Cloud Native in the US Federal Government
Going cloud native in a highly regulated context presents challenges of its own. In this talk, Jez Humble will share with you the platform created by the cloud.gov team at 18F, and the benefits it brought to federal agencies seeking to use the cloud.
Outline/Structure of the Case Study
I start with a brief refresher on continuous delivery. Then I present an overview of the regulatory framework within which software is delivered in the US federal government, and the impact of this framework on the software delivery lifecycle. I show how 18F attempted to streamline the process of delivery by creating a platform-as-a-service which took care of many of the regulatory issues. I discuss the platform in the context of good practice for for building a platform-as-a-service.
- The impact of regulation on the software delivery lifecycle
- How a platform-as-a-service can help in a regulated context
- How a team in the US federal government built cloud.gov, a platform-as-a-service for regulated information systems
- Principles for building a platform-as-a-service, including tradeoffs against regular infrastructure-as-a-service
Companies interested in Digital and Cloud Transformation
schedule Submitted 4 months ago
People who liked this proposal, also liked:
Jez Humble - Building and Scaling High Performing Technology OrganizationsJez HumbleOwnerJez Humble and Associates LLC
schedule 4 months agoSold Out!
High performing organizations don't trade off quality, throughput, and reliability: they work to improve all of these and use their software delivery capability to drive organizational performance. In this talk, Jez presents the results from DevOps Research and Assessment's five-year research program, including how continuous delivery and good architecture produce higher software delivery performance, and how to measure culture and its impact on IT and organizational culture. They explain the importance of knowing how (and what) to measure so you focus on what’s important and communicate progress to peers, leaders, and stakeholders. Great outcomes don’t realize themselves, after all, and having the right metrics gives us the data we need to keep getting better at building, delivering, and operating software systems.
Neependra Khare - Security considerations while deploying Containerized ApplicationsNeependra KhareFounder and Principal ConsultantCloudYuga
schedule 3 months agoSold Out!
Congratulations on deploying applications on Docker and/or Kubernetes; Nowthe next thing that you would worry, is security and would have following questions :
- Are my images update to date ?
- Have I given right access to users ?
- Are there any security loop-holes in application deployment ?
- How I can audit environment/application to be security compliant ?
- Am I running the cluster in right configuration ?
- .... and many more
Jez Humble - Accelerate: Implementing DevOps and Continuous DeliveryJez HumbleOwnerJez Humble and Associates LLC
schedule 4 months agoSold Out!
Getting software released to users is often a painful, risky, and time-consuming process. The practice of continuous delivery sets out the principles and technical practices that enable rapid, low-risk delivery of high quality, valuable new functionality to users. Through automation of the build, deployment, and testing process, and improved collaboration between developers, testers and IT operations, teams can get changes released in a matter of hours—sometimes even minutes—no matter what the size of the product or the complexity of the enterprise environment. This full-day workshop spends the morning providing an overview of the principles and practices behind devops and continuous delivery, and discusses how to implement these paradigms. In the afternoon we take a deep-dive into implementation specifics such as continuous integration, continuous testing, infrastructure management, architecture, and low-risk deployments (including database changes).