DevOps World | Jenkins World 2019 Lisbon: Full Schedule

07:30 PST

Registration Open

Tuesday December 3, 2019 07:30 - 19:00 PST

08:30 PST

(49€) Application Release Orchestration - Why me? Why now?

Your exec team is talking about Application Release Orchestration as part of the Digital Transformation to bring your company into the next phase of managing your Software Deliveries - but what does it mean to you? How can it help you now and in the future? Why is this important to me right now?

Speakers

Stefan Kures

Head of EMEA Presales, CloudBees

Automation expert, Release Automation guy before Jenkins was born, Linux and Open Source enthusiast and enjoying great BBQ every weekendBased in Austria (no kangaroos there :)) Over the past decade Stefan focused on solving various automation challenges and this allowed him to collect... Read More →

Manuel Schuller

EMEA DevOps-ifier, Public Speaker, Business and Technical Challenges Solver, CloudBees

Manuel is a senior DevOps evangelist, with a 20+ years international experience on both Dev and Ops solutions, in EMEA. Often described as DevOps-ifier or DevOps-ologist, as his main role in his working life is to study the inputs and the outputs of the thinking systems that make... Read More →

Tuesday December 3, 2019 08:30 - 10:30 PST
Auditorium VI

Workshop

08:30 PST

Kubernetes Troubleshooting Primer

Tasked with building and supporting applications running on Kubernetes? In this tutorial, we’ll walk through scenarios developers may encounter when working with Kubernetes. You’ll learn about tools that are available for troubleshooting and how to diagnose problems when things aren’t working as they should. We’ll cover command line and graphical tools.

Speakers

Bryan Liles

Senior Staff Engineer, VMware

Bryan Liles is a Senior Staff Engineer at VMware. He leads the Developer Experience group, which creates solutions to help developers be more productive in Kubernetes. When not working, Bryan builds and races cars and drones.

Tuesday December 3, 2019 08:30 - 12:30 PST
Auditorium II

Workshop

08:30 PST

(350€) CloudBees Core Fundamentals

*This course requires pre-registration and an additional fee, and must be added to your conference pass via the registration site.

This class introduces the components and supported configurations of the CloudBees Core product suite. It also explains the value and configuration of key proprietary features provided with CloudBees Core to enhance the capabilities of Jenkins, including enhancements for authorization and security. These features specific to CloudBees Core allow you to assign an appropriate level of autonomy and/or control in the cluster, build management, instance administration and interface with cloud services.

The course consists of lectures with follow-along labs plus lab exercises that allow you to practice what you have learned. The Jenkins Administration - Fundamentals class is a prerequisite for this class; the Jenkins Administration - Intermediate class is also recommended.

Tuesday December 3, 2019 08:30 - 17:30 PST
Auditorium III

Training Class

08:30 PST

(350€) Continuous Delivery with Jenkins X

*This course requires pre-registration and an additional fee, and must be added to your conference pass via the registration site.

Pre-requisite information here: https://github.com/vfarcic/vfarcic.github.io/blob/master/jx/abstracts/REQS.md

A lot changed since we were introduced to the cloud, Kubernetes and containers. Whatever we did in the past might not be valid anymore. Our applications need to become cloud native, we need to adopt Kubernetes as the first-class citizen and there is no doubt that continuous delivery is a must for any company who wants to stay competitive. The problem is that Kubernetes is complicated and the ecosystem is vast. Understanding low-level details takes more time than we might have, and yet we need to get everyone on board. We need a tool that allows us to leverage all the latest and greatest processes and tools. At the same time, we need the tools to be simple and straightforward so that everyone can benefit from them. That is the primary objective behind the Jenkins X project. It brings power by combining best practices and tools while keeping it so simple that anyone can use it.

Jenkins X, an open source project introduced to the community by CloudBees, enables the rapid creation, delivery and orchestration of cloud native applications based on continuous delivery best practices and the proven Kubernetes platform.

By combining the power of Jenkins, its community and the power of Kubernetes, the Jenkins X project provides a path to the future of continuous delivery for microservices and cloud-native applications. Jenkins X is Jenkins plus additional best-of-breed tools and software for Kubernetes. It provides an interactive command-line interface to instantiate applications, repositories, environments and pipelines and orchestrate continuous integration and continuous delivery. We’ll explore how to create a fully operational continuous delivery pipeline using containers, Kubernetes, Jenkins X and quite a few other tools.

Speakers

Viktor Farcic

Developer Advocate, CloudBees

Viktor Farcic is a Developer Advocate at CloudBees, a member of the Docker Captains group, and published author.He coded using a plethora of languages starting with Pascal (yes, he is old), Basic (before it got Visual prefix), ASP (before it got .Net suffix), C, C++, Perl, Python... Read More →

Oscar Medina

Developer Advocate | Jenkins X, CloudBees

Oscar Medina has over 20 years in the technology sector. Oscar’s experience dates back to the Dotcom boom era, where he managed eCommerce sites based on UNIX and written in Java. He is an advocate for DevOps practices with a focus on cloud-agnostic tools and modern frameworks.Oscar’s... Read More →

Tuesday December 3, 2019 08:30 - 17:30 PST
Auditorium VII

Training Class

08:30 PST

(350€) Jenkins Admin I - Fundamentals

*This course requires pre-registration and an additional fee, and must be added to your conference pass via the registration site.

This session provides an in-depth introduction to using the Jenkins Dashboard to run and manage builds, and configure builds and the Jenkins instance. It also teaches you how to use the security facilities provided with Jenkins, CloudBees Jenkins Distribution and CloudBees Core. You'll also learn to configure nodes, agents and executors; manage credentials that secure access to remote resources; and, monitor and manage the performance of the Jenkins instance.

The course consists of lectures with follow-along labs plus lab exercises that allow you to practice what you have learned. This course is a prerequisite for all CloudBees Core and intermediate Jenkins Administration classes.

Speakers

Deepika Gautam

Managing Partner, Aplima Solutions

Deepika Gautam is a Managing Partner at Aplima Solutions. She is focused on designing and implementing DevOps toolchains in multi cloud environments. She has trained several hundreds of users worldwide on Jenkins. She is currently co-authoring a book on Jenkins Administration scheduled... Read More →

Tuesday December 3, 2019 08:30 - 17:30 PST
Sala 1.13

Training Class

08:30 PST

(350€) Jenkins Admin II - Intermediate

*This course requires pre-registration and an additional fee, and must be added to your conference pass via the registration site.

*NEW THIS YEAR*: This session expands the learning from Jenkins Administration - Fundamentals with more information about Jenkins upgrades, scaling Jenkins with custom scripts and Docker containers, disaster recovery, managing artifacts, security and logging, best practices for managing credentials, automation, performance monitoring and an introduction to Cloud Natives Jenkins using Docker, Kubernetes, etc.

The course consists of lectures with follow-along labs plus lab exercises where you practice what you have learned and is relevant to Jenkins, CloudBees Jenkins Distribution, and CloudBees Core.

Speakers

Himanshu Gautam

Founder | DevOps Evangelist, Aplima Solutions

Himanshu Gautam is the founder of Aplima Solutions and has worked in Software engineering for about 2 decades. He is a speaker, trainer, software developer, DevOps evangelist and cloud native application proponent. He specializes in leveraging open source tools and technologies... Read More →

Tuesday December 3, 2019 08:30 - 17:30 PST
Sala 3A

Training Class

08:30 PST

(350€) Jenkins Pipeline II - Intermediate

*This course requires pre-registration and an additional fee, and must be added to your conference pass via the registration site.

