Computerwoche Webcast: Autonome Teams, Sicherheit & Compliance auf AWS

•Als PPTX, PDF herunterladen•

1 gefällt mir•767 views

COMPUTERWOCHE-Webcast in Zusammenarbeit mit Amazon und Zalando am Donnerstag, 30. Juli 2015, 11:00 Uhr. Auch Europas größter Mode Online-Händler Zalando setzt auf die AWS Cloud-Plattform. Motto: „Radical Agility“. Für Zalando bedeutet das Autonomie, Können und Selbst-Bestimmtheit der Entwickler-Teams in den Vordergrund zu stellen, mit dem Ziel, mehr als 15 Millionen Kunden in 15 verschiedenen europäischen Ländern das weltweit beste Online-Mode Erlebnis zu bieten.

Radical Agility
Autonome Teams, Sicherheit & Compliance auf AWS
Henning Jacobs, @try_except_

Plattform
80+ Entwicklerteams
Plattform Team

RADICAL
AGILITY

DAS SPANNUNGSFELD
Compliance Innovation

AWS
STUPS
DOCKER
DEPLOY
SSH
ZUGRIFF
AUDIT-
BERICHTE
VOLLER AWS
ZUGRIFF
STUPS: EINE PLATTFORM AUF AMAZON WEB SERVICES

Internet
*.abc.example.org *.xyz.example.org
Team ABC Team XYZ
ISOLIERTE AWS KONTEN
EC2EC2
ELBELB
EC2

IMMUTABLE STACKS
ELB myapp-1
myapp.example.org
EC2
+ Docker
EC2
+ Docker
EC2
+ Docker

IMMUTABLE STACKS
ELB myapp-1
EC2
+ Docker
EC2
+ Docker
EC2
+ Docker
ELB myapp-2
EC2
+ Docker
EC2
+ Docker
myapp.example.org

SCM
build
Ticketsystem
Docker Image
Ticket
Commit
NACHVERFOLGBARKEIT
Docker Registry

build
Application Version
Ticketsystem
Application Registry
SCM
Docker Image
Ticket
Commit
NACHVERFOLGBARKEIT
Docker Registry
genehmigt✓

Docker Registry
build
genehmigt
EC2-Instanz
Docker
Container
Ticketsystem
Application Registry
SCM
Docker Image
Ticket
Commit
✓
NACHVERFOLGBARKEIT
Application Version

● Isolierte AWS Konten
● REST APIs mit OAuth/SSL gesichert
● Immutable Infrastructure
● Zentral verwalteter SSH-Zugriff
● Nachverfolgbarkeit .
STUPS: SICHERHEIT & COMPLIANCE

STUPS Homepage
https://stups.io
STUPS Dokumentation
https://docs.stups.io
Alle Komponenten als Open Source verfügbar:
https://github.com/zalando-stups
LINKS

tech.zalando.com
@try_except_

Weitere ähnliche Inhalte

Andere mochten auch

Container Storage Best Practices in 2017

Container Storage Best Practices in 2017

Container Storage Best Practices in 2017

YAPC::Asia Tokyo 2012 Closing

YAPC::Asia Tokyo 2012 Closing

YAPC::Asia Tokyo 2012 Closing

How To Think In Go

How To Think In Go

How To Think In Go

Yapceu 2015 yapc asia tokyo behind the scenes (w/o notes)

Yapceu 2015 yapc asia tokyo behind the scenes (w/o notes)

Yapceu 2015 yapc asia tokyo behind the scenes (w/o notes)

小規模でもGKE - DevFest Tokyo 2016

小規模でもGKE - DevFest Tokyo 2016

小規模でもGKE - DevFest Tokyo 2016

On internationalcommunityrelations

On internationalcommunityrelations

On internationalcommunityrelations

Within this talk, we will explore how Singularity liberates non-privileged users and host resources (such as interconnects, resource managers, file systems, accelerators, etc.) allowing users to take full control to set-up and run in their native environments. This talk explores how Singularity combines software packaging models with minimalistic containers to create very lightweight application bundles which can be simply executed and contained completely within their environment or be used to interact directly with the host file systems at native speeds. A Singularity application bundle can be as simple as containing a single binary application or as complicated as containing an entire workflow and is as flexible as you will need.

