Latest Podcast updates

• #74 - From Preparation To Execution: Handling An Active Incident

  Published: Mon, 10 Feb 2025 12:59:51 -0400
• What keeps an incident from spiraling out of control? How can you organize your team on the spot? We continue our series on incident response, moving from preparation to real-time actions. Mattias shares key points from his course. Listen to learn how we handle incidents step by step. Connect with us on LinkedIn or Twitter (see info at https://devsecops.fm/about/). We are happy to answer any questions, hear suggestions for new episodes, or hear from you, our listeners. Lissen

• #73 - Incident Response: Key Preparations You Need

  Published: Wed, 22 Jan 2025 12:04:32 -0400
• Incident response can be complex, but where do you start? Andrey, Mattias, and Paulina dive into the preparation steps you need to take. Mattias shares his expertise from teaching an incident response course. What’s their top recommendation? Listen and find out! Connect with us on LinkedIn or Twitter (see info at https://devsecops.fm/about/). We are happy to answer any questions, hear suggestions for new episodes, or hear from you, our listeners. Lissen

• #72 - AWS Resource Control Policies (RCPs)

  Published: Tue, 14 Jan 2025 07:40:42 -0400
• We are looking into recently announced AWS Resource Control Policies. What are they? How are they different from Service Control Policies? What is a Data Perimeter? Tune in to find out!   Connect with us on LinkedIn or Twitter (see info at https://devsecops.fm/about/). We are happy to answer any questions, hear suggestions for new episodes, or hear from you, our listeners. Lissen

• #71 - Unpacking The Dora Accelerate State Of Devops Report

  Published: Fri, 20 Dec 2024 09:58:05 -0400
• In this episode, Andrey, Mattias, and Paulina break down the new DORA Accelerate State of DevOps report. What’s changed since the last report? What do these insights mean for your team? Tune in for our insightful conversation! Connect with us on LinkedIn or Twitter (see info at https://devsecops.fm/about/). We are happy to answer any questions, hear suggestions for new episodes, or hear from you, our listeners. Lissen

• #70 - System Initiative Goes Ga

  Published: Thu, 28 Nov 2024 17:35:26 -0400
• Andrey, Mattias, and Paulina are joined by Paul Stack, an IaC tools developer and a frequent guest on the show. He’s back to discuss the general availability of System Initiative and share what has changed since his last visit when they talked about the early beta of the tool. Will this be a revolution or evolution in Infrastructure as Code tooling? Do we really need collaborative infrastructure management tools? Tune in to find out!  Connect with us on LinkedIn or Twitter (see info at https://devsecops.fm/about/). We are happy to answer any questions, hear suggestions for new episodes, or hear from you, our listeners. Lissen

• #69 - Who Is Paulina?

  Published: Fri, 08 Nov 2024 15:41:09 -0400
• Join Andrey and Mattias as they sit down with Paulina Dubas, an independent DevOps consultant and public speaker. Who is Paulina, and what experiences does she bring to the table? What topics particularly resonate with her? Tune in to learn more about Paulina since we have a feeling that she is here to stay Connect with us on LinkedIn or Twitter (see info at https://devsecops.fm/about/). We are happy to answer any questions, hear suggestions for new episodes, or hear from you, our listeners. Lissen

• #68 - Julien’s Last Episode?

  Published: Thu, 17 Oct 2024 17:25:55 -0300
• Julien shares big news with co-hosts Mattias and Andrey. What led to his decision to step down? And what does the future hold for him? Tune in for the off-boarding interview as we look back at the past four years and 60+ episodes we did together! Connect with us on LinkedIn or Twitter (see info at https://devsecops.fm/about/). We are happy to answer any questions, hear suggestions for new episodes, or hear from you, our listeners. Lissen

• #67 - Building MVP On AWS

  Published: Thu, 03 Oct 2024 17:20:50 -0300
• Join Andrey, Julien, and Mattias in this episode of DevSecOps Talks as they delve into building Minimum Viable Products (MVPs) and selecting the best solutions for them. Andrey goes first and, as an AWS consultant, kicks off the discussion by outlining his preferred AWS services for MVP development. Connect with us on LinkedIn or Twitter (see info at https://devsecops.fm/about/). We are happy to answer any questions, hear suggestions for new episodes, or hear from you, our listeners. Lissen

• #66 - Multi-Account Strategy And Landing Zones: Account Segmentation Approaches For Security And Efficiency On AWS

  Published: Mon, 27 May 2024 08:53:17 -0300
• In this episode of DevSecOps Talks, co-hosts Andrey, Julien, and Mattias are joined by AWS Consultant Fernando Gonçalves to explore the complexities of AWS organization and account segmentation. Get insights into the debate over development, stage, and production accounts versus micro-segmentation. Don’t miss Julien’s take on why he believes staging is a waste of time and money, as well as Fernando’s explanation of what the AWS Landing Zone is. Learn about the tools provided by AWS for multi-account management and the pros and cons of various account segmentation approaches. Connect with us on LinkedIn or Twitter (see info at https://devsecops.fm/about/). We are happy to answer any questions, hear suggestions for new episodes, or hear from you, our listeners. Lissen

• #65 - Understanding Nats: An Explainer Of Its Features And Capabilities

  Published: Tue, 07 May 2024 17:04:29 -0300
• Join Andrey, Julien, and Mattias in this episode of DevSecOps Talks as they discuss Nats.io, a messaging system popular among people building on top of Kubernetes. Julien explains how Nats is different from Kafka and shares his personal experience with the product. The hosts discuss the various use cases of Nats and explore its features and capabilities. Tune in to find out if Nats is the right messaging system for you! Connect with us on LinkedIn or Twitter (see info at https://devsecops.fm/about/). We are happy to answer any questions, hear suggestions for new episodes, or hear from you, our listeners. Lissen