This session expands upon the information from Jenkins Pipeline - Fundamentals with topics such as how to implement scripted Pipelines, how to create and use shared libraries and how to define Docker agents and use them in your pipelines.

The course consists of lectures with follow-along labs plus lab exercises that allow you to practice what you have learned. This material in this course is relevant to Jenkins, CloudBees Jenkins Distribution, and CloudBees Core; the class is a prerequisite for the Jenkins Pipelines on CloudBees Core - Intermediate class.

Tuesday December 3, 2019 08:30 - 17:30 PST
Sala 3B

Training Class

08:30 PST

(599€) Accelerated DevOps Foundation Certification

The DevOps Foundation certification course covers the latest practices, principles, thinking and integrations from the DevOps community. The content covers the people, process and automation aspects of DevOps includes real world case studies that bring the learning experience to life while preparing the attendee to successfully pass the DevOps Foundation certification examination. Ordinarily a two day course, DevOps Institute has partnered with DevOps World to offer a one day Accelerated DevOps Foundation Course that meets the certification exam requirements while providing an engaging learning environment. We are particularly excited that Jayne Groll, CEO of the DevOps Institute and a recognized DevOps thought leader will lead this training session. The fee includes the certification examination.

Speakers

Jayne Groll

CEO, DevOps Institute

Jayne Groll is co-founder and CEO of the DevOps Institute (DOI). Jayne carries many IT credentials including ITIL Expert™, Certified ScrumMaster, Certified Agile Service Manager, DevOps Foundation and is a Certified Process Design Engineer (CPDE)™. Her IT management career spans... Read More →

Tuesday December 3, 2019 08:30 - 17:30 PST
Auditorium IV

Training Class

09:00 PST

Jenkins & Jenkins X Contributor Summit 2019 - Lisbon, Portugal

Addition Registration Required:
REGISTER HERE for Jenkins Contributor Summit
REGISTER HERE for Jenkins X Contributor Summit

This year we are combining the Jenkins and Jenkins X Contributor Summit. This is a place where current and future contributors gather to discuss, learn and collaborate on the latest and greatest efforts within Jenkins and Jenkins X project.
The morning portion of the summit will consist of presentations by the core contributors. Presentations will highlight efforts within the community and what community members can do to help. In the afternoon we will break into Birds of a Feather table for in-depth discussion and collaboration with sub-project contributors. Bring your laptop, come prepared with questions and ideas, and be ready for some hacking too.

Agenda (tentative)
9:00 am - Kickoff & Welcome with coffee/pastries
10:00 am - Project Updates
12:00 pm - Lunch Break (lunch not provided)
1:00 pm - BoF/Unconference
3:00 pm - Break
3:30 pm - BoF/Unconference
4:30 pm - Ignite Talks
5:00 pm - Wrap-up

REGISTER HERE for Jenkins Contributor Summit
REGISTER HERE for Jenkins X Contributor Summit

If you registered and no longer able to attend the summit pls cancel your reservation so we may get an as accurate headcount as possible, this will help us to plan accordingly. If you have any questions or need some additional assistance, please email Alyssa Tong atong@cloudbees.com - Thank you.

Speakers

Kohsuke Kawaguchi

Chief Scientist, CloudBees, Inc.

Kohsuke is the creator of Jenkins. He is a well-respected developer and popular speaker at industry and Jenkins community events. He is often asked to speak about his experience and approach in creating Jenkins; a continuous delivery platform that has become a widely adopted and successful community-driven open s... Read More →

Tracy Miranda

Head of Open Source, Chainguard

Tracy Miranda is the executive director of the Continuous Delivery Foundation (CDF) where she leads the mission to improve the world's capacity to deliver software with security and speed. Prior to CDF, Tracy was the Director of Open Source at CloudBees. Tracy is a veteran of the... Read More →

James Strachan

Chief Architect, CloudBees

Prior to CloudBees James spent time at Red Hat focused on the Fabric8 developer platform. At CloudBees he is Chief Architect and Distinguished Engineer, he is an industry expert in CI/CD and the voice of progress and innovation on projects like Jenkins X.

Tuesday December 3, 2019 09:00 - 17:00 PST
Sala 3C

All things Jenkins

12:30 PST

(49€) Crush Every Deployment with Feature Flags

Feature flags are a technique that allows teams to adjust how a certain application behaves in production without having to redeploy code. By making feature flags easy to implement and providing a dashboard for the management of feature flags, CloudBees Rollout allows companies to take more responsible risks and become genuinely agile and continuous. CloudBees Rollout allows teams to accelerate development speed and reduce risk by decoupling feature deployment from code releases. In this workshop you will learn all about feature flags, implement feature flags using CloudBees Rollout, and get a chance to manage feature flags and their deployments through an easy to use dashboard.

Speakers

Erez Rusovsky

Director of Product Management, CloudBees

Erez is the co-founder of Rollout, an enterprise feature flag management solution recently acquired by CloudBees. He holds a B.Sc. in Information Technology and as a developer himself, is very passionate about the mission to help developers excel in releasing quickly and effect... Read More →

Eyal Keren

Director, Product Engineering, CloudBees

Eyal Keren is currently leading the CloudBees Rollout engineering team, prior to join CloudBees Eyal was the co-founder and CTO of Rollout.io, where his focus is software craftsmanship, continuous design and TDD. Prior to Rollout, Eyal spent 8 years as a software engineer at Intel. He earned a degree with honors in computer software engineering from the Israel Institute of Technology, but his love of code really began... Read More →

Tuesday December 3, 2019 12:30 - 14:30 PST
Auditorium VI

Workshop

13:30 PST

Hands-on with Cloud-Native CI/CD

Continuous Integration and Continuous Delivery (CI/CD) have taken root in software teams of all sizes: the process of delivering applications from dev to prod is increasingly automated, tested, and measured. As applications migrate to cloud infrastructure, so can CI/CD systems. Cloud-native principles like immutability and configuration as code are giving rise to a new generation of DevOps tools, supporting faster, more reliable software delivery. In this workshop, participants will learn cloud-native fundamentals, and craft a pipeline definition that continuously builds and deploys a sample microservice application using Google’s serverless Cloud Build CI/CD platform. Through hands-on tutorials and challenges, we’ll gain experience with containerized toolchains, versioned configuration, and other best practices of modern developer tooling.

Participants will require a laptop with a browser with access to the public internet.

Speakers

Craig Barber

Software Engineer, Google

Craig is a software engineer on the Cloud Graphite: Platforms team at Google, serving as technical lead for open source CI/CD integrations. Craig has years of experience with cloud native workload deployments and service management. He works closely with GCP customers and open source... Read More →

Dave Stanke

Developer Advocate, Google

Dave is a Developer Advocate for Google Cloud Platform, aligned to the DevOps community. He loves talking with practitioners: listening to stories, telling stories, sharing a healthy cry. Prior to Google, he was the CTO of OvationTix/TheaterMania, a tech startup in the performing... Read More →

Tuesday December 3, 2019 13:30 - 17:30 PST
Auditorium II

Workshop

15:00 PST

(49€) Measuring ROI & Building a DevOps Business Case

Measuring DevOps can be challenging, so how do you report the impact of your team’s work to all the stakeholders? While operational metrics are great, they don’t necessarily translate the value DevOps brings to your organization in terms of business or economic impact. This workshop will introduce the three pillars of DevOps business value: operational efficiency, resource optimization and downstream KPI impact, and show you how to translate efficiency gains and common metrics into quantified economic figures. With hard output like that, you’ll be able to gain visibility for your accomplishments and win executive and organizational backing for your desired DevOps improvements and enterprise initiatives.