Containers for Science and High-Performance Computing

Containers for Science and High-Performance Computing

Containers for Science and High-Performance Computing

Dmitry Spodarets

Kubernetes in 20 minutes - HDE Monthly Technical Session 24

Kubernetes in 20 minutes - HDE Monthly Technical Session 24

Kubernetes in 20 minutes - HDE Monthly Technical Session 24

Don't Use Reflect - Go 1.7 release party 2016

Don't Use Reflect - Go 1.7 release party 2016

Don't Use Reflect - Go 1.7 release party 2016

Oxalide Workshop #5 - Docker avancé @ Kubernetes 5ème Workshop @Oxalide, animé par Julien Follenfant (@jf_flyn), Théo Chamley (@MrTrustor) et Ludovic Piot (@lpiot), le 13 octobre 2016. Une étude de cas sur la mise en place d'une application Symfony2/PHP/MySQL sous forme de containers Docker, puis sous forme de pods dans Kubernetes. Présentation de Kubernetes Démonstration de miniKube Démonstration du self-healing en cas de perte de pod et de perte de nœud du cluster Kubernetes sur AWS. Subject: Oxalide's 5th Workshop about a case study on how to deploy a Symfony2 app in Docker, and then in miniKube and a production-ready Kubernetes cluster. Date: 13-oct-2016 Speakers: Julien Follenfant (@jf_flyn, @oxalide), Théo Chamley (@MrTrustor, @oxalide) et Ludovic Piot (@lpiot, @oxalide) Language: french Lien SpeakerDeck : https://speakerdeck.com/lpiot/oxalide-workshop-number-5-docker-avance-and-kubernetes Lien SlideShare : https://www.slideshare.net/LudovicPiot/oxalide-workshop-5-docker-avanc-kubernetes YouTube Video capture: https://youtu.be/072FHARQSmE Main topics: * Introduction à la démo dev Docker * Démo dev Docker * Passage de Docker à Kubernetes et miniKube * Présentation de Kubernetes * Présentation de miniKube * Démo de miniKube et self-healing * Démo application multi-instances en haute disponibilité dans Kubernetes * Self-healing du cluster Kubernetes sur AWS * Questions/réponses

Oxalide Workshop #5 - Docker avancé & Kubernetes

Oxalide Workshop #5 - Docker avancé & Kubernetes

Oxalide Workshop #5 - Docker avancé & Kubernetes

Mesos introduction

Mesos introduction

Mesos introduction

MesosCon EU - HTTP API Framework

MesosCon EU - HTTP API Framework

MesosCon EU - HTTP API Framework

Marco Massenzio

Piloter un loadbalancer pour exposer les microservoces de mon cluster Mesos/M...

Piloter un loadbalancer pour exposer les microservoces de mon cluster Mesos/M...

Piloter un loadbalancer pour exposer les microservoces de mon cluster Mesos/M...

Containers and microservices for realists

Containers and microservices for realists

Containers and microservices for realists

Karthik Gaekwad

중간평가

blue-green deployment with docker containers

blue-green deployment with docker containers

blue-green deployment with docker containers

Docker d2 박승환

Docker d2 박승환

Docker d2 박승환

Kubernetes CI/CD with Helm

Kubernetes CI/CD with Helm

Kubernetes CI/CD with Helm

Adnan Abdulhussein

Andere mochten auch (18)

Container Storage Best Practices in 2017

Container Storage Best Practices in 2017

Container Storage Best Practices in 2017

YAPC::Asia Tokyo 2012 Closing

YAPC::Asia Tokyo 2012 Closing

YAPC::Asia Tokyo 2012 Closing

How To Think In Go

How To Think In Go

How To Think In Go

Yapceu 2015 yapc asia tokyo behind the scenes (w/o notes)

Yapceu 2015 yapc asia tokyo behind the scenes (w/o notes)

Yapceu 2015 yapc asia tokyo behind the scenes (w/o notes)