• DEVSECOPS Talks #64 - From Terraform To Opentofu: Story From The Trenches

  Published: Thu, 11 Apr 2024 16:45:08 -0300
• In this episode of DevSecOps Talks, Andrey and Mattias are joined by Timur Bublik, Platform Engineering Lead at TIER Mobility. As always, it’s practitioners for practitioners as they discuss the migration from Terraform to OpenTofu, TACOS tools, and how SpaceLift is used in Timur’s organization. Listen in as they dive into their three favorite features of SpaceLift and how TACOS tools like SpaceLift fit into the classic CI/CD pipeline. Connect with us on LinkedIn or Twitter (see info at https://devsecops.fm/about/). We are happy to answer any questions, hear suggestions for new episodes, or hear from you, our listeners. Lissen

• DEVSECOPS Talks #63 - Yet Another AI Episode

  Published: Thu, 14 Mar 2024 18:28:59 -0300
• Julien has returned with some exciting AI news. A startup has made the bold claim that they are capable of building AI software engineer. Andrey shares details about another startup that generates infrastructure based on application source code. He also mentions his upcoming talk on the use of LLM-based tools. We also discuss how individuals can stay ahead of the curve and be prepared for changes in their work life. Connect with us on LinkedIn or Twitter (see info at https://devsecops.fm/about/). We are happy to answer any questions, hear suggestions for new episodes, or hear from you, our listeners. Lissen

• DEVSECOPS Talks #62 - The DevSecOps Perspective: Key Takeaways From Re:Invent 2023

  Published: Sat, 02 Mar 2024 18:00:41 -0400
• In this episode of DevSecOps Talks, Andrey and Mattias discuss the latest announcements from re:Invent 2023 that are most relevant to DevSecOps practitioners. Which announcements are worth paying attention to? What are the implications for the DevSecOps community? Join us as we dive into the latest developments from AWS. Connect with us on LinkedIn or Twitter (see info at https://devsecops.fm/about/). We are happy to answer any questions, hear suggestions for new episodes, or hear from you, our listeners. Lissen

• DEVSECOPS Talks #61 - GitHub Actions And Evolution Of CI/CD Tools

  Published: Thu, 08 Feb 2024 17:44:54 -0400
• Andrey has been exploring GitHub Actions and has some insights to share. How have CI/CD solutions transformed over time, and what innovations do GitHub Actions bring to the table? Julien drops a few tools that could be useful for GitHub Actions users.    Connect with us on LinkedIn or Twitter (see info at https://devsecops.fm/about/). We are happy to answer any questions, hear suggestions for new episodes, or hear from you, our listeners. Lissen

• DEVSECOPS Talks #60 - ChatGPT Anniversary: Where Are We With AI In Our Everyday Work

  Published: Thu, 25 Jan 2024 17:36:32 -0400
• Welcome to the first DevSecOps Talks episode of the new year! It’s been a whole year since ChatGPT hit the scene – but how has AI adoption shaped our world since then? Join Julien, Mattias, and Andrey as they dive into the impact of AI on their workflows. How have their daily tech tools and practices evolved with AI integration? Plus, Julien gives us an insider’s look at running models locally. Are these AI tools enhancing our efficiency? Tune in to find out how these advancements are reshaping the landscape of DevSecOps.   Connect with us on LinkedIn or Twitter (see info at https://devsecops.fm/about/). We are happy to answer any questions, hear suggestions for new episodes, or hear from you, our listeners. Lissen

• DEVSECOPS Talks #59 - Migration Off The Cloud: To Leave or Not to Leave?

  Published: Tue, 16 Jan 2024 05:02:33 -0400
• Is the grass greener outside the cloud? This episode dives into the trend of companies (notably Hey and Dropbox) migrating away from cloud services. Why are they leaving, and who would benefit from such a move? We also scrutinize the common belief that public clouds are overly expensive. Join us as we dissect various cloud cost optimization tools and techniques.   Connect with us on LinkedIn or Twitter (see info at https://devsecops.fm/about/). We are happy to answer any questions, hear suggestions for new episodes, or hear from you, our listeners. Lissen

• DEVSECOPS Talks #58 - AWS CDK with Igor Soroka

  Published: Thu, 28 Dec 2023 09:38:55 -0400
• You know our fondness for Terraform, but we are also open to exploring other tools. This episode is no different. We are joined by Igor Soroka, an expert in AWS serverless technology whose tool of choice is AWS CDK, but at the same time, he is no stranger to Terraform. We ask him practical questions about the tool and get answers based on his experience applying it to real-life projects. If you have been curious about CDK, how it functions, and if it’s appropriate for you, then tune in to learn more. Connect with us on LinkedIn or Twitter (see info at https://devsecops.fm/about/). We are happy to answer any questions, hear suggestions for new episodes, or hear from you, our listeners. Lissen

• DEVSECOPS Talks #57 - Terraform Best Practices with Ben Goodman

  Published: Thu, 23 Nov 2023 07:44:29 -0400
• In this episode, Mattias is joined by Ben Goodman, the founder of dragondrop.cloud, a platform that offers Terraform Best Practices as a Pull Request. They discuss the best workflows for Terraform, open-source tools that can be used in conjunction with Terraform, the most effective best practices, and common pitfalls to avoid when implementing infrastructure as code using Terraform. Connect with us on LinkedIn or Twitter (see info at https://devsecops.fm/about/). We are happy to answer any questions, hear suggestions for new episodes, or hear from you, our listeners. Lissen