Speakers

Katherine Lam

Story Teller & Growth Hacker, CloudBees

Kathy Lam has spent more than 15 years in technology, starting in IT, then moving into product management in the security space. She has worked for startups and Fortune 50 companies, launching an application security SaaS solution and growing to more than a $10M business in 2 years... Read More →

Pete Heller

Business Consulting Director, CloudBees

Tuesday December 3, 2019 15:00 - 17:00 PST
Auditorium VI

Workshop, Enterprise DevOps leadership

17:00 PST

Welcome Reception

Tuesday December 3, 2019 17:00 - 19:00 PST
Expo Hall

Social

19:30 PST

DevOps World Afterparty! Presented by EURODOG

European DevOps Group (EURODOG ) is hosting an afterparty immediately following the welcome reception. All are welcome!
• Vendor tables and swag
• Food and drinks
• Music and socializing
RSVP : https://eurodog-dow-lisbon-2019.eventbrite.com

LOCATION:
Lisbon Marriott Hotel
45 Avenida dos Combatentes
1600-042 Lisboa, Portugal

Tuesday December 3, 2019 19:30 - 22:00 PST
Marriott Casablanca

Social

07:30 PST

Registration open

Wednesday December 4, 2019 07:30 - 19:00 PST

Registration

09:00 PST

Opening Keynote

Speakers

Shawn Ahmed

VP of Product Marketing, CloudBees

Shawn Ahmed is vice president of product marketing at CloudBees. With over 20 years’ experience in building successful and disruptive technology companies, Shawn has empowered retail bank transformations, created predictive analytics and machine learning solutions and operated SAP’s... Read More →

Pali Bhat

Vice President of Product & Design, Google Cloud Platform

Pali Bhat is the Vice President of Product & Design for Developer Products for Google Cloud Platform & also leads design for Google Cloud Platform. He has held other roles at Google including Vice President of Product Management at Google leading Payments products globally.

Tara Hernandez

Vice President Developer Productivity, MongoDB

Tara Hernandez has spent nearly thirty years evolving ways for companies to develop and ship software. She helped launch Mozilla.org and has been a firm proponent of open source ever since. She also thinks smart companies understand the business value of having a diverse employee... Read More →

Kohsuke Kawaguchi

Chief Scientist, CloudBees, Inc.

Sacha Labourey

CEO & co-founder, CloudBees

A native of Switzerland, Sacha graduated from EPFL in 1999. At EPFL, he started Cogito Informatique, an IT consulting business. In 2001, he joined Marc Fleury’s JBoss project as a core contributor, implementing JBoss’ original clustering features. He went on to become general... Read More →

Tracy Miranda

Head of Open Source, Chainguard

Andre Pino

VP, Marketing, CloudBees

André brings more than 20 years of experience in high technology marketing and communications to his role as vice president of marketing. He has experience in several enterprise software markets including application development tools, middleware, manufacturing and supply chain... Read More →

James Rawlings

Co-Creator of Jenkins X & Coder, CloudBees

James Rawlings is a co-creator of the open source project Jenkins X and works for CloudBees, where he aims to help developers and teams move to the cloud.James is passionate about automation and continuous improvement, always looking for new ways to help productivity or provide a... Read More →

James Strachan

Chief Architect, CloudBees

Moritz Plassnig

VP of Cloud, CloudBees

Moritz was the founder and CEO of CodeShip, a company acquired by CloudBees in 2018. CodeShip by CloudBees is a cloud-based continuous integration and continuous delivery platform with over 2,400 customers in 80+ countries. Moritz is based in Denver and responsible for the CodeShip... Read More →

Marina Harrell

Senior Manager in Engineering, CloudBees

Marina Harrell is a Senior Manager in Engineering at CloudBees. She is a well-versed specialist in agile development, continuous automation and DevOps. Prior to joining CloudBees, Marina spent over 20 years in software management, development and testing in the research and development... Read More →

Wednesday December 4, 2019 09:00 - 11:00 PST
Auditorium I

Keynote

11:00 PST

Break in Expo Hall

Wednesday December 4, 2019 11:00 - 11:30 PST
Expo Hall

Break

11:10 PST

Using AI/ML to Automate CI/CD

To achieve true Continuous Delivery teams need to leverage end-to-end automation across their deployment pipelines and tooling. Deployment health checks today involve someone pinging the production app and saying "yep, app is still up, everything is OK". In short, availability = success. In reality, availability != success and the only way to get a true measure is to have multiple engineers sniff test production by grep'ing logs or looking at monitoring charts. Its not unusual for teams to have 4-5 engineers spend 60-120 mins per deployment to make sure everything is OK. What if AI/ML could automate this process? This session will take a look at some of the machine learning techniques you can apply to automate deployment verification and health checks.

Speakers

Andrew Page

Engineer, Harness

CD ML Deck AP Compressed Andrew Page pdf

Wednesday December 4, 2019 11:10 - 11:25 PST
Partner Theater

Sponsor Session

11:15 PST

See Jenkins X Capabilities to Orchestrate CI/CD Thanks to the Power of Tekton Pipelines

Speakers

David Cañadillas

Solutions Architect, CloudBees

Copy of TektonPresentation DWJW Lisbon pptx

Wednesday December 4, 2019 11:15 - 11:30 PST
CloudBees Booth in Expo Hall

Jenkins X

11:30 PST

Managing Jenkins at Scale with CloudBees Core

In this session, we will explore the potential challenges organizations face as Jenkins adoption increases. We will examine the resource challenges associated with managing Jenkins masters in isolation, the risks faced by those using home-grown centralized management solutions and how organizations that deploy CloudBees Core successfully scale the management of their deployments.

Speakers

Stuart Beattie

Director of Product Marketing, CloudBees

Stuart has worked in high-tech companies for over 25 years and has advised finance, telecoms, manufacturing, healthcare and national government organizations on cybersecurity, governance, compliance policies and business process improvements. He has a B.S. in computing with German... Read More →

Wednesday December 4, 2019 11:30 - 12:15 PST
Sala 3C

All things Jenkins

11:30 PST

Jenkins: State of the Union and the Next 15 Years

This informative session gives an overview of the past, present and future of Jenkins. Attendees will hear an open and honest review of what went well in the last year and what went didn't go so well. Jeremy will then discuss the direction for Jenkins in the coming decade. The talk will also address Jenkins and its role within the Continuous Delivery Foundation (CDF).

Speakers

Jeremy Hartley

Senior Product Manager, CloudBees

Jeremy Hartley is the Product Manager for Jenkins and CloudBees Jenkins Distribution. He has spent the last 20 years working in the technology industry, starting his career as software developer and then an engineering manager. For the last 10 years he has been a product manager working... Read More →

DWJW Lisbon Jenkins State of the Union pdf

Wednesday December 4, 2019 11:30 - 12:15 PST
Auditorium III

All things Jenkins Jenkins Admin

11:30 PST

Automating Culture: CI/CD as a Service in Fintech

Learn how to drive cultural change through your CI/CD platform. We'll share how we designed our product to promote best practices for hundreds of engineers at an international hedge fund. We'll also explore our experience running a federated fleet of Jenkins masters in private Kubernetes. This session is sure to be one you don't want to miss.