小規模でもGKE - DevFest Tokyo 2016

小規模でもGKE - DevFest Tokyo 2016

小規模でもGKE - DevFest Tokyo 2016

On internationalcommunityrelations

On internationalcommunityrelations

On internationalcommunityrelations

Containers for Science and High-Performance Computing

Containers for Science and High-Performance Computing

Containers for Science and High-Performance Computing

Kubernetes in 20 minutes - HDE Monthly Technical Session 24

Kubernetes in 20 minutes - HDE Monthly Technical Session 24

Kubernetes in 20 minutes - HDE Monthly Technical Session 24

Don't Use Reflect - Go 1.7 release party 2016

Don't Use Reflect - Go 1.7 release party 2016

Don't Use Reflect - Go 1.7 release party 2016

Oxalide Workshop #5 - Docker avancé & Kubernetes

Oxalide Workshop #5 - Docker avancé & Kubernetes

Oxalide Workshop #5 - Docker avancé & Kubernetes

Mesos introduction

Mesos introduction

Mesos introduction

MesosCon EU - HTTP API Framework

MesosCon EU - HTTP API Framework

MesosCon EU - HTTP API Framework

Piloter un loadbalancer pour exposer les microservoces de mon cluster Mesos/M...

Piloter un loadbalancer pour exposer les microservoces de mon cluster Mesos/M...

Piloter un loadbalancer pour exposer les microservoces de mon cluster Mesos/M...

Containers and microservices for realists

Containers and microservices for realists

Containers and microservices for realists

중간평가

blue-green deployment with docker containers

blue-green deployment with docker containers

blue-green deployment with docker containers

Docker d2 박승환

Docker d2 박승환

Docker d2 박승환

Kubernetes CI/CD with Helm

Kubernetes CI/CD with Helm

Kubernetes CI/CD with Helm

Mehr von Henning Jacobs

Many clusters, many problems? Having many clusters has benefits: reduced blast radius, less vertical scaling of cluster components, and a natural trust boundary. In this session, Zalando shows its approach for running 140+ clusters on AWS, how it does continuous delivery for its cluster infrastructure, and how it created open-source tooling to manage cost efficiency and improve developer experience. The company openly shares its failures and the learnings collected during three years of Kubernetes in production. AWS re:Invent session OPN211 on 2019-12-05

How Zalando runs Kubernetes clusters at scale on AWS - AWS re:Invent

How Zalando runs Kubernetes clusters at scale on AWS - AWS re:Invent

How Zalando runs Kubernetes clusters at scale on AWS - AWS re:Invent

Open Source at Zalando - OSB Open Source Day 2019

Open Source at Zalando - OSB Open Source Day 2019

Open Source at Zalando - OSB Open Source Day 2019

Talk held on 2019-10-24 at GOTO Berlin: Everybody loves failure stories, but maybe for the wrong reasons: Schadenfreude and Internet comment threads are the dark side; continuous improvement through blameless postmortems, sharing incidents, and documenting learnings is what motivated me to compile the list of Kubernetes Failure Stories. Kubernetes gives us a infrastructure platform to talk in the same "language" and foster collaboration across organizations. In this talk, I will walk you through our horror stories of operating 100+ clusters and share the insights we gained from incidents, failures, user reports and general observations. I will highlight why Kubernetes makes sense despite its perceived complexity. Our failure stories will be sourced from recent and past incidents, so the talk will be up-to-date with our latest experiences. https://gotober.com/2019/sessions/1129/why-i-love-kubernetes-failure-stories-and-you-should-too

Why I love Kubernetes Failure Stories and you should too - GOTO Berlin

Why I love Kubernetes Failure Stories and you should too - GOTO Berlin

Why I love Kubernetes Failure Stories and you should too - GOTO Berlin

Why Kubernetes? Cloud Native and Developer Experience at Zalando - Enterprise...

Why Kubernetes? Cloud Native and Developer Experience at Zalando - Enterprise...

Why Kubernetes? Cloud Native and Developer Experience at Zalando - Enterprise...

