Share on facebook
Share on google
Share on twitter
Share on linkedin
Share on whatsapp

© 2019 JFrog Ltd. All Rights Reserved. 

September 24, 2019 | Daniel Hotel, Herzliya

September 24, 2019
Daniel Hotel, Herzliya

Days
Hrs.
Min.
Sec.

JFrog Invites You to Israel’s DevOps Event of the Year

Bringing together Israel’s DevOps community, Yalla! DevOps is the must-attend event for developers, engineers, and business leaders from top companies. With a variety of hands-on tech sessions, you will find solutions to real-world complex software problems, with industry experts sharing bold and inspiring new ways to consider DevOps, Security, and Distribution. Learn from the failures and triumphs of your peers as we prepare you for a whole new caliber of innovation.

You won’t want to miss it!

Welcoming Our
Special Guest Speaker

Welcoming Our
Special Guest Speaker

John Willis
Founder and Author of the DevOps Handbook

Get Hands On in 3 Tracks of Tech Sessions

Cloud Native / Containers

Join the Cloud Native community together with industry leaders and practitioners, and learn how to build, secure and release software faster.

CI / CD

Learn best CI/CD practices in Cloud Native technologies like Kubernetes, Go, and more, from engaging main stage sessions and more.

DevSecOps

Engage with DevSecOps experts, participants and partners and exchange ideas about all things DevSecOps.

Meet Our Featured Speakers

Software Delivery Futurist

Senior Cloud Advocate

Founding Partner

Cyber Threat Intelligence Director
Security-Discovery

CTO & Co-Founder

Media Partner

Alan Shimel

Founder, CEO & Editor-In-Chief of MediaOps

Media Partner

Agenda

Top notch DevOps-focused program with amazing international and local speakers

Keynotes

Cloud Native / Containers

DevSecOps

CI/CD

Keynotes

Cloud Native / Containers

DevSecOps

CI/CD

 

Registration and Breakfast

08:15-09:15

11:15-11:45

13:05-14:00

 

Lunch

 

Coffee Break

15:20-15:35

 

Closing Ceremony and the Big Raffle

17:30-17:45

SEE FULL AGENDA

11:15-11:45

13:05-14:00

 

Lunch

 

Coffee Break

15:20-15:35

 

Closing Ceremony and the Big Raffle

17:30-17:45

Special Thanks to Our Sponsors

Together with our partners and sponsors, we showcase the latest innovative technologies and solutions in the DevOps word. Interested in becoming a Partner or a Sponsor of the event?

Community Sponsors and Partners

Location

Location

Yalla DevOps is a one-of-a-kind event, happening for the first time on September 24th, in Herzliya, Israel @ the Daniel Hotel.

Powered by

Powered

by

JFrog believes in universal DevOps – the freedom to choose your tool stack and architecture in a seamlessly integrated environment, supporting any package format. Yalla! DevOps brings DevOps practitioners and technology partners together for one common goal: An end-to-end DevOps experience to deliver better software, faster.
JFrog is a proud memeber of CNCF and the Linux Foundation

Get Your Tickets Now!

Contact Us

If you have any questions or are interested in sponsoring, please reach out to us!
YALLADEVOPS@JFROG.COM
BotchagalupeLogo

John Willis

Founder, Botchagalupe

DevOps is now officially 10 years old. What have we learned? Although prescriptive practices like Lean, Agile, SAFE and even DevOps may be necessary for IT acceleration they are in most cases are not sufficient for long-term systemic improvement. In other words, you can’t Lean, Agile, SAFE or DevOps your way around institutionalized organizational habits. Therefore, the key to long-term improvement lies in an understanding where human capital interconnects with technology. The following is a list of the “Seven Deadly Diseases”:
  1. Invisible Work
  2. Management System Toil
  3. Tribal Knowledge
  4. Misalignment of Incentives
  5. Incongruent Organizational Design
  6. Misunderstanding Complexity
  7. Security and Compliance Theater
These seven diseases of organizational behavior must be uncovered with the absence of prescriptive practice through a process of organizational fact-finding. In this presentation, we will look at the “Seven Deadly Diseases” of IT organization work and show examples of how to uncover these diseases through a process of organizational forensics (i.e., fact-finding).

09:45-10:30 

General

10:30-11:15 

General

cropped-otologo-withtext-greeno.ico_

Ant(on) Weiss

Software Delivery Futurist

15 years in tech, marketing and leadership roles. All about software delivery optimization. 5 years in technical and executive training. Expert in DevOps, Lean, Systems Thinking, Continuous Delivery, Cloud Native and Decentralized Systems. Coder, speaker, writer. Fixated on improving the ways humans collaborate by telling mind-provoking stories.