Speakers

Leah Petersen

Engineer, Two Sigma Investments, LP

Zack Meath

Engineer, Two Sigma Investments, LP

Zack Meath graduated from Marist College in 2016, where he majored in computer science and researched automated network provisioning with Network Functions Virtualization service chaining. Recently, he shifted his focus to continuous deployment, working on Two Sigma Investments... Read More →

FINAL SLIDES JENKINS WORLD pptx

Wednesday December 4, 2019 11:30 - 12:15 PST
Auditorium IV

Cloud Native Evolution, All things Kubernetes, All things Jenkins, CI/CD, Open Source, Cultural Transformation

11:30 PST

How We Used DevOps to Build a New Bank, Not from Scratch

The context: - we're building a new bank for the French market, for an existing entity - business model is new, banking license is new, but the codebase is licensed from successful digital a bank in Poland - we took 30+million lines of code from the bank in Poland, and building on this base - worked for 2 years to adopt this "ecosystem of banking systems" to build the new French brand - integration with French financial ecosystem, French regulatory ecosystem, existing internal systems, and customize to client needs The challenges: Project is almost pure waterfall - first challenge was to embed DevOps culture within this approach. Second challenge is existing internal IT structure, procedures, security requirements - geared towards supporting the existing entity operations, which are not 24/7, contrary to the new bank being built. Third challenge was to take the "product" developed at the Polish bank - which was never built to be a product, but as set of systems to support it's internal operations, which is quite different to building a product to be sold - and start changing it to suit target needs, at the same time building effective SDLC and DevOps processes to support the multi-year initiative. Fourth challenge is the strict security requirements, and resulting strict split of responsibilities between the Client teams delivering and supporting infrastructure, and the project delivery teams delivering and supporting the application. The solution: Integration set of tools to support DevOps and DevSecOps, with: - Jenkins as orchestrator - remote PowerShell used for deployment solution to target servers (11 environments in dev, test, prod loops, with 30-100 servers each depending on purpose, dozens of different server roles and different applications) - SonarQube for static analysis - OWASP ZAP and several other open source tools for DevSecOps - Atlassian stack - Jira/Confluence/Bitbucket - as support tools & code repo - Zabbix for monitoring - Splunk for log aggregation - Selenium for automated end to end tests Core features: - one click deployments of entire non-mainframe part of solution (mainframe is more tricky) - on demand deployments of specific components - automated post-deployment health checks of environments - static and dynamic automated security tests - static code analysis embedded within process

Speakers

Przemysław Dygdoń

Senior Manager, Accenture Poland

IT Operations Management: applications and infrastructure maintenance, IT budget planning and execution, vendor management, people and team development, ITIL.Large IT Systems Implementation: core systems implementation and maintenance experience in financial institutions, IT architecture... Read More →

Marcin Mączka

DevOps Lead, Accenture Poland

I'm a versatile IT professional who worked in almost any of IT roles, from nuts and bolts to holding a steering wheel and painting the road signs. Engineer, designer, technician, driver, mechanic, dealer - you name it. I've been also a passenger as a business product owner or business... Read More →

20191201 DWJW Lisbon merged v10 Przemysław Dygdoń pdf

Wednesday December 4, 2019 11:30 - 12:15 PST
Auditorium VII

DevOps

11:30 PST

Enabling DevSecOps Via an ALM Toolchain in a Multi-Cloud Environment

Managing a DevSecOps culture at Scale in a complex Multi Cloud environment. A walkthrough of the key capabilities and best practices across an ALM Toolchain enabling a seamless and secure Multi Cloud CI/CD strategy.

Speakers

Jimmy McNamara

Software Engineering Product Manager, Fidelity Investments

Jimmy McNamara is a software engineering product manager for enterprise cloud computing at Fidelity Investments. He is responsible for application lifecycle management with a current focus on multi-cloud support. Jimmy has 22 years of experience across a variety of industries with... Read More →

Aoife Fitzmaurice

Architect for Enterprise Cloud Computing, Fidelity Investments

Aoife Fitzmaurice is an architect for enterprise cloud computing at Fidelity Investments. She collaborates with the teams responsible for evolving and providing the application lifecycle management platforms for the firm. She has previously worked as a systems engineer, infrastructure... Read More →

DevOps World Final pdf

Wednesday December 4, 2019 11:30 - 12:15 PST
Auditorium II

DevSecOps, CI/CD

11:30 PST

Introduction to Jenkins X

This session is targeted at folks that have heard but have not used Jenkins X. Our session gives you a comprehensive overview of all the platform's capabilities and explains it in simple terms.

We'll walk you through all capabilities in the context of a fictitious entity that is looking to do a POC in their environment and adopt Jenkins X. The company does not have Kubernetes experts but does have talent that can learn quickly.

Each presenter plays a specific role in this session. The roles are as follows:

The Jenkins X expert.
The IT Dev/Ops person who will ultimately set up the infrastructure and run apps through CI/CD.

You'll come away with learning about Jenkins X and how to apply it in your environment.

Speakers

Oscar Medina

Developer Advocate | Jenkins X, CloudBees

Andrew Bayer

Principal Software Engineer, CloudBees

Andrew has worked on, and with, Jenkins for over ten years. For the last four years, he has been a software engineer at CloudBees, where he led the creation of Declarative Pipelines for Jenkins and is now driving the new Jenkins X Pipeline engine and syntax.

IntroductionToJenkinsX OscarMedinaAndrewBayer Oscar Medina pdf

Wednesday December 4, 2019 11:30 - 12:15 PST
Sala 3A

Jenkins X, All things Kubernetes

11:30 PST

Scale your Jenkins builds with Google Kubernetes Engine

Your teams and projects are scaling rapidly and now your build server is busy the whole day! In this presentation, you will discover how to scale your Jenkins builds by taking advantage of Google Kubernetes Engine’s multiple machine environment backed by Google Compute Engine. We will explore multiple Google plugins for Jenkins in order to deploy build artifacts to your Kuberenetes cluster. You will learn how to use Helm to deploy the Jenkins master and create a deployment pipeline utilizing integrated Google Cloud Platform products.

Speakers

Averi Kitsch

Developer Relations Engineer, Google

Averi is an engineer at Google focused on improving the serverless experience on Google Cloud Platform. Before Google, Averi worked as a research scientist in the medical imaging field, developing image analysis software and image processing pipelines. In her spare time, she enjoys... Read More →

Scale your Jenkins builds with Google Kubernetes Engine Averi Kitsch final pdf

Wednesday December 4, 2019 11:30 - 12:15 PST
Auditorium VI

Sponsor Session

12:15 PST

Self-Updating Jenkins: GitOps for Jenkins Configuration

Speakers

Phil Cherry

Solutions Architect, CloudBees

Wednesday December 4, 2019 12:15 - 12:30 PST
CloudBees Booth in Expo Hall

All things Jenkins

12:15 PST

Lunch, Expo Open

Wednesday December 4, 2019 12:15 - 13:45 PST
Expo Hall

Break

12:25 PST

Orka: Orchestration with Kubernetes on Apple

Orka is a new virtualization layer for Mac build infrastructure based on Docker and Kubernetes technology. Orka, which stands for “Orchestration with Kubernetes on Apple,” gives developers and DevOps teams access to the power of Kubernetes for orchestrating macOS and is designed and optimized for running on scalable clouds built on Apple Mac computers. In this session, join Chris Chapman, MacStadium’s SVP of Software Development, as he demonstrates how Orka integrates with Jenkins build pipelines, and describes how Orka leverages the capability and power of Docker/Kubernetes in a Mac development environment.