• DEVSECOPS Talks #56 - Backstage and Internal Development Platforms (IDP)

  Published: Wed, 08 Nov 2023 07:44:20 -0400
• In this episode of DevSecOps Talks, join Andrey, Julien, and Mattias as they dive into the world of Backstage, the notable internal development platform. Mattias is keen to peel back the layers and understand what makes people think of Backstage as a must-have in modern DevOps toolchains. Andrey highlights the platform’s core feature: a comprehensive registry that keeps track of every software service running within a company. Could this signify a revival of IT change management, but with a twist? We’ve moved on from the days of cumbersome ticketing systems to streamlined internal development platforms. The team also ponders the future role of infrastructure engineers as they navigate the rising tides of AI—will AI become the new face behind these developer portals? Tune in to find out!   Connect with us on LinkedIn or Twitter (see info at https://devsecops.fm/about/). We are happy to answer any questions, hear suggestions for new episodes, or hear from you, our listeners. Lissen

• DEVSECOPS Talks #55 - Unpacking System Initiative with Paul Stack

  Published: Tue, 17 Oct 2023 05:58:04 -0300
• Our dialogue with Paul Stack resumes on DevSecOps Talks, almost two years after our initial podcast about his work on Pulumi (episode 25). As a warm-up, we talk about what prompted his move from Pulumi and his take on Open Terraform drama. The main topic of the episode is Paul’s current focus, System Initiative; we probe into its purpose, the progress so far, and the promise it holds for redefining how we think of doing Infrastructure as Code and DevSecOps workflows in general.   Connect with us on LinkedIn or Twitter (see info at https://devsecops.fm/about/). We are happy to answer any questions, hear suggestions for new episodes, or hear from you, our listeners. Lissen

• DEVSECOPS Talks #54 - HashiCorp’s BSL Move and OpenTF: What DevSecOps Practitioners Need to Know

  Published: Thu, 14 Sep 2023 09:18:55 -0300
• In this episode of DevSecOps Talks, we dive deep into HashiCorp’s recent shift to the Business Source License and its implications. Join Andrey, Julien, and Mattias as they unpack what this means for practitioners and explore the timeline of OpenTF initiative. Stay informed about what comes ahead with our latest discussion. Tune in!   Connect with us on LinkedIn or Twitter (see info at https://devsecops.fm/about/). We are happy to answer any questions, hear suggestions for new episodes or hear from you, our listeners. Lissen

• DEVSECOPS Talks #53 - Open Software Supply Chain Attack Reference Framework with Neatsun

  Published: Tue, 01 Aug 2023 10:47:07 -0300
• We had the opportunity to talk with Neatsun Ziv, one of the founders of Ox Security, about the Open Source Software Supply Chain Attack Reference Framework (https://pbom.dev). We delved deeper into possible attack vectors and explored ways to mitigate some of them. During our discussions, we also had a couple of unusual takes on supply chain security. If you are looking to understand the Open Source Software Supply Chain, then this episode is perfect for you. Connect with us on LinkedIn or Twitter (see info at https://devsecops.fm/about/). We are happy to answer any questions, hear suggestions for new episodes or hear from you, our listeners. Lissen

• DEVSECOPS Talks #52 - Lingon a.k.a Juliens and Jacobs open source project

  Published: Thu, 13 Jul 2023 16:42:02 -0300

• This time we got to talk about Lingon, an open-source project developed by Julian and Jacob who is a frequent podcast guest. Discover the motivations behind Lingon’s creation and how it bridges the gap between Terraform and Kubernetes. Learn how Lingon simplifies infrastructure management, tackles frustrations with YAML and HCL, and offers greater control and automation.

  Connect with us on LinkedIn or Twitter (see info at https://devsecops.fm/about/). We are happy to answer any questions, hear suggestions for new episodes or hear from you, our listeners.

  Lissen

• DEVSECOPS Talks #51 - Provisioning bare-metal servers

  Published: Fri, 30 Jun 2023 09:01:02 -0300
• Diving into the world of bare-metal servers, Mattias takes the helm solo for this episode. He’s accompanied by special guests Michael Wagner and Ian Evans from Metify, the company that powers Mojo - a leading platform for bare-metal provisioning automation. While we often chat about the big cloud service providers, this time we’re switching gears. If you’ve been curious about how real-world, physical servers are set up and managed, this episode is just for you. Join Mattias, Michael, and Ian as they dive into the nuts and bolts of setting up servers - a topic that Mattias is super passionate about. Connect with us on LinkedIn or Twitter (see info at https://devsecops.fm/about/). We are happy to answer any questions, hear suggestions for new episodes or hear from you, our listeners. Lissen

• DEVSECOPS Talks #50 - History of AWS networking and new ways to design your VPC setup

  Published: Thu, 18 May 2023 16:51:09 -0300
• In this episode, we discuss the evolution of AWS networking capabilities from EC2-classic to VPC and advanced networking features. Andrey highlights that while many companies only use VPC and VPC peerings, there are lesser-known features that can significantly change how we approach networking setups on AWS. Connect with us on LinkedIn or Twitter (see info at https://devsecops.fm/about/). We are happy to answer any questions, hear suggestions for new episodes or hear from you, our listeners. Lissen