12:25-13:05

Cloud Native

vector-smart-object-12x

Jayne Groll

CEO, DevOps Institute

Jayne Groll is co-founder and CEO of the DevOps Institute (DOI). Her IT management career spans over 25 years of senior IT management roles across a wide range of industries. Her expertise spans multiple domains including DevOps, Agile, ITIL and Leadership. Jayne is a recognized and respected IT thought leader and influencer. In addition to authoring the Agile Service Management Guide, Jayne has co-authored several IT position papers including “Modernizing IT Operations in the Age of DevOps” that was published in 2018 by IT Revolution. Jayne is very active in the global DevOps, ITSM and Agile communities and is a frequent presenter at local, national and virtual events.

14:40-15:20

DevSecOps

Microsoft-logo.png

Jessica Deen

Senior Cloud Advocate, Microsoft

Jessica is a Cloud Developer Advocate for Microsoft focusing on Azure, infrastructure, containers, Linux and open source. Prior to joining Microsoft, she spent over a decade as an IT Consultant / Systems Administrator for various corporate and enterprise environments, catering to end users and IT professionals in the San Francisco Bay Area. Jessica holds three Microsoft Certifications (MCP, MSTS, Azure Infrastructure), 3 CompTIA certifications (A+, Network+, and Security+), 4 Apple Certifications, and is a former 4-year Microsoft Most Valuable Professional for Windows and Devices for IT. In 2013, she also achieved her FEMA certification from the U.S Department of Homeland Security, which recognizes her leadership and influence abilities during times of crisis and emergency.

When she’s not doing something geeky, you can find her doing something active, most likely running out of breath at her local CrossFit gym or hiking. She also enjoys biking (motorcycles and/or bicycles), shooting, eating, reading, and hanging with her 5-year-old rescue pup.

10:30-11:15 

Keynotes

14:00-14:40

Cloud-Native

1_HYR1NUOmi0-jaaQtnI2yFA

Rona Segev

Founding Partner, TLV Partners

Rona is a founding partner of TLV Partners. She currently focuses on Cloud Computing, AI and Cyber Security. 

Rona is a member of the board of Varonis (NASDAQ: “VRNS”), Aqua Security, Oribi, AiDoc, Datree.io, Rookout, run.ai, Quantum-Machines, Packboard and Datagen.

Previously Rona invested and partnered with the founders of Varonis (Went Public on Nasdaq in February 2014, VRNS), Skycure (acquired by Symantec), Puresec (Acquired by Palo Alto Networks), Traiana (acquired by ICAP), Worklight (acquired by IBM), Actona (acquired by CISCO), ItemField (Aquired by Informatica) , Identify (acquired by BMC), Aduva (acquired by SUN) , Fring (acquired by GenBend), SalesPredict (acquired by eBay) and Totango.

Previously, she was a General Partner at Pitango and Evergreen, and was head of the enterprise software sector at both funds. Rona herself was a successful entrepreneur in the computer gaming industry.

10:30-11:15 

Keynotes

Security-Discovery

Bob Diachenko​

Cyber Threat Intelligence director and journalist at SecurityDiscovery.com Consultancy

Bob Diachenko is a Cyber Threat Intelligence Director and journalist at SecurityDiscovery.com consultancy.

In the past Bob has worked in a company that had a big data breach. Now his goal is to help to protect data on the Internet by identifying data leaks and following responsible disclosure policies.

Bob is on the mission to make the cyber world safer by educating businesses and communities worldwide. Many of Bob’s discoveries have been covered in major news and technology media, earning himself a reputation as one of the reputable data security analytics.

11:45-12:25

DevSecOps

jfrog-logo-300x290

Yoav Landman

CTO and Co-Founder , JFrog

Yoav is a devout engineer, the creator of Artifactory, and a co-founder and Chief Technology Officer of JFrog. With over 20 years of experience as a Software Architect of enterprise applications, he plays a significant role in the evolution of DevOps. In 2006, Yoav created Artifactory as an open-source project paving the way for the software community to a new domain of managing binaries. Prior to JFrog, Yoav created many production solutions as a consultant in the fields of Continuous Integration and Distributed Systems. He is also an accredited speaker and a Java Rockstar.

10:30-11:15

Keynotes

Keynotes

09:15-09:45 ​

Fast Forward Automation

The tectonic plates in DevOps are moving. Industry-shaping technology companies are making strategic decisions amidst sea changes in how connectivity and networking are being approached. Shlomi Ben Haim, CEO of JFrog, will demystify the marketplace, using real data from public sources and usage statistics from over 5,000 unique companies. What will you see? You’ll see DevOps clearly in 2020 – where Continuous Updates will transform the way software is delivered to a nearly-limitless marketplace.

jfrog-logo-300x290

Shlomi Ben Haim

CEO and Co-Founder, JFrog

Shlomi is CEO and co-founder of JFrog, creators of the universal DevOps platform. He brings over 20 years of experience in building profitable, high-growth information technology companies. Prior to JFrog, Shlomi was the CEO of AlphaCSP (acquired in 2005 by MalamTeam) and was a Major in the Israeli Air Force. Shlomi holds an MS from Clark University (Massachusetts) and a BA from Ben-Gurion University (Israel).