Speakers

Chris Chapman

CTO, SVP Software Development, MacStadium

Chris is a patent holder with 20 years of experience in software development and has served as CTO at multiple companies. His role at MacStadium is to software-define Mac infrastructure and automate user experience. Chris knows that operations and development are tightly integrated... Read More →

PartnerPresentation DOWJWEU Templated 2019 Heather Robertson pdf

Wednesday December 4, 2019 12:25 - 12:40 PST
Partner Theater

Sponsor Session

12:30 PST

Faster Git

Attendees will learn the techniques they can use with Jenkins to make their systems clone and update git repositories faster and with less disc space

Speakers

Mark Waite

Technical Evangelist, CloudBees

Developer, tester, reformed manager, Jenkins user and Jenkins contributor, Mark started using Hudson/Jenkins in 2008 and became an active contributor in 2014. He maintains the Git plugin and the Git client plugin. Mark works at CloudBees creating and presenting training. Mark is a... Read More →

Git for Jenkins Faster and Better Mark Waite pdf

Wednesday December 4, 2019 12:30 - 12:45 PST
Community Booth in Expo Hall

12:30 PST

CloudBees Core Overview

Speakers

Cojan van Ballegooijen

Solutions Architect, CloudBees

Wednesday December 4, 2019 12:30 - 12:45 PST
CloudBees Booth in Expo Hall

All things Jenkins

12:45 PST

Jenkins Certification Bootcamps

Speakers

Angel S. Viloria III

Director, Training, Certification and Knowledge, CloudBees

Wednesday December 4, 2019 12:45 - 13:00 PST
CloudBees Booth in Expo Hall

All things Jenkins

12:45 PST

Observability in Jenkins X

If you are using Jenkins X, you’re already building at rapid pace. However, most miss the opportunity to gain real insights into their build and release pipeline. I'll show you how you can increase observability by activating metric capture and analysis during a containerized application deployment with Jenkins X. This entails modifying the declarative Tekton pipelines.

Speakers

Oscar Medina

Developer Advocate | Jenkins X, CloudBees

Wednesday December 4, 2019 12:45 - 13:00 PST
Community Booth in Expo Hall

Jenkins X

12:45 PST

Automatically Manage Open Source Risk Across Your Entire Software Development Lifecycle

As nimble organisations deliver new innovations, adversaries are also upping their game; something we’ve seen in recent high profile and devastating cyber attacks. Bad actors have the intent and ability to exploit security vulnerabilities in the software supply chain - and in some cases plant vulnerabilities themselves.

Join our talk and discover how Sonatype can provide a Jenkins pipeline to automatically scan and detect, understand and remediate known vulnerable open source components. We’ll help you fight back by automating security directly in the DevOps pipeline!

Speakers

Mitun Zavery

International VP of Solution Engineering, Sonatype

Mitun has a wealth of experience in DevSecOps architecture, development and management. Currently working with Global Enterprise Organisations, Mitun helps protect Enterprise company software by remediating risk and preventing vulnerable software components entering your software... Read More →

Wednesday December 4, 2019 12:45 - 13:00 PST
Partner Theater

Sponsor Session

13:00 PST

CloudBees Flow Overview

Speakers

Manuel Schuller

EMEA DevOps-ifier, Public Speaker, Business and Technical Challenges Solver, CloudBees

Wednesday December 4, 2019 13:00 - 13:15 PST
CloudBees Booth in Expo Hall

13:05 PST

Cloud-based Continuous Testing with Jenkins and Sauce Labs

Now more than ever, engineering teams of all sizes are under pressure to deliver quality code more frequently. With the DevOps ecosystem growing larger every day, it might seem overwhelming to fully understand how to create an end-to-end solution that allows developers to continually commit new code with confidence, without having to slow down due to rollbacks. Achieving this true continuous deployment pipeline is difficult, but not impossible.

In this talk, Giovanni will show a practical example of one such pipeline built using Jenkins in conjunction with Sauce Labs’ Continuous Testing Cloud.

Speakers

Giovanni Rago

Solution Engineer, Sauce Labs

Giovanni Rago is a Solutions Engineer at Sauce Labs EMEA. Giovanni is responsible for providing in-depth technical advice to customers about how to be successful with their automation and CI/CD efforts. His previous roles involved leading Customer Success, Support and Test Automation... Read More →

ragog devopsworld jenkins saucelabs Giovanni Rago pdf

Wednesday December 4, 2019 13:05 - 13:20 PST
Partner Theater

Sponsor Session

13:15 PST

What's the Value of Time?

Speakers

Tim Johnson

Product Marketing Manager, CloudBees

Tim is a product marketing manager who focuses on the impact DevOps has on the people and the organizations adopting it. He has over 15 years of product marketing experience with industry leaders such as BMC Software, Cisco, Google and SurfControl. Tim holds an MBA from the University... Read More →

2019 DWJW Lisbon Accelerator Theatre Talk 2 pptx

Wednesday December 4, 2019 13:15 - 13:30 PST
CloudBees Booth in Expo Hall

CI/CD

13:25 PST

The Evolution of Static Code Analysis

According to recent studies, developers spend about 42% of their time maintaining and reviewing code, leading to significant inefficiencies in build time and shipment. Static code analysis has sought to reduce this problem over the last 20+ years and has been evolving to allow teams to automate and standardize quality across teams at scale. This talk takes a look at how SCA has evolved and where it is likely headed in the future.

Speakers

Jaime Jorge

CEO and Co-Founder, Codacy

Jaime Jorge is the CEO and Co-Founder of Codacy, the leading code quality automation solution for teams of any scale. Jaime co-founded Codacy in Lisbon in 2014 from the work he did on his Master's thesis, and has continued to play an active role in the advancement of the industry... Read More →

DevOps World The Evolution of Static Code Analysis To Share (1) pdf

Wednesday December 4, 2019 13:25 - 13:40 PST
Partner Theater

Sponsor Session

13:30 PST

Jenkins GKE Plugin

In this demo we will showcase the Jenkins GKE plugin, newest addition to GCP’s suite of officially supported plugins. We’ll show how to leverage this plugin to deploy applications built in Jenkins pipelines to multiple clusters running in GKE.

Speakers

Craig Barber

Software Engineer, Google

Wednesday December 4, 2019 13:30 - 13:45 PST
Community Booth in Expo Hall

13:45 PST

DevOps Patterns & Antipatterns for Continuous Software Updates

So, you want to update the software for your user, be it the nodes in your K8s cluster, a browser on user’s desktop, an app in user’s smartphone or even a user’s car. What can possibly go wrong? In this talk, we’ll analyze real-world software update fails and how multiple DevOps patterns, that fit a variety of scenarios, could have saved the developers. Manually making sure that everything works before sending an update and expecting the user to do acceptance tests before they update is most definitely not on the list of such patterns. Join us for some awesome and scary continuous update horror stories and some obvious (and some not so obvious) proven ideas for improvement and best practices you can start following tomorrow.