Talk held on 2019-09-26 in Paderborn: Die Keynote: Warum Kubernetes? Cloud Native und Developer Experience bei Zalando Kubernetes hat sich als defacto Standard for Cloud Native Plattformen durchgesetzt. Warum? Welche Vorteile und Fallstricke gibt es in der Praxis? Henning Jacobs zeigt am Beispiel von Zalando wie Kubernetes als Infrastruktur für 1200+ Entwickler dient, welche Aspekte Kubernetes trotz seiner Komplexität einzigartig machen, und was das für die Developer. Experience bedeutet. Henning Jacobs ist der Head of Developer Productivity bei Zalando und damit verantwortlich für die Developer Experience von mehr als 200 Zalando Delivery Teams. Das Kubernetes eine hervorragende Plattform für den Erfahrungsaustausch darstellt, zeigt Henning mit seiner Liste von Kubernetes Failure Stories. https://teuto.net/owl-tech-innovation-day/

Why Kubernetes? Cloud Native and Developer Experience at Zalando - OWL Tech &...

Why Kubernetes? Cloud Native and Developer Experience at Zalando - OWL Tech &...

Why Kubernetes? Cloud Native and Developer Experience at Zalando - OWL Tech &...

While Go is the language-of-choice in the cloud-native world, Python has a huge community and makes it really easy to extend Kubernetes in only a few lines of code. This talk shows examples on how to use Python to query the Kubernetes API, how to write simple controllers in only 10 lines of Python, how to build complete web UIs, and how to test everything with py.test and Kind. Some of the open-source projects which will be covered: pykube-ng, Kubernetes Web View, kube-janitor, and Kopf (Kubernetes Operator Pythonic Framework). Talk held in Prague on 2019-09-05: https://www.meetup.com/Cloud-Native-Prague/events/263802447/

Kubernetes + Python = ❤ - Cloud Native Prague

Kubernetes + Python = ❤ - Cloud Native Prague

Kubernetes + Python = ❤ - Cloud Native Prague

Bootstrapping a Kubernetes cluster is easy, rolling it out to nearly 200 engineering teams and operating it at scale is a challenge. In this talk, we are presenting our approach to Kubernetes provisioning on AWS, operations and developer experience for our growing Zalando developer base. We will walk you through our horror stories of operating 100+ clusters and share the insights we gained from incidents, failures, user reports and general observations. Our failure stories will be sourced from recent and past incidents, so the talk will be up-to-date with our latest experiences.

Kubernetes Failure Stories, or: How to Crash Your Cluster - ContainerDays EU ...

Kubernetes Failure Stories, or: How to Crash Your Cluster - ContainerDays EU ...

Kubernetes Failure Stories, or: How to Crash Your Cluster - ContainerDays EU ...

While the adoption of DevOps makes teams move faster with reduced dependency on central operations, it can constrain teams who lack the skills to self-manage the full application and infrastructure stack. The way to overcome this challenge is creating an internal platform and treating it as a world-class product offering. “Applying product management to internal platforms means establishing empathy with internal consumers (read: developers) and collaborating with them on the design. Platform product managers establish roadmaps and ensure the platform delivers value to the business and enhances the developer experience”, via ThoughtWorks Technology Radar. In this talk, we will walk you through how Zalando adopted a customer-first mindset with regards to its developer tooling. We will show the effect on developer satisfaction when internal platforms are given the same respect as external product offerings. We will tell our story on how we moved from a classical infrastructure team to a product mindset with strong focus on building a world-class developer experience. We will share both our learnings and challenges going through this transition, and the impact it has on the daily life of our customers (developers).

Why we don’t use the Term DevOps: the Journey to a Product Mindset - DevOpsCo...

Why we don’t use the Term DevOps: the Journey to a Product Mindset - DevOpsCo...

Why we don’t use the Term DevOps: the Journey to a Product Mindset - DevOpsCo...