Share:

Share on facebook
Share on twitter
Share on linkedin

Keynotes

09:45-10:30 ​

DevOps' Seven Deadly Diseases

DevOps is now officially 10 years old. What have we learned? Although prescriptive practices like Lean, Agile, SAFE and even DevOps may be necessary for IT acceleration they are in most cases not sufficient for long-term systemic improvement. In other words, you can’t Lean, Agile, SAFE or DevOps your way around institutionalized organizational habits. Therefore, the key to long-term improvement lies in an understanding where human capital interconnects with technology.

The following is a list of the “Seven Deadly Diseases”:

  1. Invisible Work
  2. Management System Toil
  3. Tribal Knowledge
  4. Misalignment of Incentives
  5. Incongruent Organizational Design
  6. Misunderstanding Complexity
  7. Security and Compliance Theater

These seven diseases of organizational behavior must be uncovered with the absence of prescriptive practice through a process of organizational fact-finding. In this presentation, we will look at the “Seven Deadly Diseases” of IT organization work and show examples of how to uncover these diseases through a process of organizational forensics (i.e., fact-finding).

BotchagalupeLogo

Founder, Botchagalupe

ohn Willis is Vice President of DevOps and Digital Practices at SJ Technologies. Prior to SJ Technologies he was the Director of Ecosystem Development for Docker, which he joined after the company he co-founded (SocketPlane, which focused on SDN for containers) was acquired by Docker in March 2015. Previous to founding SocketPlane in Fall 2014, John was the Chief DevOps Evangelist at Dell, which he joined following the Enstratius acquisition in May 2013. He has also held past executive roles at Opscode/Chef and Canonical/Ubuntu. John is the author of 7 IBM Redbooks and is co-author of the “DevOps Handbook” and the upcoming Beyond the Phoenix Project. The best way to reach John is through his twitter handle @botchagalupe.

Share:

Share on facebook
Share on twitter
Share on linkedin

Keynotes

10:30-11:15

Will DevOps Last Forever? Hear from our expert panel

In this panel we’ll discuss what’s next for DevOps (if at all?) from different perspectives: big and small, consumer and vendor , security and business.

Senior Cloud Advocate, Microsoft

Founding Partner, TLV Partners

Head of Developer Relations, JFrog

CTO and Co-Founder, JFrog

Founder, Botchagalupe

Share:

Share on facebook
Share on twitter
Share on linkedin

DevSecOps

11:45-12:25

Cyber Hygiene vs. Data Breaches: In layman's terms

Learning from my past experience with a big data breach, I’ve made it my goal is to help protect data on the Internet by identifying data leaks and following responsible disclosure policies.

As a Cyber Threat Intelligence Director and journalist at SecurityDiscovery.com consultancy, my mission is to make the cyber world safer by educating businesses and communities worldwide. Many of my data security analytics discoveries can be found in major news and technology media.

To discover data breaches, leakages, and vulnerabilities on the Internet, I use the Shodan search engine (similarly – BinaryEdge, Zoomeye) and simple dorks. No special software or active scanning, just ‘bare hands’ and some luck. If I can find your data, then anybody in the world can do it.

In this talk, you’ll learn some fast and secure tips to securing your corporate and personal data, avoiding reputational and financial damages. We’ll focus on some mind-boggling recent data breaches and unsecured noSQL databases, to keep your data safe.

Security-Discovery

Bob Diachenko

Cyber Threat Intelligence director and journalist at SecurityDiscovery.com Consultancy

Bob Diachenko is a Cyber Threat Intelligence Director and journalist at SecurityDiscovery.com consultancy. In the past Bob has worked in a company that had a big data breach. Now his goal is to help to protect data on the Internet by identifying data leaks and following responsible disclosure policies. Bob is on the mission to make the cyber world safer by educating businesses and communities worldwide. Many of Bob’s discoveries have been covered in major news and technology media, earning himself a reputation as one of the reputable data security analytics.

Share:

Share on facebook
Share on twitter
Share on linkedin

CI/CD

11:45-12:25

Consolidation of Tools, Myth or Reality?

In the ever-expanding DevOps ecosystem we seem to have to master a growing set of tools to build a robust & secured pipelines. In this session we’ll discuss consolidation of tools and the pros/cons of that while also coming up with some best practices about where and when to consolidate tools.
jfrog-logo-300x290

Shimi Bandiel

DevOps Consultant and Developer specializing in building performant DevOps CI/CD pipelines

Shimi is an experienced consultant and developer who specializes in building performant DevOps CI/CD pipelines. Before his current role as a DevOps Consultant @ JFrog, Shimi was the CTO of Trainologic responsible for high profile consulting and training about DevOps, architecture and performance tuning.