Speakers

Hamza Zaoui

Solution Architect, JFrog

Hamza Zaoui is a Solution Architect at JFrog. Based in France, he has more than 15 years of experience in helping large organizations to implement CICD and level up their DevSecOps practices. In his spare time, he enjoys shooting with the finest analog cameras, listening to music... Read More →

DevOps Patterns and Antipatterns for Continuous Software Updates pdf

Wednesday December 4, 2019 13:45 - 14:00 PST
Sala 3B

Sponsor Session

13:45 PST

Current Market Conditions for Automotive Supply Implies Long Term Support

As today automotive software capabilities are one of the main motivation to choose one model over an other. Thus a modern car easily runs 50 to 100 millions lines of code distributed on more than one hundred SoC/ECU connected by ten or more different networks. At the same time, automotive remains a very strongly cost driven market where short term profits are impossible. This imposes OEMs to keep running the same hardware platform for a minimum of 5 years. OEMs have to both apply security patches and add as many new functionality as expected by the market while having little or even no margin to improve hardware. This conflict of inovation versus stability is only possible with ten years or more long term maintenance contract and a very strict test and continuous software integration process.

This talk details the reasons why these new trends are key for automotive and many other industries. It exposes how based on lessons learn IoT.bzh proposes a solution to fulfill embedded software long term support. How to scale it to very complex systems with “in production” multiple software versions, multiple hardware revisions, thousands of components coming from multiple sources and last but not least hundreds of developers.

Speakers

Fulup Ar Foll

CEO, IoT.bzh

Fulup holds a Master in Computer Science from the Military French School ESAT. His career starts with ten years of research on embedded operating system. He then joins the Industry; took the technical direction of Wind-River in Europe before moving to Sun-Microsystems where he works... Read More →

Fulup Presentation DevOps Lisboa 2019 pdf

Wednesday December 4, 2019 13:45 - 14:30 PST
Sala 3A

13:45 PST

Training-as-Code: Applying CI & CD to Training Development

At CloudBees we provide technical training for CloudBees customers and Jenkins users. Those training courses can be consumed both as instructor-led sessions or on demand, self-paced, through CloudBees University. We follow a training-as-code approach, having all our training sources as code. Our content is written in Asciidoctor, a lightweight markup language. We use custom tools to render them to PDF and HTML (adding RevealJS to achieve a better student experience). Apart from our content, we also provide highly technical hands-on labs, which include several tools such as Jenkins, Gitea, a web terminal and a database containing starting points for the different exercises.... borrowing software development best practices, we develop our training materials and tools in feature branches, which are later integrated into master via GitHub PRs, including both Peer Reviews and automatic checks defined in our CI pipelines (link verifications, syntax checks,...). These pipelines run in a CloudBees Core Team Master dedicated to the team. Once our changes are integrated into the master branch, the CD process deploys the new version of our training courses automatically (to AWS) and also generates the necessary new infrastructure configuration for the corresponding labs to run. We will also describe the new Kubernetes-native training platform that we are building to provide lab infrastructure for Kubernetes-based products (using Jenkins X for CI/CD, among other tools, and deploying in this case to GKE)

Speakers

Romén Rodríguez-Gil

Training Engineer, CloudBees

Lifelong learner, software engineer and digital entrepreneur. He built his first software 18 years ago, and has continued developing software ever since. During his career, he has founded a couple of startups and worked in several software companies, playing different roles. He lives... Read More →

Mark Waite

Technical Evangelist, CloudBees

DWJW2019 Lisbon Training as Code Applying CI & CD to Training Development Romen Rodriguez Gil pdf

Wednesday December 4, 2019 13:45 - 14:30 PST
Auditorium III

All things Jenkins, Jenkins Admin

13:45 PST

Elevate Agile+DevOps Delivery with Value Stream Management (VSM)

You've done Agile, you've done DevOps, what's next ? …More Agile, more DevOps and a dose of VSM. Yes, because industry data shows we've only scraped the surface of Agile and DevOps, we've only cautiously moved "safe", while leading organizations are on to the next phase with more modern Agile delivery models like Spotify. However, more is needed. To accelerate your Agile+DevOps journey you need to prove to your stakeholders and business that the effort is worth the value, and that is where VSM comes in.
In this speech Forrester analyst Diego Lo Giudice will share latest trends on Agile+DevOps and how VSM helps scale transformations by giving stakeholders what they need: visibility to understand their delivery pipelines, where delivery is accelerating business value, where waste is accumulating and how teams are performing. While VSM is still in its infancy, it's the right time to adopt it. In this presentation Forrester will cover
1. Agile and DevOps latest market trends
2. Why enterprises love the spotify Agile "music"
3. Why and how VSM elevates your delivery to business needs

Speakers

Diego Lo Giudice

Vice President, Principal Analyst, Forrester

Diego has been with Forrester since July 2005, Diego primarily contributes to and advises on Forrester's offerings for Application Development & Delivery Professionals. He partners with Forrester's global application leaders and is a leading expert on SDLC processes and practices... Read More →

Jenkins world 2019 Final Diego Lo Giudice pdf

Wednesday December 4, 2019 13:45 - 14:30 PST
Auditorium VI

DevOps leadership

13:45 PST

How to Provide Security Fixes in a High Constraint Ecosystem, Practical Examples from the Jenkins Project

How to solve security issues when you need to face multiple constraints like living in public / private plugins ecosystem, assuring backward binary compatibility, providing escape-hatch or even better progressive migration. This talk is about how the Jenkins security team is tackling those obstacles with practical examples. The Jenkins administrators will learn how we are working internally to keep their instances secured. In addition, any software developer could be inspired by the different mechanisms we put in place to adapt them to their own applications.

Speakers

Wadeck Follonier

Sr Security Software Engineer, CloudBees, Inc.

Wadeck Follonier is a Security Software Engineer at CloudBees SA and active member of the Jenkins Security Team. He finished his Master's degree in Computer Science with a specialization in Internet Computing in 2011. Prior to joining CloudBees, he started his career in various positions... Read More →

DW JW 2019 How to provide security fixes in a high constraint ecosystem Wadeck Follonier Wadeck Follonier pdf

Wednesday December 4, 2019 13:45 - 14:30 PST
Sala 3C

Jenkins Admin, DevSecOps and Security

13:45 PST

Bringing Budget and Security into the Infrastructure as Code Pipeline

Are you tired of being yelled at by finance at the end of the month because you’re spending too much on deployments? Or tired of the security team telling you your configurations aren’t good enough? Then it is time to stop making them an afterthought, and bring them right into the pipeline. In this session, we’ll talk about the idea of Continuous Verification in the Infrastructure as Code pipeline. With this process, you can bring budget and security right into the process, letting you keep track of it from day 0. We’ll talk about some concepts, then jump into a demo of how it works. See you there!