While the adoption of DevOps makes teams move faster with reduced dependency on central operations, it can constrain teams who lack the skills to self-manage the full application and infrastructure stack. The way to overcome this challenge is creating an internal platform and treating it as a world-class product offering. “Applying product management to internal platforms means establishing empathy with internal consumers (read: developers) and collaborating with them on the design. Platform product managers establish roadmaps and ensure the platform delivers value to the business and enhances the developer experience”, via ThoughtWorks Technology Radar. In this talk, Henning Jacobs will walk you through how Zalando adopted a customer-first mindset with regards to its developer tooling. He will show the effect on developer satisfaction when internal platforms are given the same respect as external product offerings. Henning will furthermore tell his story about how Zalando moved from a classical infrastructure team to a product mindset with strong focus on building a world-class developer experience. Henning shares both their learnings and challenges going through this transition, and the impact it has on the daily life of Zalando’s customers (developers). This talk was given in Aarhus on 4th of June 2019.

Why we don’t use the Term DevOps: the Journey to a Product Mindset - Destinat...

Why we don’t use the Term DevOps: the Journey to a Product Mindset - Destinat...

Why we don’t use the Term DevOps: the Journey to a Product Mindset - Destinat...

Talk given on 2019-05-21 at KubeCon Barcelona: https://kccnceu19.sched.com/event/MPcM/kubernetes-failure-stories-and-how-to-crash-your-clusters-henning-jacobs-zalando-se Bootstrapping a Kubernetes cluster is easy, rolling it out to nearly 200 engineering teams and operating it at scale is a challenge. In this talk, we are presenting our approach to Kubernetes provisioning on AWS, operations and developer experience for our growing Zalando developer base. We will walk you through our horror stories of operating 100+ clusters and share the insights we gained from incidents, failures, user reports and general observations. Our failure stories will be sourced from recent and past incidents, so the talk will be up-to-date with our latest experiences. Most of our learnings apply to other Kubernetes infrastructures (EKS, GKE, ..) as well. This talk strives to reduce the audience's unknown unknowns about running Kubernetes in production.

Kubernetes Failure Stories - KubeCon Europe Barcelona

Kubernetes Failure Stories - KubeCon Europe Barcelona

Kubernetes Failure Stories - KubeCon Europe Barcelona

Talk given at JAX DevOps London on 2019-05-15. Kubernetes has the concept of resource requests and limits. Pods get scheduled on the nodes based on their requests and optionally limited in how much of the resource they can consume. Understanding and optimizing resource requests/limits is crucial both for reducing resource "slack" and ensuring application performance/low-latency. This talk shows our approach to monitoring and optimizing Kubernetes resources for 90+ clusters to achieve cost-efficiency and reducing impact for latency-critical applications. All shown tools are open source and can be applied to most Kubernetes deployments. Topics covered in the talk include: understanding resource requests and limits, cgroups and CFS quota behavior, contributing factors to cluster costs (in public clouds), and best practices for managing Kubernetes resources.

Optimizing Kubernetes Resource Requests/Limits for Cost-Efficiency and Latenc...

Optimizing Kubernetes Resource Requests/Limits for Cost-Efficiency and Latenc...

Optimizing Kubernetes Resource Requests/Limits for Cost-Efficiency and Latenc...

Developer Experience at Zalando - CNCF End User SIG-DX

Developer Experience at Zalando - CNCF End User SIG-DX

Developer Experience at Zalando - CNCF End User SIG-DX

Talk held at DevOps Gathering 2019 in Bochum on 2019-03-13. Abstract: This talk will address one of the most common challenges of organizations adopting Kubernetes on a medium to large scale: how to keep cloud costs under control without babysitting each and every deployment and cluster configuration? How to operate 80+ Kubernetes clusters in a cost-efficient way for 200+ autonomous development teams? This talk provides insights on how Zalando approaches this problem with central cost optimizations (e.g. Spot), cost monitoring/alerting, active measures to reduce resource slack, and automated cluster housekeeping. We will focus on how to ingrain cost efficiency in tooling and developer workflows while balancing rigid cost control with developer convenience and without impacting availability or performance. We will show our use case running Kubernetes on AWS, but all shown tools are open source and can be applied to most other infrastructure environments.