Share:

Share on facebook
Share on twitter
Share on linkedin

Cloud-Native

11:45-12:25

Un-Meshing the Service Mesh

Istio and Envoy is a killer combination providing security, control and observability into your microservice application. But how do you get started? Join me as we take this complex platform for a test drive and un-mesh the magic behind this service mesh technology.
Codevalue-logo1

Omer Barel

Senior DevOps Consultant, CodeValue

Omer Barel. Senior DevOps Consultant @ CodeValue. Bringing Dev and Ops closer together

Share:

Share on facebook
Share on twitter
Share on linkedin

DevSecOps

12:25-13:05

Whose vulnerability is it anyway? Advanced methods for baking open source security into DevOps

According to researches, open source software components constitute between 60% and 80% of the organization’s codebase. This is hardly surprising given how open source has been evidenced to accelerate software development, facilitating quicker than ever delivery of new and updated functionality to consumers.

That said, open source component usage also calls for special considerations that might challenge an organization’s ability to fully accommodate security goals while maintaining agility objectives, potentially introducing conflicts among development, DevOps and Security teams. The rising number of reported open source security vulnerabilities represents an unprecedented challenge for development teams, often resulting in a need to prioritize vulnerabilities rather than address all of them.

Effective prioritization is unfortunately not a trivial task, given the traditional lack of objective metrics that could help the organization determine the effective risk posed by a vulnerability to related development projects. Vulnerability effectiveness represents a novel approach to deal with open source vulnerability management, enabling organizations to leverage an objective method to prioritize vulnerability handling.

In this session, we will present how vulnerability effectiveness facilitates prioritization of open source security vulnerabilities, by reviewing challenges and practices noted by organizations, and by reviewing how analysis technology can leverage vulnerability effectiveness to address the challenges organizations are facing.

whitesource-logo-rgb-02-537x123-300x69

David Habusha

VP Product, WhiteSource

David is a Product Management executive with extensive background in taking new ideas to market. Over the last 20 years, David held senior positions in Product Management and R&D management. David led product management teams for more than 10 years in large ISVs (Symantec, Veritas, Precise and OpTier) and startups, taking products from concept to market leaders.

Share:

Share on facebook
Share on twitter
Share on linkedin

CI/CD

12:25-13:05

Multi-Cloud and Microservices Zoo: Manage dozens of services on multi-cloud

At SAP we have many business services that need to be developed, maintained, and delivered to our customers. But each customer has its own requirement and set of services he needs. You may require the services to be available on one cloud provider the other one on another provider. In addition, you may need your own private cloud others would like to manage their own public cloud. So, in order to support our customers, we must have a robust way to develop and deliver our services. In this session, I will share our experience on what tools we used and how we went about doing it:

  • JaaS (Jenkins as a Service) on Kubernetes to support hundreds of teams. I will show how this helped minimalize costs with its smart resource allocations. 
  • Pipeline / Piper:  Learn how we built a framework on top of the Jenkins pipeline to make the CI building efforts much more efficient. 
  • Release Process – Hear how we manage the release process including more than 10 different microservices and libraries.
  • Delivery – Learn how our services are combined with other SAP services to one core bundle to be delivered to multi-cloud environments (AWS, Microsoft Azure, Google Cloud Platform (GCP), AlibabaCloud, private clouds).
    •  IAC (Infrastructure As Code) – how we use script delivery tools to manage dozens and maybe hundreds of services. 
    • Monitoring – how we monitor our delivery process using tools like Concourse, and Dynatrace.
1200px-SAP_2011_logo.svg_

Ohad Granica

Senior Developer, SAP

I am Ohad Granica, a senior developer at SAP. I’ve been a developer in a DevOps team for 1.5 years, the position was quite unique in the way it took place right between the developers and the operation teams. Each team required their own tools, the developers with tool regarding the CI process, automation, development environments and more. And the operations who asked for more delivery & release management tools, monitoring, etc. Afterward, our project stopped using such DevOps developers and added those responsibilities to the development teams. Due to my past experience, I helped to introduce those aspects to the teams and keep advising in those subjects as a tech lead.

Share:

Share on facebook
Share on twitter
Share on linkedin

Cloud-Native

12:25-13:05

Many Changes, Little Fun: It’s time to measure the value of DevOps

Why do you want DevOps? What value do you expect to get out of implementing automation, changing processes, restructuring teams? Usually people talk about higher agility, better quality and lower stress. But how often do we really achieve this? And how do we know if significant investments in change and innovation really bring us these benefits? In this talk, I will present the framework for measuring DevOps impact – the metrics, the processes and the analytical approach. All based on practical industry experience.
cropped-otologo-withtext-greeno.ico_

Ant(on) Weiss

Software Delivery Futurist

15 years in tech, marketing and leadership roles. All about software delivery optimization. 5 years in technical and executive training. Expert in DevOps, Lean, Systems Thinking, Continuous Delivery, Cloud Native and Decentralized Systems. Coder, speaker, writer. Fixated on improving the ways humans collaborate by telling mind-provoking stories.

Share:

Share on facebook
Share on twitter
Share on linkedin

DevSecOps

14:00-14:40

See Where Containers Travel - Spot, Identify, Secure

DevOps engineers often struggle with making their complete pipeline for Docker containers fully visible and traceable. Even after they succeed in mapping and controlling the CI/CD pipeline, there remains a gap between the pipeline and the container run-time environment. How to bridge the gap?
PortShift_Logo

Ran Ilany

CEO and Co-Founder, Portshift

A veteran in cyber-security Ran has 20+ years of experience in the field of network and cyber security products. Managed large engineering, network security product teams consisting of hundreds of employees. Proven track record of building network security product strategies and lead the overall development life cycle of a successful product portfolio.

