Loading…
October 12, 2021
Los Angeles, California + Virtual
View More Details & Registration

The Sched app allows you to build your schedule but is not a substitute for your event registration. You must be registered for KubeCon + CloudNativeCon North America 2021 - Los Angeles, CA + Virtual and add this Co-Located event to your registration to participate in these sessions. If you have not registered but would like to join us, please go to the event registration page to purchase a registration.

Please note: This schedule is automatically displayed in Pacific Standard Time (PST), UTC -7. To see the schedule in your preferred timezone, please select from the drop-down menu to the right, above "Filter by Date." The schedule is subject to change.


IMPORTANT NOTE: Timing of sessions and room locations are subject to change through Monday, September 13 due to schedule changes that will be made as speakers finalize whether speaking in person or virtually.

Sign up or log in to bookmark your favorites and sync them to your phone or calendar.

In-Person [clear filter]
Tuesday, October 12
 

9:00am PDT

Welcome & State of GitOps - Dan Garfield, Codefresh & Scott Rigby, Weaveworks
Speakers
avatar for Scott Rigby

Scott Rigby

Developer Experience, Weaveworks
Scott is a Brooklyn based interdisciplinary artist and Developer Advocate at Weaveworks. He co-founded the Basekamp art and research group in 1998 and the massively collaborative Plausible Artworlds international network. In technology he enjoys helping develop open source software... Read More →
avatar for Dan Garfield

Dan Garfield

Chief Open Source Officer and ArgoProj Maintainer, Codefresh
Dan Garfield is the Co-founder and Chief Open Source Officer of Codefresh, a continuous delivery, and GitOps platform. He helped launch the GitOps Working Group and helped lead the creation of the Open GitOps principles. As an Argo Maintainer, Kubernaut, Google Developer Expert, he... Read More →


Tuesday October 12, 2021 9:00am - 9:10am PDT
Petree Hall C + Online Los Angeles Convention Center - 1201 S. Figueroa Street, Los Angeles, CA 90015
  Keynote

9:10am PDT

Keynote: Pipeline as Code Empowering Cloud-Native CI/CD on Kubernetes Using Open Source Tools - Christian Hernandez, Red Hat
The pipeline-as-code approach allows git workflows to automate the deployment of CI/CD pipelines, turning code into features faster and at a more secure pace for business. This approach means developers continue to focus on developing and contributing code as they always have, through git repositories, and helps traditional operations teams evolve into their desired SRE or DevOps engineer roles they’ve aspired to become. Kubernetes has provided a platform to integrate all of these tasks and desired tools along the way.

We’ll demonstrate how to fully integrate git repositories, pipelines, and CD frameworks on top of OpenShift to deliver a complete, declarative, pipeline as code and GitOps framework in a cloud-native environment.

Speakers
avatar for Christian Hernandez

Christian Hernandez

Senior Principal Product Manager, Red Hat
Christian is a well rounded technologist with experience in infrastructure engineering, systems administration, enterprise architecture, tech support, advocacy, and management. Passionate about OpenSource and containerizing the world one application at a time. He is currently a maintainer... Read More →



Tuesday October 12, 2021 9:10am - 9:20am PDT
Petree Hall C + Online Los Angeles Convention Center - 1201 S. Figueroa Street, Los Angeles, CA 90015
  Keynote

9:20am PDT

A Multi-Cluster, Multi-Cloud Infrastructure with GitOps at CERN - Ricardo Rocha, CERN
CERN relies on a large distributed infrastructure to store and analyze the multiple petabytes of data coming out of its experiments every year.  In the last few years two important trends have been changing the way we manage our infrastructure: kubernetes and cloud native technologies on the deployment side, and public clouds as a potentially cost effective way to get additional capacity to cover for workloads spikes and accessing resources that are scarce on premises, such as GPUs and other accelerators. This has made efficient management of multiple clusters even more relevant.  This talk will describe how we've been evolving our deployments to rely on GitOps and tools like Flux and ArgoCD to centralize and standardize our highly distributed infrastructure. It will cover the three main layers of our deployments: the "underlay" infrastructure, and how with a bit of yaml and tools like crossplane we manage our on-premises clusters and those across multiple regions of the different public cloud providers; the "base services", including monitoring and central aggregation with Prometheus, OPA policies, cost calculation, etc; and finally our end user services.  A quick demo will show how clusters can be added and removed with a couple lines in a matter of minutes.