• DEVSECOPS Talks #49 - Password managers, ways to share sensitive info, email aliases, ChatGPT and much more

  Published: Wed, 12 Apr 2023 08:03:13 -0300
• This is a mixed bag of an episode, we chat about all sorts of digital tools and security practices that we use in our day-to-day lives. We start by talking about password managers, and why Julien still using LastPass after the recent LastPass data breach. Julien gives us the lowdown on his personal approach to handling passwords and two-factor authentication (2FA) tokens, showing us why strong security measures matter. Julien also shares his favorite email alias service and we discuss services for sharing sensitive information to keep mail inboxes cleaner and more private. We also spoke about ChatGPT, an AI language model from OpenAI - will it replace jobs? should we be using it? And how? Just a heads up, we aren’t sponsored by companies we mention in this episode. We’re just sharing our personal experiences and the stuff we like to use.   Connect with us on LinkedIn or Twitter (see info at https://devsecops.fm/about/). We are happy to answer your questions, hear suggestions for new episodes or just hear from you, our listeners. Lissen

• DEVSECOPS Talks #48 - Building Data Platforms

  Published: Wed, 08 Mar 2023 12:52:35 -0400
• Julien has extensive experience building data platforms for data engineering, so we got him talking and sharing. If infra for data engineering is your cup of tea, then this episode is for you. Connect with us on LinkedIn or Twitter (see info at https://devsecops.fm/about/). We are happy to answer your questions, hear suggestions for new episodes or just hear from you, our listeners. Lissen

• DEVSECOPS Talks #47 - Tracing explained

  Published: Tue, 07 Feb 2023 07:43:47 -0400
• We discussed tracing before but never got around to explaining details such as fundamentals, terminology, etc. This time Julien goes into detail about what tracing is, what the benefits are, the basic terms you need to understand, and where to start. Great episode for those who are considering adding tracing capabilities to their systems.   Connect with us on LinkedIn or Twitter (see info at https://devsecops.fm/about/). We are happy to answer your questions, hear suggestions for new episodes or just hear from you, our listeners. Lissen

• DEVSECOPS Talks #46 - Software supply chain attacks

  Published: Thu, 01 Dec 2022 07:27:43 -0400
• We are happy to welcome back Jacob Lärfors, CEO and Senior Consultant from Verifa, to talk about software supply chain attacks. It feels important to raise this topic since those attacks start to be utilized more often by sophisticated adversaries. At the same time, software supply chain security is something that companies often overlook. We as practitioners have so many things to consider and do that, in most cases, we do not have enough cognitive capacity left when looking into our library sources. What are the things we need to be aware of, and what are the low-hanging fruits we could utilize to help developers do their job securely?   Connect with us on LinkedIn or Twitter (see info at https://devsecops.fm/about/). We are happy to answer your questions, hear suggestions for new episodes or just hear from you, our listeners. Lissen

• DEVSECOPS Talks #45 - What is happening with Docker?

  Published: Wed, 02 Nov 2022 08:15:52 -0300
• Have you heard any recent news from Docker? We haven’t. That is why we decided to check up on Docker to see how it is doing and go through the tool’s history and adoption. Clueless about the difference between Docker, Containerd, CRI-O? We got you covered. Also, we will highlight a couple of new handy capabilities added recently.   Connect with us on LinkedIn or Twitter (see info at https://devsecops.fm/about/). We are happy to answer your questions, hear suggestions for new episodes or just hear from you, our listeners. Lissen

• DEVSECOPS Talks #44 - Kosli with Mike Long. From compliance to answering questions about the production environment

  Published: Thu, 01 Sep 2022 08:08:03 -0300
• We are excited about the new breed of tools coming to the market. We often had to put together tools to find out what was in production and what broke it. Your monitoring tools go as far as only telling you that something isn’t working as expected but not why it is so, and then you have to scramble to figure out what versions of services are in production, were there any recent deploys, etc. So you can understand what has changed to narrow down possible causes. Our good friend Mike and his team are building the tool to answer exactly such questions, so we thought you might be interested in hearing him out.   Connect with us on LinkedIn or Twitter (see info at https://devsecops.fm/about/). We are happy to answer your questions, hear suggestions for new episodes or just hear from you, our listeners. Lissen

• DEVSECOPS Talks #43 - Terraform 1.0 to 1.3.0. One year in review

  Published: Tue, 28 Jun 2022 09:06:02 -0300
• We are discussing what has happened in Terraform world since the 1.0 release last year and if there are new features worth mentioning, trends in Terraform development, etc. As well as doing a recap of the road to 1.0 and how long it took us to get there. Connect with us on LinkedIn or Twitter (see info at https://devsecops.fm/about/). We are happy to answer your questions, hear suggestions for new episodes or just hear from you, our listeners. Lissen

• DEVSECOPS Talks #42 - Prometheus - a practitioner take

  Published: Thu, 19 May 2022 08:48:41 -0300
• If you follow CloudNative hype wave, you might feel that Prometheus is the must-use monitoring tool for everything CloudNative. Plus, almost everything nowadays has a Prometheus exporter. Just get that helm chart installed, and here you go - metrics question sorted out. Want to monitor endpoints - here is BlackBox exporter for you. Want to get notifications - AlertManager got you covered. And so on and so on. But is it all rainbows and unicorns? You probably guessed that it depends. This time, Semyon is joining us to air his grievances with Prometheus and share insights on how to cook it if you decide to go down this route. Lissen