Share:

Share on facebook
Share on twitter
Share on linkedin

CI/CD

14:00-14:40

How Atlassian software supports HP on its LPPD journey

Atlassian was chosen as the technical partner to introduce and apply the LEAN methodology at HP. LEAN is not just a buzzword or a quick fix, but rather a strategy: a new way of thinking and running a company, which is beneficial for both line workers and the CEO. The ultimate goal was to create the most value for the customers while minimizing resources, time, energy and reducing waste. To achieve this, HP has traveled a unique and successful journey. I believe that sharing our journey would inspire others and help when it comes to choosing the right software for the infrastructure for the product development process.
HP_logo

Tanya Gordon

Atlassian Certified Jira Administrator | Technical leader @ HP | Devops | Public speaker

Tanya has over 10 years of experience in software development and various customization of ALM products to support the enterprise needs. Currently working at HP, Tanya is responsible for extending and scaling JIRA and Confluence to support a growing R&D department of about 2000 users. She has previously worked at Payoneer, one of the largest and successful FinTech startups in Israel, as a Devops engineer. Tanya also acts as the co-leader of the Tel Aviv Atlassian Community and is very passionate about contributing to the Atlassian collaborative community and meeting new seasoned admins like herself. Tanya holds a B.A. degree in computer science and management from the Open University of Israel. In her free time Tanya loves to sing and perform with her ensemble, called “Sound of Science”.

Share:

Share on facebook
Share on twitter
Share on linkedin

Cloud-Native

14:00-14:40

From Zero to DevOps Superhero: The Container Edition

Microservices can be hard; understanding container best practices can be hard as those practices are still being discovered. This session aids in minimizing the learning curve with container orchestration, specifically Kubernetes, by bringing DevOps best practices into the mix. This is not another HelloWorld session with quick tips. Instead, you can expect a deep dive into how you can truly go from zero to DevOps superhero by simply selecting container tooling specifically built for simplifying the process. In doing so, you will also learn how these tools can provide better orchestration for cloud services, abstraction and encapsulation for your microservices deployments, and visibility into what runs where and why. You will not only walk away with a deeper understanding of this area, but also some hands-on material to help you get started.
Microsoft-logo.png

Jessica Deen

Senior Cloud Advocate - Microsoft

Jessica is a Cloud Developer Advocate for Microsoft focusing on Azure, infrastructure, containers, Linux and open source. Prior to joining Microsoft, she spent over a decade as an IT Consultant / Systems Administrator for various corporate and enterprise environments, catering to end users and IT professionals in the San Francisco Bay Area. Jessica holds three Microsoft Certifications (MCP, MSTS, Azure Infrastructure), 3 CompTIA certifications (A+, Network+, and Security+), 4 Apple Certifications, and is a former 4-year Microsoft Most Valuable Professional for Windows and Devices for IT. In 2013, she also achieved her FEMA certification from the U.S Department of Homeland Security, which recognizes her leadership and influence abilities during times of crisis and emergency. When she’s not doing something geeky, you can find her doing something active, most likely running out of breath at her local CrossFit gym or hiking. She also enjoys biking (motorcycles and/or bicycles), shooting, eating, reading, and hanging with her 5-year-old rescue pup.

Share:

Share on facebook
Share on twitter
Share on linkedin

DevSecOps

14:40-15:20

T-Shaped DevOps: Security is everyone's responsibility

One of the key DevSecOps principles is that security is no longer a downstream activity but is in fact everyone’s responsibility. Shifting security further left requires developers and operators upskill their security knowledge as part of their T-shaping journey. This session will explore the concept of the T-shaped professional with specific focus on why (and which) DevSecOps skills are needed by everyone in IT.

vector-smart-object-12x

Jayne Groll

CEO, DevOps Institute

Jayne Groll is co-founder and CEO of the DevOps Institute (DOI). Her IT management career spans over 25 years of senior IT management roles across a wide range of industries. Her expertise spans multiple domains including DevOps, Agile, ITIL and Leadership. Jayne is a recognized and respected IT thought leader and influencer. In addition to authoring the Agile Service Management Guide, Jayne has co-authored several IT position papers including “Modernizing IT Operations in the Age of DevOps” that was published in 2018 by IT Revolution. Jayne is very active in the global DevOps, ITSM and Agile communities and is a frequent presenter at local, national and virtual events.

