag and scaling problems for DevOps, while expert staffing and tooling requirements to support “more code, faster” create untenable economics. This presentation will discuss the transformative impact of embedding application security into applications themselves. Embedded AppSec removes friction, enables security to be seamlessly woven into DevOps, and provides a continuous and unified approach across the SDLC that empowers Dev, Security, QA/Test, Ops, and other stakeholders to collaborate and realize the benefits of...

Guy Herbert

DevSecOps Summit: Risk Management and Audit in a High Change Environment

Add to calendar
Thursday, June 25, 2020 - 3:30pm to 4:00pm

When you are trying to move fast and ship to customers you don't want risk and compliance holding you back. But the environment that we work in requires you to have good risk management and we all have compliance obligations that we need to maintain. So how do we make this work? At Atlassian, we are always trying to ship faster to meet your needs and we have lots of compliance obligations to maintain - come and hear from Guy Herbert, Atlassian's Risk Futurist about how the combination of people, practices, and tools has enabled teams to ship multiple times per day to regulated compliance...

Friday, June 26

DJ Schleen

DevSecOps Summit: Blameless Retrospectives in DevSecOps at Global Healthcare Giants

Add to calendar
Friday, June 26, 2020 - 1:00pm to 1:45pm

Implementing a scalable DevOps program can seem like an impossible task at times. Add security into the mix and the challenge can appear insurmountable. Organizations around the world have come to realize the potential business impacts of adopting DevSecOps and how it can enable engineers to deliver more value to the market faster. While the prospect of transformation seems alluring, a great number of organizations are still unsure of where to start, what’s involved, how much it will cost and how to achieve success. Discussing our triumphs and tragedies not only bring clarity, but champion...

Tom Stiehm
Coveros, Inc.

DevSecOps Summit: DevSecOps for Managers, Executives, and Mere Mortals

Add to calendar
Friday, June 26, 2020 - 2:00pm to 2:30pm

DevSecOps isn’t meant for just Gods and Unicorns, it is for mere mortals as well. One of the challenges we have in using Application Security practices is where to start, how to get value, i.e., be successful with initial efforts, and how to build on that success. The world is being driven more and more by network-connected applications and services that are constantly under attack from the curious and malicious. What should you do If you aren’t intimately involved with AppSec and still want to get started securing your applications? By simply adding steps to your pipeline, you can...

Bob Crews
Checkpoint Technologies

DevSecOps Summit: Continuous QA Risk Analysis with an AppSec-DevOps-OWASP Mindset!

Add to calendar
Friday, June 26, 2020 - 2:30pm to 3:00pm

The scope and complexities of Application Security testing in a DevOps world are rapidly increasing as new technologies emerge, applications become more advanced, vulnerabilities more prevalent, and threats become more astute! The quantity and types of vulnerabilities can make the process of testing overwhelming, especially in a DevOps and Agile world when factoring in aggressive target dates and a lack of resources. Utilizing a rapid, strategic risk-based analysis approach while factoring in the OWASP Top 10 will assist you in prioritizing your overall testing effort. If you can’t...