• DEVSECOPS Talks #41 - Great communication FTW

  Published: Tue, 26 Apr 2022 04:57:43 -0300
• Communication in co-located teams is quite often complicated. It is even more complex and, at the same time, important in distributed teams. Have you ever got an issue report that says this thing is failing? No logs, no explanation of context, no nothing. Pretty sure we’ve all been in such situations. How do you step up your communication game? This episode of DevSecOps Talks is about great communication tips for DevSecOps practitioners in distributed (and not only) teams.   Connect with us on LinkedIn or Twitter https://devsecops.fm/about/ and tell us about your questions, and we will answer them in the show. Lissen

• DEVSECOPS Talks #40 - Web3 and its implications for DevSecOps practitioners

  Published: Wed, 23 Mar 2022 09:47:57 -0300
• web3 has gotten a lot of attention lately; thus, it is time for us to separate facts from the hype.In this episode, we are trying to understand its implications for us as DevSecOps practitioners.   Connect with us on LinkedIn or Twitter https://devsecops.fm/about/ and tell us about your questions, and we will answer them in the show. Lissen

• DEVSECOPS Talks #39 - Setting up tools and environments

  Published: Mon, 07 Feb 2022 14:23:00 -0400
• Andrey feels frustrated that he has to develop a way to configure environments for every customer. Think for yourself - you arrive at a new project or company. It is day one, and you need to get the right tools as well as the correct environment configuration. During this episode, we are trying to figure out how companies solve it. And is there a standard solution? What are the options?   Connect with us on LinkedIn or Twitter https://devsecops.fm/about/ and tell us about your questions, and we will answer them in the show. Lissen

• DEVSECOPS Talks #38 - Platform teams with Henrik

  Published: Mon, 24 Jan 2022 13:18:18 -0400

• Henrik Hoegh is back to talk about his experiences working in the platform team at his new job, but before that, we are getting through the following topics:

  • bash is the future of automation (not really, but some people think so)
  • building multi-cloud solutions using k8s and service mesh solutions
  • Shuttle - CLI for handling shared build and deploy tools between projects no matter what technologies the projects are using https://github.com/lunarway/shuttle
  • when is it the time to start looking into the building application delivery platform
  • platform team as an enabler or evil gatekeeper
  • team topology

  Connect with us on LinkedIn or Twitter https://devsecops.fm/about/ and tell us about your questions, and we will answer them in the show.

  Lissen

• DEVSECOPS Talks #37 - Surviving AWS outage (revised for 2021)

  Published: Fri, 07 Jan 2022 17:58:42 -0400
• us-east-1 will never go down, and if it would, half of the internet would go down. It is what people used to say. So, us-east-1 went down big time. What does it mean for us as practitioners? What should we consider going forward? In this episode, we talk through the incident and disaster recovery strategies you can consider to keep your company up Connect with us on LinkedIn or Twitter https://devsecops.fm/about/ and tell us about your questions, and we will answer them in the show. Lissen

• DEVSECOPS Talks #36 - Sturdy. Is it time for a new version control tool?

  Published: Tue, 07 Dec 2021 04:46:17 -0400
• We have had Git around for more than 15 years, and during that time, it has become a standard de-facto to share code and track code changes. While Git is a superior version control system to most of what we have seen before, it has been 15 years since the first release. Should we be looking for new ways to approach version control systems? Is the time right for the next generation of tools in this area?   Connect with us on LinkedIn or Twitter https://devsecops.fm/about/ and tell us about your questions, and we will answer them in the show. Lissen

• DEVSECOPS Talks #35 - Infrastructure as code (IAC) revisited 2021

  Published: Tue, 16 Nov 2021 06:31:34 -0400
• Our first episode was about Infrastructure as code, and we feel that it is time to revisit the topic after almost two years. Another reason is the release of the second edition of Infrastructure as Code book by Keif Morris. Thus, in this episode, we revisit the definition of Infrastructure as code and try to summarize what has changed over the years. We hope you like it!   Connect with us on LinkedIn or Twitter https://devsecops.fm/about/ and tell us about your questions, and we will answer them in the show. Lissen

• DEVSECOPS Talks #34 - Google Next and HashiConf recap

  Published: Tue, 02 Nov 2021 10:17:20 -0300
• Julien gives his impressions of Google Cloud Next 2021, and Andrey recaps HashiConf Global 2021 as well as gives his take with the twist on why do we might need HashiCorp Waypoint   Connect with us on LinkedIn or Twitter https://devsecops.fm/about/ and tell us about your questions, and we will answer them in the show. Lissen

• DEVSECOPS Talks #33 - Do I need a service mesh?

  Published: Thu, 30 Sep 2021 05:28:14 -0300
• Everyone seems to be talking about service mesh. Mattias, Julien, and Andrey are trying to separate hype and real value. Most importantly, they dig into when is the good time for the organization is to embrace service mesh and what are the prerequisites   Connect with us on LinkedIn or Twitter https://devsecops.fm/about/ and tell us about your questions, and we will answer them in the show. Lissen

• DEVSECOPS Talks #32 - Getting hired as an infrastructure automation person

  Published: Mon, 13 Sep 2021 10:37:02 -0300
• As a follow-up to the last episode about hiring an infrastructure automation person we decided to reverse the view and talk about how do you get hired as an infrastructure automation person. This episode is full of career advice for people who are just only from university as well as people who already have experience in the industry.   Connect with us on LinkedIn or Twitter https://devsecops.fm/about/ and tell us about your questions, and we will answer them in the show. Lissen