Ensuring Kubernetes Cost Efficiency across (many) Clusters - DevOps Gathering...

Ensuring Kubernetes Cost Efficiency across (many) Clusters - DevOps Gathering...

Ensuring Kubernetes Cost Efficiency across (many) Clusters - DevOps Gathering...

Let's talk about Failures with Kubernetes - Hamburg Meetup

Let's talk about Failures with Kubernetes - Hamburg Meetup

Let's talk about Failures with Kubernetes - Hamburg Meetup

Talk given at 25. Handelsblatt Jahrestagung Strategisches IT-Management in Munich on 2019-01-23. Original title (German): "Developer Experience bei Zalando: Entwicklerproduktivität steigern mit Cloud Native Infrastruktur" - Wie macht man mehr als 1100 Entwickler glücklich und effektiv? - Entwickler als Kunde: Produktmanagement für Plattformteams - You build it – you run it: Self-Service-Infrastruktur mit Kubernetes und AWS - Der Weg vom klassischen Infrastrukturteam zu Developer Productivity als Abteilung

Developer Experience at Zalando - Handelsblatt Strategisches IT-Management 2019

Developer Experience at Zalando - Handelsblatt Strategisches IT-Management 2019

Developer Experience at Zalando - Handelsblatt Strategisches IT-Management 2019

Bootstrapping a Kubernetes cluster is easy, rolling it out to nearly 200 engineering teams and operating it at scale is a challenge. In this talk, we are presenting our approach to Kubernetes provisioning on AWS, operations and developer experience for our growing Zalando developer base. We will walk you through our horror stories of operating 80+ clusters and share the insights we gained from incidents, failures, user reports and general observations. Most of our learnings apply to other Kubernetes infrastructures (EKS, GKE, ..) as well. This talk strives to reduce the audience’s unknown unknowns about running Kubernetes in production.

Running Kubernetes in Production: A Million Ways to Crash Your Cluster - DevO...

Running Kubernetes in Production: A Million Ways to Crash Your Cluster - DevO...

Running Kubernetes in Production: A Million Ways to Crash Your Cluster - DevO...

Kubernetes has the concept of resource requests and limits. Pods get scheduled on the nodes based on their requests and optionally limited in how much of the resource they can consume. Understanding and optimizing resource requests/limits is crucial both for reducing resource "slack" and ensuring application performance/low-latency. This talk shows our approach to monitoring and optimizing Kubernetes resources for 80+ clusters to achieve cost-efficiency and reducing impact for latency-critical applications. All shown tools are Open Source and can be applied to most Kubernetes deployments.

Optimizing Kubernetes Resource Requests/Limits for Cost-Efficiency and Latenc...

Optimizing Kubernetes Resource Requests/Limits for Cost-Efficiency and Latenc...

Optimizing Kubernetes Resource Requests/Limits for Cost-Efficiency and Latenc...

Bootstrapping a Kubernetes cluster is easy, rolling it out to nearly 200 engineering teams and operating it at scale is a challenge. In this talk, we are presenting our approach to Kubernetes provisioning on AWS, operations and developer experience for our growing Zalando developer base. We will walk you through our horror stories of operating 80+ clusters and share the insights we gained from incidents, failures, user reports and general observations. Most of our learnings apply to other Kubernetes infrastructures (EKS, GKE, ..) as well. This talk strives to reduce the audience’s unknown unknowns about running Kubernetes in production. https://2018.container.camp/uk/schedule/running-kubernetes-in-production-a-million-ways-to-crash-your-cluster/

Running Kubernetes in Production: A Million Ways to Crash Your Cluster - Cont...

Running Kubernetes in Production: A Million Ways to Crash Your Cluster - Cont...

Running Kubernetes in Production: A Million Ways to Crash Your Cluster - Cont...