Share:

Share on facebook
Share on twitter
Share on linkedin

CI/CD

14:40-15:20

CI/CD In The Age Of Cloud-Native

The “rise” of the containers created very interesting opportunities for running and deploying microservices and distributed software in general, like any good thing, it comes with a price. Building a Cloud-Native CI/CD infrastructure utilizing the advantages of containers is quite challenging. In this session, we will introduce the challenges of CI/CD in the cloud native world including building our CI/CD infrastructure as code and working with dynamic workers. We will explore popular projects aiming to help us with these challenges: Bloody Jenkins, Jenkins X and more.
jfrog-logo-300x290

Elad Hirsch

DevOps Consultant, JFrog

Over 13 years of full-stack software engineering experience tackling everything from devops and backend challenges to the latest frontend frameworks.
Speaking in conferences such as Swampup 2019 San Francisco, IBM Index 2018 San Francisco , Trainologic Dev 2018, Jenkins IL 2017 , also took part in Java.IL / JavaScriptIL meetups.

Share:

Share on facebook
Share on twitter
Share on linkedin

Cloud-Native

14:40-15:20

The Language of Infrastructure

Farfetch’s mission is to be the global technology platform for luxury fashion. We sell products from over 1000 boutiques and brands from around the world, ship to customers in 190 countries with the help of 3000 employees in 13 different offices. Our platform runs on an active-active geo-distributed infrastructure consisting of thousands of servers and petabyte scale storage, spanning multiple data centres and connected over redundant SD-WAN networks. The nature of this global setup and scale brings unique challenges and opportunities. One of those challenges is how we manage this Infrastructure. We have been going through a transformation of our Infrastructure at Farfetch lately. Why? We simply grew out of our current methods, which weren’t rudimentary to begin with.

At the heart of this transformation is a system that we built that offers an interface to define all the Infrastructure requirements for each service or application in one place. This interface acts as a blueprint, which captures all the aspects of the services that interact with Infrastructure in a well-defined, source-controlled, always up-to-date framework.

For more details refer to this blog:
https://medium.com/farfetch-tech-blog/the-language-of-infrastructure-2ff0955d3114

Farfetch

Gaurav Gupta

VP, Global infrastructure at Farfetch

VP, Global infrastructure at Farfetch. Before that in a similar role in Snapdeal and ScaleArc. Spend 18 years building enterprise systems and cloud scale infrastructure globally. Passionate about building infrastructure engineering culture and products to manage infrastructure at scale.

Share:

Share on facebook
Share on twitter
Share on linkedin

DevSecOps

15:35-16:15

AppSec in the DevSecOps world

We will discuss and tackle the issues of security in the world of sprints, how to automate menial tasks and the important role of AppSec, focusing on:

  • What does DevSecOps even mean?
  • Security audit in the hourly release cycle
  • Automation, automation and automation – how is Artificial intelligence delivering this?
  • Automated AppSec Testing at the speed of DevOps
  • Containers and their impact on the security flow
  • Can we learn from traditional security practices?
neuralegion-logo

Bar Hofesh

Co-Founder and CTO, NeuraLegion

A cyber security veteran with more than a decade of experience acting as a Security Officer, Researcher, Hacker, Developer and Software architect.

Share:

Share on facebook
Share on twitter
Share on linkedin

CI/CD

15:35-16:15

Promoting Kubernetes CI/CD to the Next Level

Many companies and organizations have adopted CI/CD processes in order to help deliver applications running on Kubernetes quickly, transparently, and with automated tests. While this is a desirable goal, it gets more complex when developing a management layer on top of k8s, especially when both images and Helm charts are involved.

In developing IBM Cloud Private, we have implemented a CI/CD process that automates promotion through a series of quality gates where we 1) Ensure that all charts (43) and images (135) are in sync across three supported architectures, 2) Deploy instances of ICP clusters with different topologies, management services, and infrastructure, and 3) Run automated and manual functional and security regression tests against those clusters. Since implementation, we have been able to iterate more quickly by discovering issues earlier in the development process.

ibm-logo

Tim Pouyer

DevOps & SRE Leader, IBM Cloud Private

I am the DevOps & SRE Lead for the IBM Cloud Private (ICP) Development organization. I manage multiple CICD & SRE teams and provide leadership and direction for them. I regularly meet with customers on the cloud transformation path searching for advice/assistance with their kubernetes/docker/container/hybrid-cloud strategies. Having successfully implemented hundreds of DevOps transformations for many IBM customers and internally for the IBM Cloud Private development organization. I have a earned the respect of our customers and our internal IBMers and gained a wealth of knowledge and experience along the way.

Share:

Share on facebook
Share on twitter
Share on linkedin

Cloud-Native

15:35-16:15

Usage Report - Monitor your users’ usage

As an infrastructure team it is very hard to monitor your users’ usage especially in a big, complex, distributed and hybrid system like we have in Outbrain.

In this session I will describe how we solved this problem and present the self service dashboard that we implemented. Now each team has better understanding regarding its infrastructure usage from the number of machines through to computing power to cloud usage.