• DEVSECOPS Talks #31 - Hiring an infrastructure automation person

  Published: Tue, 24 Aug 2021 08:16:37 -0300
• Have you ever conducted an interview to hire an infrastructure automation person? What would you ask? How do you check their skills? And what skills are essential? Tune in for our tips on hiring and finding the right person for your team!   Connect with us on LinkedIn or Twitter https://devsecops.fm/about/ and tell us about your questions, and we will answer them in the show. Lissen

• DEVSECOPS Talks #30 - Logs, metrics and traces

  Published: Wed, 23 Jun 2021 08:41:06 -0300
• Logs, metrics, and traces are the three pillars of observability. Where should you start? What are the common mistakes to avoid? And if you are to pick one - which one should you do? Connect with us on LinkedIn or Twitter https://devsecops.fm/about/ and tell us about your questions, and we will answer them in the show. Lissen

• DEVSECOPS Talks #29 -Unikernels are here

  Published: Wed, 19 May 2021 09:29:19 -0300
• This time we are talking unikernles! Ian Eyberg from NanoVMs joins us to discuss how far this technology is from prime time. And it turns out that you don’t have to be a kernel developer to take advantage of unikernes. Today, there are tools available to package, distribute, and run them locally as well as in the public cloud. While talking to Ian, it felt that the state of the technology is very similar to Linux containers at the beginning of 2010x, just before Docker made Linux containers available for everyone. Connect with us on LinkedIn or Twitter https://devsecops.fm/about/ and tell us about your questions, and we will answer them in the show. Lissen

• DEVSECOPS Talks #28 - Scaling Security

  Published: Tue, 04 May 2021 03:49:11 -0300
• The real cloud lock-in is security! Every service/cloud provider has its own levels of granularity regarding resources. Cloud engineering is mainly about compute, storage, and networking and how to make them scale. Scaling security is often left out as it is hard to measure on so many levels. We think that it is a myth and that we can measure how many steps it takes to add, modify or remove access rights. It all starts with monitoring, knowing what is there in a cloud infrastructure is a very good first step. By making it easy to see and manage access rights, we make it easier for ourselves to keep resources secured.   Connect with us on LinkedIn or Twitter https://devsecops.fm/about/ and tell us about your questions, and we will answer them in the show. Visit https://devsecops.fm to see show notes and https://gitter.im/devsecopstalks/community to join a discussion. Lissen

• DEVSECOPS Talks #27 - AWS Bottlerocket - Open Source Contrainer OS from AWS. Explained

  Published: Mon, 12 Apr 2021 04:23:28 -0300
• AWS released AWS Bottlerocket OS in March of 2020, and version 1.0.0 got released in August 2020.What is it? Should you be using it? What are the benefits?Is it ready for prime time? We answer all of those questions during this episode of DevSecOps Talks. Tune in!   Connect with us on LinkedIn or Twitter https://devsecops.fm/about/ and tell us about your questions, and we will answer them in the show. Visit https://devsecops.fm to see show notes and https://gitter.im/devsecopstalks/community to join a discussion. Lissen

• DEVSECOPS Talks #26 - Git Branching Strategies. Do's and Don'ts

  Published: Mon, 29 Mar 2021 08:07:43 -0300
• Johan Abildskov (@RandomSort, see episode 6) is back, and we are talking branching strategies! In particular, why you shouldn’t be doing git-flow, and what are other options out there. This conversation takes us down memory lane to a more broad discussion about version control systems, mono-repositories, continuous integration, and delivery. We hope you will like it! Connect with us on LinkedIn or Twitter https://devsecops.fm/about/ and tell us about your questions, and we will answer them in the show. Visit https://devsecops.fm to see show notes and https://gitter.im/devsecopstalks/community to join a discussion. Lissen

• DEVSECOPS Talks #25 -All The Things You Wanted To Know About Pulumi. Explained

  Published: Fri, 12 Mar 2021 06:48:47 -0400

• This time we are joined by Paul Stack (@stack72, Pulumi developer, former Terraform developer) and podcast friend Jacob Lärfors to talk about

  • what is Pulumi is?
  • understand the difference between Pulumi vs. Terraform (and if we should compare them at all)
  • What is hard about Pulumi?
  • What people ask the most? What are the common confusions?
  • Cross-language infra libraries? How is it even possible?!
  • Is there a possibility of a supply chain attack via Pulumi library? Connect with us on LinkedIn or Twitter https://devsecops.fm/about/ and tell us about your questions, and we will answer them in the show. Visit https://devsecops.fm to see show notes and https://gitter.im/devsecopstalks/community to join a discussion.
  Lissen

• DEVSECOPS Talks #24 - Ways To Protect Yourself From Data Breaches And Mitigate Consequences

  Published: Mon, 22 Feb 2021 17:34:35 -0400
• Last week (week 6, 2021), seven data breaches were announced. In this episode, we discuss the possible scenarios for preventing attackers from getting a hold of your data, whether private or company data. And tips on how to mitigate the consequences of data leaks in cases when you have no control over data management (think of breach of 3rd party service).   Connect with us on LinkedIn or Twitter https://devsecops.fm/about/ and tell us about your questions, and we will answer them in the show. Visit https://devsecops.fm to see show notes and https://gitter.im/devsecopstalks/community to join a discussion Lissen

• DEVSECOPS Talks #23 - How Do We Run Kubernetes In The Cloud?