Speakers
avatar for Ricardo Rocha

Ricardo Rocha

Computing Engineer, CERN
Ricardo is a Computing Engineer in the CERN cloud team focusing on containerized deployments, networking and more recently machine learning platforms. He has pushed for several years the internal effort to transition services and workloads to use cloud native technologies, as well... Read More →



Tuesday October 12, 2021 9:20am - 9:50am PDT
Petree Hall C + Online Los Angeles Convention Center - 1201 S. Figueroa Street, Los Angeles, CA 90015

9:50am PDT

Gitopsify Cellular Architecture - Ayush Ghosh & Sergey Sergeev, Cisco Systems, Inc.
Building and managing data-intensive microservices applications have their challenges. Cellular architecture & Gitops together help create an independently deployable, manageable, and observable solution. We moved from running multiple expensive non-prod inconsistent environments to testing in production. Weave Flux, Istio, and Crossplane helped us build multi-cloud, multi-cluster declarative environments in minutes.  With the new deployment model and custom tooling, devs can get a miniaturized version of the SaaS running on their laptops. The devs can pick and choose which components and versions they want to run locally.  The CI/CD metrics have improved dramatically as the integration & E2E tests run against real apps and not mocks. The system spins up real cloud-native solutions for production deployments and falls back to containerized workloads for non-production.  Adding support for new regions has come down to days of work from months.

Speakers
avatar for Ayush Ghosh

Ayush Ghosh

Engineering Lead, Cisco Systems Inc
A Tech Lead with 10+ years of experience in building and running large data-intensive applications. Have deep expertise in breaking and securing applications.
avatar for Sergey Sergeev

Sergey Sergeev

Engineering Architect, AppD (part of Cisco)
Experienced Software Engineer and Software Architect having 20+ years of experience. Generalist. Good at design and implementation of high performance complex distributed scalable fault-tolerant computer systems.



Tuesday October 12, 2021 9:50am - 10:00am PDT
Petree Hall C + Online Los Angeles Convention Center - 1201 S. Figueroa Street, Los Angeles, CA 90015

1:55pm PDT

Tales from the Branches: GitOps in the Real World - Moderated by Dan Garfield, Codefresh; Cornelia Davis, Amazon; Christopher Lane, Chick-fil-A; Mae Large, State Farm; Mike Bowen, Blackrock & David Lewis, Starbucks
Join a panel of GitOps end users from major companies in different industries – Blackrock, Chick-fil-a, Lyft, Starbucks, State Farm – as they tell stories from their GitOps journey. Attendees will hear about problems they sought to solve, challenges faced along the way, and how GitOps strategies and tools were used to make it work.

Moderators
avatar for Dan Garfield

Dan Garfield

Chief Open Source Officer and ArgoProj Maintainer, Codefresh
Dan Garfield is the Co-founder and Chief Open Source Officer of Codefresh, a continuous delivery, and GitOps platform. He helped launch the GitOps Working Group and helped lead the creation of the Open GitOps principles. As an Argo Maintainer, Kubernaut, Google Developer Expert, he... Read More →

Speakers
avatar for Mae Large

Mae Large

staff field engineer, vmware
I'm currently an Architecture Manager at State Farm. I've worked as a software developer throughout my career starting in the Philippines where I was born and raised. I had the opportunity to work in Finland and in India at a consulting capacity before joining State Farm in 2006 first... Read More →
avatar for Cornelia Davis

Cornelia Davis

Product Management, CNCF TOC, Amazon
Cornelia has been working in IT systems for several decades with the last 10 years focused on DevOps platforms. She was part of the team that brought Cloud Foundry to the industry - both the open source project and the Pivotal CF product. In the last 5+ years she has applied that... Read More →
avatar for David Lewis

David Lewis

Lead Site Reliability Engineer, Starbucks
avatar for Mike Bowen

Mike Bowen

Senior Principal Engineer, OSPO Lead, BlackRock
avatar for Christopher Lane

Christopher Lane

Enterprise Architect, Chick-fil-A
Christopher Lane is a Principal Enterprise Architect with Chick-fil-A focused on Customer Technology Solutions (CTS). CTS' profile includes all customer-facing applications and services at Chick-fil-A, including our industry-leading Chick-fil-A One mobile application. Prior to joining... Read More →


Tuesday October 12, 2021 1:55pm - 2:25pm PDT
Petree Hall C + Online Los Angeles Convention Center - 1201 S. Figueroa Street, Los Angeles, CA 90015

2:25pm PDT

GitOps in the Real World: Opportunities for Developer Experience Improvement - Christopher Lane & Alex Crane, Chick-fil-A
GitOps is a pattern for managing the state of Kubernetes clusters using git as the source of truth. The entire state of the cluster is declared in manifests stored in git repositories and any changes to the manifests follow well-known git processes. Once the manifests are version controlled in git, then there's a number of state reconcilers (Flux, ArgoCD and the like) that can automatically apply changes from the repository. However, this leaves a significant gap in the process: How do we build and get the manifests *into the git repositories* in the first place? This talk will walk through Chick-fil-A's experiences with GitOps to manage the state of our production clusters at scale and offer what we see as opportunities to improve the frontend of the process.