Speakers

Tim Davis

Cloud and Developer Advocate, VMware

Tim Davis is a Cloud Advocate at VMware where he focuses on public cloud operations and cloud-native applications. He provides consulting guidance to a wide range of customers on these topics and provides a bridge between customers and product teams at VMware. He also works to evangelize... Read More →

Wednesday December 4, 2019 13:45 - 14:30 PST
Auditorium VII

Sponsor Session

13:45 PST

Deploying Your Kubernetes Application with Jenkins on GCP

In this talk we will show guidance on how to configure and use Jenkins CI/CD pipelines on GCP taking full advantage of Jenkins native integrations with GCP's industry leading services. We will cover each of the GCP supported Jenkins plugins and demo a live Jenkins Job running in GCP taking full advantage of these integrations, which builds and tests a SpringBoot application, publishes the container image to GCR, and deploys it to GKE clusters.

Speakers

Stephen Shank

Software Engineer, Google

As a software engineer on the Cloud Graphite: Platforms team at Google, Stephen contributes to open source CI/CD integrations such as the Jenkins plugins which the team officially maintains. With the feedback and contributions from the Jenkins community he helps to continuously improve... Read More →

Wednesday December 4, 2019 13:45 - 14:30 PST
Auditorium II

Sponsor Session

14:00 PST

Value Stream Management and the Next Decade of DevOps

As DevOps enters its second decade, it’s time to re-evaluate your strategy.

Organizations can easily fall into the trap of settling for “good enough” because measuring productivity and flow across varying teams and systems is challenging. That’s where value stream management comes in.

Join HCL UrbanCode head of product management, Steve Boone, for a conversation on scaling your DevOps strategy by focusing on data and culture through value stream management. In this session, we’ll cover:
• What is value stream management and how it works in a DevOps culture
• How to harvest opportunity from your DevOps pain points
• The resources you need to successfully implement a value stream management approach

This session is especially beneficial for technology executives, transformation leaders and DevOps managers who are responsible for their DevOps strategic direction.

Speakers

Steve

Head of UrbanCode Product Management, HCL

Steve Boone is the Head of Product Management for UrbanCode, where he is responsible for the strategic direction and management of UrbanCode’s continuous delivery and value stream management products.For over a decade, Steve has helped hundreds of companies adopt agile best practices... Read More →

2019 27 11 Jenkins VSM Next Decade Steve Boone pdf

Wednesday December 4, 2019 14:00 - 14:15 PST
Sala 3B

Sponsor Session

14:15 PST

Are Open Source Developers Security’s New Front Line?

Bad actors have recognized the power of open source and are now beginning to create their own attack opportunities. This new form of assault, where OSS project credentials are compromised and malicious code is intentionally injected into open source libraries, allows hackers to poison the well. In this session, Mitun will explain how both security and developers must work together to stop this trend. Or, risk losing the entire open source ecosystem.

- Analyze, and detail, the events leading to today’s “all-out” attack on the OSS industry
- Define what the future of open source looks like in today’s new normal
- Outline how developers can step into the role of security, to protect themselves, and the millions of people depending on them

Speakers

Mitun Zavery

International VP of Solution Engineering, Sonatype

Wednesday December 4, 2019 14:15 - 14:30 PST
Sala 3B

Sponsor Session

14:45 PST

Continuous Delivery of Embedded Systems Using Jenkins

This presentation outlines some best practices gathered during multi year usage of Jenkins for building and testing embedded software distributions for the automotive and other industry sectors. During this session Gianpaolo will introduce some open source tools he has developed as part of his work experience in the field.

Speakers

Gianpaolo Macario

Embedded Software Architect, AROL S.p.A

Gianpaolo is a software architect specialized on embedded systems in the automotive and automation industry sectors. For the last several years Gianpaolo has been working with Embedded Linux and In-Vehicle Infotainment, serving the GENIVI Alliance and some leading automotive OEM and Tier-1 companies, and had the privilege of watching and helping Linux evolve from a crazy idea to a solid foundation for In-Vehicle Infotainment. More recently Gianpaolo has been helping AROL, a leading company in the food & beverage industry... Read More →

continuous delivery of embedded systems using jenkins pdf

Wednesday December 4, 2019 14:45 - 15:30 PST
Sala 3B

All things Jenkins

14:45 PST

Docker and Jenkins [as Code]

Docker is everywhere in the CI/CD pipelines and in development tools. Jenkins, one of the most popular automation servers, is actively evolving to improve its support of container technologies and static configurations in images. The Configuration as Code plugin is a new milestone which enables managing Jenkins configurations via YAML. Together with Docker, this plugin offers many ways to produce ready-to-fly Jenkins images for any environments. In our talk, we will describe official master and agent images offered by the Jenkins project. What's inside them? How do you configure images with JCasC and Groovy hooks? How do you use these approaches together? And, finally, how do you simplify packaging of custom Jenkins images and define the entire system [as code]?

Speakers

Oleg Nenashev

Principal Engineer, CloudBees

Jenkins core maintainer and board member. Oleg started using Hudson for Hardware/Embedded projects in 2008 and became an active Jenkins contributor in 2012. Nowadays he leads several Jenkins SIGs, outreach programs (Google Summer of Code, Hacktoberfest) and Jenkins meetups in Switzerland... Read More →

Mark Waite

Technical Evangelist, CloudBees

Docker and Jenkins [as Code] Oleg Nenashev pdf

Wednesday December 4, 2019 14:45 - 15:30 PST
Auditorium II

All things Jenkins, CI/CD

14:45 PST

CI/CD is Not Enough - How to Board the Ivory Tower of QA

The development of diagnostics instruments and solutions at Roche Diagnostics takes place in
a highly regulated environment. Quality Assurance is responsible that product releases are
compliant with processes and processes are compliant with regulations. Developing software
within this environment is often interrupted by manual QA process steps. This leads to long
release cycle times and finally, new versions are not released as often and quick as they
technically could. I will talk about the approaches taken at Roche Diagnostics to integrate quality assurance into the pipeline and show a recipe towards continuous validation.

Speakers

Andreas Schmid

Senior Engineering Manager, Roche Diagnostics International Ltd

CI CD is Not Enough pdf

Wednesday December 4, 2019 14:45 - 15:30 PST
Sala 3C

CI/CD, DevSecOps and Security

14:45 PST

From Silos of ESM + DevOps to Software Delivery Management

The disconnect between DevOps and ITIL/ESM practices is slowing down your service delivery, whether you know it or not. Delivering the right value at the right time doesn't allow two different philosophies as silos within the IT organization.

TOPdesk has a firm reputation in breaking down silos between service departments at their own customer organizations. Jeroen Boks (CIO at TOPdesk) used that expertise to better TOPdesk's own service delivery. Together with CloudBees, he managed to close the feedback loop of the customer experience to the backlog of development by actively engaging the service desk in this process.

Join Jeroen and Gabriel Martinez as they describe how it was done, and how every organization can successfully marry DevOps and ESM together.

In this talk you’ll learn:

How automation and visibility reduced TOPdesk release cycles from 9 months to 2 weeks (with a goal of 15 minutes).
How a shared view on available data and an integrated tool chain ensure rapid feedback for all stakeholders.
How to empower customer-facing service specialists to influence the backlogs with valuable customer experience insights.