Connexion is an open source API first REST framework for Python, built on top of Flask and based on OpenAPI/Swagger, targeted for microservice development. Connexion automagically handles request routing, oauth2 security, request validation and response serialization based on an OpenAPI 2.0 Specification file in YAML, so you don’t have to care about boilerplate anymore. Because it is based on Flask it supports everything that Flask does, including deployment options and extensions. At Zalando we’ve adopted “API First” as one of our key engineering principles, to ensure our API are robust, consistent, general and abstracted from specific implementation and use cases. But when we tried to implement this principle for the first time we were faced with the lack of a python framework to achieve it in a easy fashion - there were several frameworks that produce a swagger definition from the implementation but none that do it the other way around - so we decided to fill that gap. Henning will show how to get started with OpenAPI+Connexion, present some real-world use cases and deployment options such as Kubernetes.

API First with Connexion - PyConWeb 2018

API First with Connexion - PyConWeb 2018

API First with Connexion - PyConWeb 2018

Talk held on R-ETAIL:CODE in London on 2018-03-15. - The history of how DevOps evolved at Zalando: from on-premise data centers to autonomous teams, microservices and cluster management in the cloud - How the developer experience looks like for the application lifecycle from idea to production and what our vision for the future is - Challenges and learnings from our past experiences: why architecture principles and constraints are important to lead 200+ engineering teams

Developer Journey at Zalando - Idea to Production with Containers in the Clou...

Developer Journey at Zalando - Idea to Production with Containers in the Clou...

Developer Journey at Zalando - Idea to Production with Containers in the Clou...

Mehr von Henning Jacobs (20)

How Zalando runs Kubernetes clusters at scale on AWS - AWS re:Invent

How Zalando runs Kubernetes clusters at scale on AWS - AWS re:Invent

How Zalando runs Kubernetes clusters at scale on AWS - AWS re:Invent

Open Source at Zalando - OSB Open Source Day 2019

Open Source at Zalando - OSB Open Source Day 2019

Open Source at Zalando - OSB Open Source Day 2019

Why I love Kubernetes Failure Stories and you should too - GOTO Berlin

Why I love Kubernetes Failure Stories and you should too - GOTO Berlin

Why I love Kubernetes Failure Stories and you should too - GOTO Berlin

Why Kubernetes? Cloud Native and Developer Experience at Zalando - Enterprise...

Why Kubernetes? Cloud Native and Developer Experience at Zalando - Enterprise...

Why Kubernetes? Cloud Native and Developer Experience at Zalando - Enterprise...

Why Kubernetes? Cloud Native and Developer Experience at Zalando - OWL Tech &...

Why Kubernetes? Cloud Native and Developer Experience at Zalando - OWL Tech &...

Why Kubernetes? Cloud Native and Developer Experience at Zalando - OWL Tech &...

Kubernetes + Python = ❤ - Cloud Native Prague

Kubernetes + Python = ❤ - Cloud Native Prague

Kubernetes + Python = ❤ - Cloud Native Prague

Kubernetes Failure Stories, or: How to Crash Your Cluster - ContainerDays EU ...

Kubernetes Failure Stories, or: How to Crash Your Cluster - ContainerDays EU ...

Kubernetes Failure Stories, or: How to Crash Your Cluster - ContainerDays EU ...

Why we don’t use the Term DevOps: the Journey to a Product Mindset - DevOpsCo...

Why we don’t use the Term DevOps: the Journey to a Product Mindset - DevOpsCo...

Why we don’t use the Term DevOps: the Journey to a Product Mindset - DevOpsCo...

Why we don’t use the Term DevOps: the Journey to a Product Mindset - Destinat...

Why we don’t use the Term DevOps: the Journey to a Product Mindset - Destinat...

Why we don’t use the Term DevOps: the Journey to a Product Mindset - Destinat...

Kubernetes Failure Stories - KubeCon Europe Barcelona

Kubernetes Failure Stories - KubeCon Europe Barcelona

Kubernetes Failure Stories - KubeCon Europe Barcelona

Optimizing Kubernetes Resource Requests/Limits for Cost-Efficiency and Latenc...

Optimizing Kubernetes Resource Requests/Limits for Cost-Efficiency and Latenc...

Optimizing Kubernetes Resource Requests/Limits for Cost-Efficiency and Latenc...