Speakers
avatar for Christopher Lane

Christopher Lane

Enterprise Architect, Chick-fil-A
Christopher Lane is a Principal Enterprise Architect with Chick-fil-A focused on Customer Technology Solutions (CTS). CTS' profile includes all customer-facing applications and services at Chick-fil-A, including our industry-leading Chick-fil-A One mobile application. Prior to joining... Read More →
AC

Alex Crane

Enterprise Architect, Chick-fil-A



Tuesday October 12, 2021 2:25pm - 2:55pm PDT
Petree Hall C + Online Los Angeles Convention Center - 1201 S. Figueroa Street, Los Angeles, CA 90015

2:55pm PDT

A Day in the Life of the GitOps Platform Team - Mae Large & Priyanka Ravi, State Farm
Mae Large and Pinky Ravi have been a part of the GitOps team at State Farm since its inception in February 2019. GitOps at State Farm is adopted in all our strategic cloud platforms - AWS, Multi-tenant Kubernetes (on-prem), and Cloud Foundry (on-prem). This talk will walkthrough how we scaled GitOps in our large organization. The GitOps team is 5-person team. We have successfully rolled out GitOps, supported our customers, and continue to advance the offering towards observability and resiliency of the applications or products using GitOps.   We will give an insight on how our typical day is like and also highlight the different bumps and challenges (including outages) we’ve faced and how these all became opportunities for us to continuously improve.

Speakers
avatar for Mae Large

Mae Large

staff field engineer, vmware
I'm currently an Architecture Manager at State Farm. I've worked as a software developer throughout my career starting in the Philippines where I was born and raised. I had the opportunity to work in Finland and in India at a consulting capacity before joining State Farm in 2006 first... Read More →
avatar for Priyanka Ravi

Priyanka Ravi

Software Developer, State Farm
Priyanka has been a software developer at State Farm since 2017. She has worked on a multitude of topics including front end development, UI automation for testing and API development. Currently, she is on the delivery engineering team working on GitOps enablement. She has been working... Read More →



Tuesday October 12, 2021 2:55pm - 3:25pm PDT
Petree Hall C + Online Los Angeles Convention Center - 1201 S. Figueroa Street, Los Angeles, CA 90015

3:40pm PDT

Securing GitOps - Andrew Block & Shoubhik Bose, Red Hat
Implementing a GitOps based strategy brings a wealth of benefits including automation and conformance, each of which increases the overall security posture of any software and infrastructure delivery lifecycle. But, how do you ensure that you have fully taken advantage of all of the available options to provide the most secure GitOps environment?  In this session, attendees will learn the role security plays in a GitOps environment and the areas that can be configured to properly enforce appropriate security controls common to organizations big and small including:  

* Git repositories
* Static code analysis of manifests
* Ensuring appropriate rights in a Kubernetes environment
* Taking advantage of GitOps tools configurations
* Operating in a multitenant environment

Speakers
avatar for Andrew Block

Andrew Block

Distinguished Architect, Red Hat
Andrew Block is a Distinguished Architect at Red Hat that works with organizations to design and implement solutions leveraging cloud native technologies. He specializes in Continuous Integration and Continuous Delivery methodologies to reduce delivery time and automate how environments... Read More →
avatar for Shoubhik Bose

Shoubhik Bose

Senior Principal Software Engineer, Red Hat, Inc



Tuesday October 12, 2021 3:40pm - 3:50pm PDT
Petree Hall C + Online Los Angeles Convention Center - 1201 S. Figueroa Street, Los Angeles, CA 90015

3:50pm PDT

Secure Your GitOps - How to Implement a Robust Security Strategy - Todd Ekenstam, Intuit
Access control and security are especially crucial for managing the deployment of applications and infrastructure. Traditional security processes that rely on human operational knowledge will struggle to scale and meet the needs of enterprises utilizing automated build and release infrastructure. The GitOps methodology can improve the integrity and security of your application deployments while at the same time exposing new attack vectors that must be secured.

This talk will cover the following topics:
- Improving security with GitOps
- Implementing access control in GitOps
- Multi-tenant cluster and namespace management for GitOps
- Configuring access limitations for critical GitOps components
- Common security model patterns and best practices

This talk will teach you how to securely implement a GitOps methodology to deploy applications and cluster components to Kubernetes. You will also learn strategies to securely manage multi-tenant clusters and common security model patterns and best practices.