Outbrain-logo

Avi Avraham

Director of Data Engineering, Outbrain

Outbrain, Director of Data Engineering – 2016-now
PetUp, Co-Founder & CTO – 2015-2016
WeFi, Director of Backend & IT – 2008-2016
Microsoft, Senior Software Developer – 2006-2008
Whale Communication, R&D Team Leader –
2002-2006
Cyota, R&D Team Leader – 1999-2002
Technion, BSC in Computer Sicence 1995-1999

Share:

Share on facebook
Share on twitter
Share on linkedin

DevSecOps

16:15-16:55

Hardening Linux made easy

In this talk, we will take a step by step approach to harden a vanilla installation of a regular run of the mill VM based on Ubuntu. We will start with a VM hosting a simple application – a web service, go through the steps of determining what should be hardened, and why. The threat analysis will focus us and allow us to prioritize the hardening tasks. Note – while this is not a container focused talk, we will use them and harden them somewhat along the way. Hardening containers is a topic for a different talk :-)

bsides tlv

Guy Barnhart-Magen

SecurityOS and System Hardening, Cryptography and Security for Machine Learning Founder of Melior-Security

With nearly 20 years of experience in the cyber-security industry, Guy held various positions in both corporates and start-ups. He is currently a Cyber Security Consultant, focusing on OS and Services Hardening, Cryptography, AI Security, and Reverse Engineering. Guy is the BSidesTLV chairman and CTF lead, a Public speaker, and the recipient of the Cisco “black belt” security ninja honor – Cisco’s highest cyber security advocate rank. Starting out as a software developer for security startups and later spent 8 years in the IDF. After completing his degrees in Electrical Engineering and Applied Mathematics, he focused on security research, in the real world. He joined NDS (later acquired by Cisco) and led the Anti-Hacking, Cryptography and Supply Chain Security Groups (~25 people in US and Israel). Leaving the corporate for a while to be a CTO of a startup in the Industrial IoT space (17 people), he later returned to Intel to lead the “Predictive Threat Analysis” group (~10 people) who focused on the security of machine learning systems and trusted execution environments.

Share:

Share on facebook
Share on twitter
Share on linkedin

CI/CD

16:15-16:55

How to apply Machine Learning into your CI/CD Pipeline

Reducing DevOps costs is a high priority for teams moving to microservices, yet remains a huge challenge when trying to speed up test execution and Continuous Integration cycles by running all tests in parallel over many machines. Test Impact Analysis (TIA) has evolved over the recent years and is today one of the most innovative solutions to DevOps cost reduction. In this session, I will walk you through the evolvement of Test Impact Analysis, from theory to execution, and how SeaLights has shortened it’s testing and CI cycles by over 50% using Machine Learning – based smart test execution.
SeaLights-logo

Alon Weiss

Chief Architect, Sealights

Chief Architect at SeaLights. Alon has been working at Sealights for more than 3 and a half years. He has over 16 years of experience as a software engineer who cares a lot about productivity, efficiency and code quality.

Share:

Share on facebook
Share on twitter
Share on linkedin

Cloud-Native

16:15-16:55

Docker in BlockChain Projects: Microservicing everything

In this session, I will share my journey of building Docker images from scratch that started by trying to figure out the who, the what, and eventually, the how as part of a huge project for the Israeli Stock Exchange. I established the Docker Image first, adding layer by layer to get application functionality working for each service while handling the application logs on the way. I will show how I decoupled the configuration with the Developers, going with the base image online to get the dependencies first, and ended after thousands of retries and plenty of working hours to get one container running with the application working. This served as the foundation of getting things into containers.

Lidor Gerstel

DevOps Guru, Dev-Operations.io

DevOps FreeLancer & Experienced Trainer with a demonstrated history of working in the higher education industry. Skilled in Docker, AWS, Linux System Administration, Domain Name System (DNS), and Jenkins.

Share:

Share on facebook
Share on twitter
Share on linkedin

General

16:55-17:30

Ignite Talks

16:55

2147483647

Yonatan Maman, VP Engineering at Outbrain

2147483647 = Integer.MAX_VALUE. We almost reached this number of entities in our Database. and found it a few days before it overflowed. It could have been the Outbrain Y2K bug, but it wasn’t. In this talk, I will describe the problem we encountered, the actions we took, and finally the results and our conclusions.

Bio:

Doing software starting from the happy days of Atari XL. After a few pivots working for large enterprises, I have joined Outbrain. As VP of Engineering, I focus on building new technologies, in high quality at scale.

17:00

Auto-Mat: Pipeline for Java Heap Dump Analysis

Gal Ben-Ami, Team Lead and coder at JFrog

How can you use Docker, Jenkins and Artifactory to analyze your Java heap dumps? How many times have you been asked to provide a heap dump? What happens after you have provided one? Big heap dumps can take hours to analyze and require lots of manual work. With Auto-Mat, you can automate the entire process up to a detailed HTML report that pinpoints you to the exact problem in your code. At JFrog we took it to the next level and built a complete pipeline around it.
Bio:
With JFrog for the last 3 years. Having fun with Frogs, code and Artifacts. Passionate about code, operations and DevOps culture.