  Published: Fri, 05 Feb 2021 05:55:05 -0400
• How do you run Kubernetes in the cloud? Still using Kops? Or is it time to jump to the managed offerings?We go through the list of things you might be missing out on if not yet using a managed solution.Also, in this episode - what do you always configure in the k8s cluster? CNI, Ingress, IAM, and even more!   Visit https://devsecops.fm to see show notes and https://gitter.im/devsecopstalks/community to join a discussion Lissen

• DEVSECOPS Talks #22 - Who are Mattias, Julien and Andrey?

  Published: Fri, 22 Jan 2021 08:41:33 -0400
• It’s been almost a year since we started the podcast, but we never took time to explain who we are and what problems we solve for our customers/employers. So in this episode, you will find more details about us and, as usual, references to useful tools, talks, and techniques.   Visit https://devsecops.fm to see show notes and https://gitter.im/devsecopstalks/community to join a discussion Lissen

• DEVSECOPS Talks #21 - Surviving AWS Outage

  Published: Tue, 05 Jan 2021 07:23:16 -0400
• AWS had a severe incident at the end of November. Kinesis in us-east-1 went dark for quite some time, and a ripple effect caused degradation of other services like CloudWatch, ECS, and others.As a Cloud Engineering practitioner, how do you get yourself and your organization ready for a such turn of events?   Visit https://devsecops.fm to see show notes and https://gitter.im/devsecopstalks/community to join a discussion Lissen

• DEVSECOPS Talks #20-2020 - Monitoring Done Wrong or Dreaming For A Better Monitoring

  Published: Mon, 07 Dec 2020 10:25:49 -0400
• Andrey wants monitoring to be more magical, or does he want a wrong thing? What are the sane defaults? And why do we have to set up boilerplate monitoring again and again?  Mattias shares what he does for monitoring security events.  Julien explains why using logs to debug in a microservices architecture is costly and inefficient.    Visit https://devsecops.fm to see show notes and https://gitter.im/devsecopstalks/community to join a discussion Lissen

• DEVSECOPS Talks #19-2020 - Deleting Resources In The Cloud

  Published: Mon, 23 Nov 2020 16:19:45 -0400
• How to decommission resources from your cloud environment to keep it clean? What to do when a resource is created without being in the infrastructure code? Andrey is going through a checklist he uses to delete resources and the utility serverless functions he wrote. ArgoCD is a project that does GitOps and automatically delete resources in Kubernetes namespaces if they are not defined. We talked about the different layers of abstraction for infrastructure as code and where it makes sense to have a terraform controller in a Kubernetes cluster to manage the application dependencies. Visit https://devsecops.fm to see show notes and https://gitter.im/devsecopstalks/community to join a discussion Lissen

• DEVSECOPS Talks #18-2020 - HashiConf Special

  Published: Mon, 26 Oct 2020 12:42:30 -0300
• Initially, we planned this episode as a discussion about HashiCorp Nomad and invited Jacob Lärfors. He recently published a great article about his experience working with Nomad (see link in the show notes). However, because of a few postponements, and with HashiConf that happened just a week ago, we decided to extend the podcast’s scope to go over all of the announcements that they did during the conference. So here it is - HashiConf special: all you need to know about everything that HashiCorp announced during the conference plus a discussion about Nomad! Visit https://devsecops.fm to see show notes and https://gitter.im/devsecopstalks/community to join a discussion Lissen

• DEVSECOPS Talks #17-2020 - Best Practices for Building Docker Images

  Published: Tue, 13 Oct 2020 12:50:12 -0300
• This is the first episode in the new format - 30 minutes short and crisp episodes, i.e., less water and side discussions, focusing on the topic, duration under (well, almost under) 30 minutes. We hope you like it!   The topic of this episode is building docker images - automation, security, best practices.   In this episode, we discuss: Saving money with T3a family Building Docker images locally and in CI Setting up deamonless Docker builds for CI and k8s Using multistage builds to keep your images nice and clean as well as encapsulate the build environment and make it portable Passing secrets to Docker build and inspecting image layers for secrets (ssh-agent and many more) Keeping Docker images updated with dependencies and updates Scanning Docker images for vulnerabilities Docker image layers caching - doing it right DockerHub is to delete old images stored for free, and GitHub is ready to host them for you Docker image naming so you can find all you need to debug quickly   In some of the information overlaps with episode #3 but greatly extends information provided before https://devsecops.fm/episodes/docker-secure-build/   Visit https://devsecops.fm to see show notes and https://gitter.im/devsecopstalks/community to join a discussion Lissen

• DEVSECOPS Talks #16-2020 - Do you need a staging environment?

  Published: Tue, 29 Sep 2020 08:47:48 -0300
• In this episode, we discuss options for splitting your deployment stages.We hear people coming up with all possible type of environments - dev, test/QA, integration, stage, prod, etcHow many do you actually need? What is the reason for having all those stages?Maybe do you need less? Why not deploy directly to production using some fancy technique? Put it simply - stage or not to stage?   Visit https://devsecops.fm to see show notes and https://gitter.im/devsecopstalks/community to join a discussion Lissen

• DEVSECOPS Talks #15-2020 - Remote Work Security

  Published: Thu, 17 Sep 2020 09:50:57 -0300
• Let’s talk about security in the era of remote work. Most of us have experienced a flaky VPN connection.What are the alternatives? SSH certificates? Yubikey? We discussed various topics around security inside a cluster and outside.   Visit https://devsecops.fm to see show notes and https://gitter.im/devsecopstalks/community to join a discussion Lissen

