Video: https://youtu.be/U4cHbXYy1FQ
How to combine traditional IT governance with continuous delivery? Not At All!
A highly automated continuous deployment environment creates a whole new world of challenges for companies to meet their compliance and governance requirements. Traditional - manual - processes don’t manage to keep up with quick and frequent releases.
The solution to this conflict of interests is the automation of all compliance checks and the automated certification of every software delivery into production. Sounds obvious and simple, but it is difficult to implement.
The talk shows how we tackle this topic at DB Systel and how we create solutions for automated compliance certification.
See https://bit.ly/5pdops for more materials and the 5 DevOps Principles
1. Automated Governance
DB Systel GmbH | Schlomo Schapiro | Chief Technology Office | 12-13.11.2019
Platzhalter für Titelbild – Hier können Sie Bilder aus der Mediathek einfügen!
Placeholder for title picture – You can insert here pictures from the Mediathek!
Pixabay / 4423750
@schlomoschapiroThis work is licensed under a Creative Commons Attribution-ShareAlike 4.0 International License
(with the exception of the stock images with copyright notice)
3. Problem?
What is governance?
Ø Align IT strategy with business strategy
Ø Make sure we have and keep rules
DB Systel | Schlomo Schapiro | @schlomoschapiro | 13-14.11.20193
6. DB Systel | Schlomo Schapiro | @schlomoschapiro | 13-14.11.20196
20/day
20 / day /
team ???
We can´t check
everything!
We
can‘t
work!
Challanges:
• Time to Market
vs. Stability?
• Change Frequency vs.
Risk & Security?
• Governance
& Compliance?
• You build it – you run it?
• DevOps???
15. 15
git
?CI CD
DB Systel | Schlomo Schapiro | @schlomoschapiro | 13-14.11.2019
WHAT HOW
Declarative
Descriptions
Deployment
Automation
Test for Compliance Test for Correctness
Product
Teams
Platform
Teams
21. DevOps' Seven Deadly Diseases - John Willis
DB Systel | Schlomo Schapiro | @schlomoschapiro | 13-14.11.201921
https://youtu.be/jdN3E9OwFoE
https://itrevolution.com/book/devops-automated-governance-reference-architecture/
22. Summary: Compliant by Default!
DB Systel | Schlomo Schapiro | @schlomoschapiro | 13-14.11.201922
1. Think in Code:
Build Tools
2. Craft precise policies:
Easy to automate checks
3. Production is
Your Certified Space
4. Every Change in Pro-
duction Starts in git
5. Declarative Descriptions