17:05

To CI and to TCI

Yoram Michaeli, DevOps Fullstack Tech Leader @ Tikal Knowledge & Jedi Master

This lecture is about CI tools (a short comparison of the current major tools out there) and an introduction to TCI which is a Jenkins-based CI solution coming from the experience of Tikal Knowledge DevOps experts.

Bio:
More than 30 years experience in the Software industry. DevOps Expert – a Fullstack Tech Leader. Experienced team leader. Expert in understanding the human aspects of software development and deployment toward translating it into a great work environments. Specialties: Out-of-the-box challenges analysis toward a great solution

17:10

Failing as Dev, Succeeding as Ops

Eran Zimbler, DevOps Engineer, BNY Mellon

Sometimes when trying to be a developer and operations engineer (the coveted DevOps) you find out that bad code is the best code.

Bio:
Almost 12 years of working around Developers. started at Checkpoint and than followed by 3 companies that no longer exist. Working at BNY Mellon Tel Aviv as Devops engineer.

17:15

DevOps for Enterprise Business Application

Olivier Kamoun, Seasoned Fintech Entrepreneur

DevOps have proven its efficiency for web application and software company. The implementation of DevOps and agile approach to large enterprise with multiple system gets harder when systems with different business data model have to communicate.
Part of the problem can be addressed by using machine learning to automate data mapping and to integrate in the DevOps business centric test across teams and vendors. We’ll demonstrate a beta version.

Bio:
25 years of experience founding and managing Fintech companies in London, Paris and Singapore

17:20

Integrating containers in pipeline

Eran Zimbler, DevOps Engineer, BNY Mellon

A short talk about building containers used in pipelines. From my recent experiences in converting pipelines from running on VMs to containers.
Bio:
Almost 12 years of working around Developers. started at Checkpoint and than followed by 3 companies that no longer exist. Working at BNY Mellon Tel Aviv as Devops engineer.

17:25

Advanced scheduling in K8s

Tsahi Duek, Solutions Architects, Spotinst

This talk will cover the “K8s” way of scheduling application, and what considerations and challenges Dev&Ops need to be aware of.
Bio:
Coding since the early days of the 80286 computer. Tsahi is designing and developing platforms for managing production environments, for 10+ years. Today, he enjoys his time as a Solutions Architect at Spotinst, where he helps customers, from Startups to Enterprises to architect their Kubernetes environments.

Share:

Share on facebook
Share on twitter
Share on linkedin

CI/CD

18:30-21:30

Continuous Delivery Meetup

Join us for a Meetup around DevOps Automation! Patterns and anti patterns, processes & techniques, collaboration, testing, design and pipelines. And of course, there will be snacks and drinks.

18:30 | Integrating security with CI/CD

Ada Sharoni, Software Engineer team lead at Akamai

19:35 | DevOps Patterns & Antipatterns for Continuous Software Updates

Baruch Sadogursky, Head of Developer Relations @JFrog

Read more and register here:
https://www.meetup.com/JFrog-Israel-Meetups/events/264496040/

 

Baruch Sadogursky

Head of Developer Relations @JFrog

Ada Sharoni

Software Engineer team lead at Akamai

Share:

Share on facebook
Share on twitter
Share on linkedin
jfrog-logo-300x290

Baruch Sadogursky

Head of Developer Relations, JFrog

Baruch Sadogursky (a.k.a JBaruch) is the Head of Developer Relations and a Developer Advocate at JFrog. His passion is speaking about technology. Well, speaking in general, but doing it about technology makes him look smart, and 17 years of hi-tech experience sure helps. When he’s not on stage (or on a plane to get there), he learns about technology, people and how they work, or more precisely, don’t work together.

He is a CNCF ambassador, Developer Champion, and a professional conference speaker on DevOps,  DevSecOps and Development topics, and is a regular at the industry’s most prestigious events including DockerCon, Devoxx, DevOps Days, OSCON, Qcon, JavaOne and many others. You can see some of his talks at jfrog.com/shownotes

10:30-11:15

Keynotes

BotchagalupeLogo

John Willis

Founder, Botchagalupe

DevOps is now officially 10 years old. What have we learned? Although prescriptive practices like Lean, Agile, SAFE and even DevOps may be necessary for IT acceleration they are in most cases are not sufficient for long-term systemic improvement. In other words, you can’t Lean, Agile, SAFE or DevOps your way around institutionalized organizational habits. Therefore, the key to long-term improvement lies in an understanding where human capital interconnects with technology. The following is a list of the “Seven Deadly Diseases”:
  1. Invisible Work
  2. Management System Toil
  3. Tribal Knowledge
  4. Misalignment of Incentives
  5. Incongruent Organizational Design
  6. Misunderstanding Complexity
  7. Security and Compliance Theater
These seven diseases of organizational behavior must be uncovered with the absence of prescriptive practice through a process of organizational fact-finding. In this presentation, we will look at the “Seven Deadly Diseases” of IT organization work and show examples of how to uncover these diseases through a process of organizational forensics (i.e., fact-finding).

09:45-10:30 

General

10:30-11:15 

General