Developer Experience at Zalando - CNCF End User SIG-DX

Developer Experience at Zalando - CNCF End User SIG-DX

Developer Experience at Zalando - CNCF End User SIG-DX

Ensuring Kubernetes Cost Efficiency across (many) Clusters - DevOps Gathering...

Ensuring Kubernetes Cost Efficiency across (many) Clusters - DevOps Gathering...

Ensuring Kubernetes Cost Efficiency across (many) Clusters - DevOps Gathering...

Let's talk about Failures with Kubernetes - Hamburg Meetup

Let's talk about Failures with Kubernetes - Hamburg Meetup

Let's talk about Failures with Kubernetes - Hamburg Meetup

Developer Experience at Zalando - Handelsblatt Strategisches IT-Management 2019

Developer Experience at Zalando - Handelsblatt Strategisches IT-Management 2019

Developer Experience at Zalando - Handelsblatt Strategisches IT-Management 2019

Running Kubernetes in Production: A Million Ways to Crash Your Cluster - DevO...

Running Kubernetes in Production: A Million Ways to Crash Your Cluster - DevO...

Running Kubernetes in Production: A Million Ways to Crash Your Cluster - DevO...

Optimizing Kubernetes Resource Requests/Limits for Cost-Efficiency and Latenc...

Optimizing Kubernetes Resource Requests/Limits for Cost-Efficiency and Latenc...

Optimizing Kubernetes Resource Requests/Limits for Cost-Efficiency and Latenc...

Running Kubernetes in Production: A Million Ways to Crash Your Cluster - Cont...

Running Kubernetes in Production: A Million Ways to Crash Your Cluster - Cont...

Running Kubernetes in Production: A Million Ways to Crash Your Cluster - Cont...

API First with Connexion - PyConWeb 2018

API First with Connexion - PyConWeb 2018

API First with Connexion - PyConWeb 2018

Developer Journey at Zalando - Idea to Production with Containers in the Clou...

Developer Journey at Zalando - Idea to Production with Containers in the Clou...

Developer Journey at Zalando - Idea to Production with Containers in the Clou...

Computerwoche Webcast: Autonome Teams, Sicherheit & Compliance auf AWS

1. Radical Agility Autonome Teams, Sicherheit & Compliance auf AWS Henning Jacobs, @try_except_

2. Plattform 80+ Entwicklerteams Plattform Team

3. RADICAL AGILITY

4. DAS SPANNUNGSFELD Compliance Innovation

5. AWS STUPS DOCKER DEPLOY SSH ZUGRIFF AUDIT- BERICHTE VOLLER AWS ZUGRIFF STUPS: EINE PLATTFORM AUF AMAZON WEB SERVICES

6. Internet *.abc.example.org *.xyz.example.org Team ABC Team XYZ ISOLIERTE AWS KONTEN EC2EC2 ELBELB EC2

7. IMMUTABLE STACKS ELB myapp-1 myapp.example.org EC2 + Docker EC2 + Docker EC2 + Docker

8. IMMUTABLE STACKS ELB myapp-1 EC2 + Docker EC2 + Docker EC2 + Docker ELB myapp-2 EC2 + Docker EC2 + Docker myapp.example.org

9. SCM build Ticketsystem Docker Image Ticket Commit NACHVERFOLGBARKEIT Docker Registry

10. build Application Version Ticketsystem Application Registry SCM Docker Image Ticket Commit NACHVERFOLGBARKEIT Docker Registry genehmigt✓

11. Docker Registry build genehmigt EC2-Instanz Docker Container Ticketsystem Application Registry SCM Docker Image Ticket Commit ✓ NACHVERFOLGBARKEIT Application Version

12. ● Isolierte AWS Konten ● REST APIs mit OAuth/SSL gesichert ● Immutable Infrastructure ● Zentral verwalteter SSH-Zugriff ● Nachverfolgbarkeit . STUPS: SICHERHEIT & COMPLIANCE

13. STUPS Homepage https://stups.io STUPS Dokumentation https://docs.stups.io Alle Komponenten als Open Source verfügbar: https://github.com/zalando-stups LINKS

14. tech.zalando.com @try_except_