Speakers
avatar for Todd Ekenstam

Todd Ekenstam

Principal Software Engineer, Intuit
Todd Ekenstam is a Principal Engineer at Intuit building a platform for secure, multi-tenant Kubernetes infrastructure supporting applications serving Intuit's ~50 million customers. Todd has worked on various large-scale distributed systems projects during his 25+ year career, ranging... Read More →



Tuesday October 12, 2021 3:50pm - 4:20pm PDT
Petree Hall C + Online Los Angeles Convention Center - 1201 S. Figueroa Street, Los Angeles, CA 90015

4:20pm PDT

Building Flux's Multi-Tenant API with K8s User Impersonation - Leigh Capili, VMware
Kubernetes is hard to operate in a multi-tenant manner. As organizations add API's and privileged controllers to their clusters, it becomes infeasible to build clusters that teams can share with each other safely. This is a design issue with the way projects extend Kubernetes.  While policy engines like Gatekeeper and Kyverno enable cluster owners to patch over insecure API surfaces to protect tenants, there are patterns that produce API's resistant to cross-tenant issues. It's possible to extend Kubernetes without relying on admission-based policy engines to restrict API boundaries and controller implementations.  This session will teach you how to enable multiple organizations and teams to work safely together across namespaces and clusters. Flux will be used as an example on how to use RBAC, impersonation and kubeConfig secrets, but the techniques shown can be used to improve projects across the ecosystem!

Speakers
avatar for Leigh Capili

Leigh Capili

Staff Developer Advocate, VMware
Leigh is a Kubernetes Contributor and Staff Developer Advocate with VMware.He previously worked in Developer Experience with Weaveworks. He authored kubeadm's etcd mTLS implementation and is currently working toward k8s component-standards and cluster-addons. Previously, he helped... Read More →


Tuesday October 12, 2021 4:20pm - 4:50pm PDT
Petree Hall C + Online Los Angeles Convention Center - 1201 S. Figueroa Street, Los Angeles, CA 90015

4:50pm PDT

GitOps Use Cases & Best Practices Comedy Game Show - Tamao Nakahara & Sebastian Bernheim, Weaveworks; Chris Short, Red Hat; Javeria Khan, Snowflake & Christian Hernandez, Red Hat
Everyone wants to hear real-world use cases and best practices from GitOps practitioners and experts! But another same-old same-old panel? Not this time!  Come join Tamao Nakahara’s GitOps Game Show - a game-show style session where the audience will hear real-world situations, guess at solutions, and then hear several experts go into depth with their actual solutions. Experts will include Javeria Khan and other guests. The session will be sprinkled with fun nerdy zingers and one-liners from our friends, Chris Short and Sebastian Bernheim!   Test your knowledge and skills: * Hear about real-world GitOps needs and constraints * Guess at possible solutions! * Hear from the experts about their actual use cases, the paths they chose, what tools they used, what worked, and what pitfalls to avoid * Try to one-up our nerdy jokes!  The session will be fast-paced, educational with concrete data, and fun!

Speakers
avatar for Christian Hernandez

Christian Hernandez

Senior Principal Product Manager, Red Hat
Christian is a well rounded technologist with experience in infrastructure engineering, systems administration, enterprise architecture, tech support, advocacy, and management. Passionate about OpenSource and containerizing the world one application at a time. He is currently a maintainer... Read More →
TN

Tamao Nakahara

VP of Developer Experience, Weaveworks
Tamao Nakahara is VP of the Developer Experience team at Weaveworks. The team is dedicated to the architecture, engineering, and developer experience of many open source projects and primarily to CNCF Flux and Flagger. Tamao is also co-founder of DevRelCon SF and is dedicated to all... Read More →
SB

Sebastian Bernheim

Customer Reliability Engineer, Weaveworks
avatar for Chris Short

Chris Short

Sr. Developer Advocate, AWS
Chris Short has been a proponent of open source solutions throughout his over two decades in various IT disciplines including systems, security, networks, and DevOps engineering and advocacy across the public and private sectors. He currently works at Red Hat. Chris is a disable... Read More →
JK

Javeria Khan

Senior Platform Engineer, Snowflake
Javeria Khan is a Senior Platform Engineer at Snowflake. She has an MS in EE from Imperial College London, and has been working in the infrastructure software domain for the past 7 years, and with Kubernetes for the past 4. As a part of different infrastructure teams spanning over... Read More →


Tuesday October 12, 2021 4:50pm - 5:10pm PDT
Petree Hall C + Online Los Angeles Convention Center - 1201 S. Figueroa Street, Los Angeles, CA 90015
 
  • Timezone
  • Filter By Venue Los Angeles, California, USA
  • Filter By Type
  • Convincing Larger Organizations to Adopt GitOps
  • End User Talks Around GitOps Implementations
  • How to Implement Advanced Deployments
  • Keynote
  • Lightning Talk
  • Networking + Break
  • Use of Open Source Tooling to Achieve GitOps
  • War stories of how GitOps helped and Where Systems Broke Down
  • Talk Type

Filter sessions
Apply filters to sessions.