• DEVSECOPS Talks #14-2020 - Theory of constraint

  Published: Mon, 31 Aug 2020 06:30:31 -0300
• This time, we are joined by Henrik Høegh who shares his unique perspective on applying the theory of constraint to IT transformation as well as how it applies in the world of Cloud Native. We go back to the origin of DevOps, discussing the various problems companies are facing when transforming their organizations and adopting cultural changes.   Visit https://devsecops.fm to see show notes and https://gitter.im/devsecopstalks/community to join a discussion Lissen

• DEVSECOPS Talks #13-2020 - All you need to know about setting up HashiCorp Vault

  Published: Tue, 18 Aug 2020 04:57:49 -0300
• Mattias wants to setup HashiCorp Vault and quizzes Andrey how to do that. We cover a lot of ground - from basic Vault concepts to setting it up and hardening. Lissen

• DEVSECOPS Talks #12-2020 - Scale and Scaling

  Published: Mon, 03 Aug 2020 05:02:47 -0300
• Julien and Andrey got together to define the scale and ways to automate the scaling of your infrastructure in response to changes in load patterns.What are the prerequisites implementing scaling? What is cooling down, warm up, horizontal and vertical scaling, scale-up, and scale in? What are the metrics that could be useful for making scaling decisions?And last but not least, the very unexpected spin that Julien gives to the conversation.    Visit https://devsecops.fm to see show notes and https://gitter.im/devsecopstalks/community to join a discussion Lissen

• DEVSECOPS Talks #11-2020 - AWS Security Maturity Roadmap 2020

  Published: Fri, 10 Jul 2020 03:55:45 -0300
• This time we are discussing the white paper by Summit Route - AWS Security Maturity Roadmap 2020. Tune in to learn more about the white paper and recommendations that we pile up on top of it.To view show notes visit https://devsecops.fmChat with hosts and suggest topics for upcoming episodes at our Gitter channel https://gitter.im/devsecopstalks/community Lissen

• DEVSECOPS Talks #10-2020 - Are we wrong about Terragrunt?

  Published: Fri, 26 Jun 2020 11:44:31 -0300
• Our guest speaker is Anton Babenkohe is DevSecOps Talks podcast fan, AWS Community Hero, Terraform fanatic, HashiCorp Ambassador and a prolific open source contributor.After listening to episode #9 Terraform in CI and #1 Infrastructure as code,Anton decided that enough is enough and volunteered to give his point of view on Terragrunt since he though that we are missing a few important points.In this episode, we are discussing the use cases of Terragrunt,a wrapper around Terraform for working with multiple environment and modules. Lissen

• DEVSECOPS Talks #9-2020 - Terraform in CI

  Published: Sat, 06 Jun 2020 10:13:42 -0300
• How do you start to implement a CI pipeline when dealing with infrastructure as code ? What are the security concerns when the credentials to the whole kingdom are used in an automated process ? In this episode, we discuss the various security and feasibility aspects of using terraform in a CI pipeline. Lissen

• DEVSECOPS Talks #8-2020 - DevOps What

  Published: Mon, 25 May 2020 05:12:56 -0300
• Andrey tells us the story of how DevOps came into existence and took over the market. We discuss the marketing around it, its relationship with DevSecOps. We tried to shed a light on what is marketing strategy versus implementing DevOps in an organization. We also compared DevOps to SRE (Site Reliability Engineering) Lissen

• DEVSECOPS Talks #7-2020 - How do we learn

  Published: Wed, 06 May 2020 17:09:08 -0300
• In this episode, Mattias, Julien, and Andrey share tips and tricks on how to stay on top of what is going on in the industry, resources they use for continuous learning. Make sure to visit devsecops.fm to check out show notes that contain references to resources mentioned during discussion and more Lissen

• DEVSECOPS Talks #6-2020 - SemVer or not to SemVer

  Published: Wed, 06 May 2020 17:08:55 -0300
• This time Johan Abildskov, a Senior Consultant with Praqma/Eficode, joins us to talk about SemVer (Semantic Versioning), and we finally get to hear what Julien has to say about it. We get to explore different options regarding versioning and how it helps humans communicate. At the end of the podcast, everyone gets to share their approach and recommendations for versioning things. Lissen

• DEVSECOPS Talks #5-2020 - What we have been working on

  Published: Tue, 07 Apr 2020 07:36:03 -0300
• We had a couple of possible topics for this episode but before getting started with them we decided to discuss what technological problems we were solving during the last two weeks. Well, turns out there was quite a lot to discuss. Tune in for tips on ssh session logging on the ssh server, preventing downloads from AWS S3 even if you got read access, credentials in Git repository 🤦, why you should (or should not) do K8S and more. Lissen

• DEVSECOPS Talks #4-2020 - Is docker more secure then VM

  Published: Thu, 26 Mar 2020 10:14:19 -0300
• In this episode Mattias is trying to convince that running docker in k8s is more security then VM. Did he success ? listen and find out. Lissen

• DEVSECOPS Talks #3-2020 - Docker securing builds

  Published: Fri, 20 Mar 2020 04:45:44 -0300
• Your docker images and build are be coming the base for our platform. But are they secure? In this episode we talk about how you can secure your docker images. Lissen

• DEVSECOPS Talks #2-2020 - GitOps

  Published: Fri, 20 Mar 2020 03:44:04 -0300
• Gitops a new concept on devops. Whats is it and how can you use it when deploy and setup your k8s cluster. Lissen

• DEVSECOPS Talks #1-2020 - Infra as code

  Published: Thu, 19 Mar 2020 18:34:32 -0300
• Are infra as code always the best way to go and if not when and where should you use it. Here we are trying to better understand when its god to use and when its not. Lissen