Speakers

Gabriel Martinez

Senior Product Marketing Manager, CloudBees

Gabriel Martinez is a senior product marketing manager with over 10 years of experience in technology at both startups and industry giants like Hewlett Packard Enterprise and CA Technologies. Gabriel has worked with multiple Fortune 500 companies on implementing DevOps and machine... Read More →

Jeroen

Head of Product, TOPdesk

Using the experience of doing years of ITSM consultancy, managing internal IT departments and external customer support departments, scaling up SaaS services, I continue to help others accomplish great results in their organizations.As Head of Product at TOPdesk, my aim is to connect... Read More →

Jereon Boks , Gabe Martinez From Silos of ESM + DevOps to Software Delviery Management pptx

Wednesday December 4, 2019 14:45 - 15:30 PST
Auditorium VI

CI/CD

14:45 PST

Our DevOps Journey (So Far!)

How is Nationwide Building Society developing a DevOps mindset and methodology to keep pace with ever-changing business demands? Ben Angell, Nationwide’s lead engineer, will discuss Nationwide’s core values and strategy and the need for DevOps adoption. He'll walk you through some of the benefits that have already been realized, and lessons learned along the way.

Speakers

Ben Angell

DevOps Engineering Lead, Nationwide Building Society

Ben Angell nationwide Building society our DevOps Journey so far pptx

Wednesday December 4, 2019 14:45 - 15:30 PST
Auditorium III

DevOps

14:45 PST

DevOps Transformation in the Real World

Jorge Juan Arandilla will discuss BBVA's digital transformation journey from a complex, disconnected engineering operation and competitive culture to an optimized, standardized collaborative team that tackles and achieves company goals. Arandilla will share details of how complexity, speed and security challenges were addressed, the tools that were adopted to support employee growth and propel change, and ultimately, the results that have been achieved to date.

Speakers

Jorge Juan Arandilla Álvarez

Global Head DevOps, BBVA

Jorge is the global head of DevOps and software testing at BBVA. He leads digital transformation, the DevOps process and development teams at BBVA. He is a software engineer and business enthusiast with 13 years of experience working for global corporations.

2019 DWJW Lisbon pptx

Wednesday December 4, 2019 14:45 - 15:30 PST
Auditorium IV

DevOps leadership

14:45 PST

Jenkins X Latest and Greatest

Are you leaning forward into the future of DevOps? Are you on the cutting edge of CI/CD/ARO technologies? If this describes you, you’ll want to join James Strachan and James Rawlings - two of CloudBees’ most decorated and senior architects of Jenkins X - for an insightful session on the Jenkins X. This is the session that will keep you on the bleeding edge; the one everyone will be talking about on Twitter tomorrow.

Speakers

James Rawlings

Co-Creator of Jenkins X & Coder, CloudBees

James Strachan

Chief Architect, CloudBees

Wednesday December 4, 2019 14:45 - 15:30 PST
Sala 3A

Jenkins X, CI/CD

14:45 PST

Supercharging Your Docker Builds with Skaffold and Kaniko

Using Kubernetes for a CI/CD system is a perfect fit, but it’s common to bump up against problems when building container images. Most often, we still rely on Docker for image building inside the cluster, which can be inefficient and doesn’t scale well. To improve the security, performance and stability of our CI/CD tool, Jenkins X, we opted to use Skaffold and Kaniko to build our images in a more Kubernetes-native way.

In this session, we will first help you understand the reasons for choosing Skaffold and Kaniko. Getting into the guts of our own implementation in Jenkins X, we’ll talk about using Skaffold as our build proxy, delegating Docker builds to Kaniko and the ability to switch out Kaniko for a cloud provider native builder such as Google Cloud Builder. Finally, you’ll learn how to be up and running with Skaffold and Kaniko in no time, either with Jenkins X or on your own.

Speakers

Gareth Evans

Software Engineer, CloudBees

Gareth is an OSS engineer who is constantly trying to "automate all the things" using any language that begins with 'G'. Gareth works for CloudBees on the Jenkins X project.

Wednesday December 4, 2019 14:45 - 15:30 PST
Auditorium VII

Jenkins X, Cloud Native Evolution

15:30 PST

Afternoon Break in Expo Hall

Wednesday December 4, 2019 15:30 - 16:15 PST
Expo Hall

Break

15:40 PST

Adapting security to DevOps

The impact DevOps had on development is well known. But was there any impact on security? In this talk, we'll discuss how application security has to change to keep up with the latest trends and keep both sides of the house (developers & security) happy.

Speakers

Florin Coada

Product Manager - HCL AppScan SAST, HCL

Florin Coada works in the HCL AppScan Product management team where he is responsible for defining a strategy for the Static Analysis tools. He's been involved with Application Security for the last 6 years and spent most of this time working directly with customers implementing and... Read More →

Adaping security to DevOps small Florin Coada pdf

Wednesday December 4, 2019 15:40 - 15:55 PST
Partner Theater

Sponsor Session

15:45 PST

A Complete Release Automation Solution

Speakers

Doug Tidwell

Technical Marketing Director, CloudBees

Wednesday December 4, 2019 15:45 - 16:00 PST
CloudBees Booth in Expo Hall

Release Mgmt

16:00 PST

Securing Third-Party Code Without Negatively Impacting Velocity With SCA

As development teams aim to build secure, high-quality software without compromising time to market, it’s not an easy undertaking considering that modern software is not only comprised of proprietary code but also third-party components and tools. While security is of great importance in this equation, legal compliance and operational risk are additional aspects that need to be taken into account when working with open source code. There are many tooling solutions that can help incorporate all necessary considerations; however, time isn’t on our side with many of these solutions on the market.

Software composition analysis supports your teams’ endeavors to automate open source detection and inventory; set and enforce open source use policies early in the development process (when remediation is least disruptive and costly); identify open source license, security, and code quality issues across your codebases; and continuously monitor for and report new vulnerabilities even after applications and containers are deployed. Today, we’ll examine how and the value that this solution will bring to your organization’s software development and deployment processes.

Speakers

Boris Cipot

Senior Security Engineer, Synopsys

Boris Cipot is a senior security engineer at Synopsys. He helps companies of all shapes and sizes to create secure software. Boris joined Synopsys when Black Duck Software was acquired in 2017. He specializes in open source software security, robotics, and artificial intelligence... Read More →

Securing Third Party Code Without Negatively Impacting Boris Cipot pdf

Wednesday December 4, 2019 16:00 - 16:15 PST
Partner Theater

Sponsor Session

16:15 PST

DevOps Cycle for our Serverless Apps with Jenkins

Imagine yourself writing some code in your workstation. That code should end in a production environment eventually, right? And that’s probably going to involve intervention from your QA and Ops guys. DevOps is meant for that. At System73 we love DevOps. We also love Jenkins, who doesn’t? So we are always trying to merge both as much as possible. In this session we’ll cover the following topics:

The CD process of our first serverless project: from the code push to the production environment through different validation/testing stages.
How we introduced BDD Testing since the beginning of the development process.
How we have evolved our know-how in Pipelines from microservices to serverless models.
And how we deal with cloud-infrastructure costs

Speakers

Andres Cidoncha

DevOps Engineer, System73

Andres works as Automation Engineer at System73. Due to his love for process automation, he is constantly looking for ways to simplify processes as well as the tools which allow him to focus on critical tasks.

Airam Gonzalez

DevOps Engineer, System73

Airam works as Cloud Engineer at System73. He invests his time in learning about new architectures and how they can enhance the design of the current infrastructure, as well as using his knowledge to troubleshoot efficiently.

DevOps Cycle on our Serverless APP Andres Cidoncha pdf

Wednesday December 4, 2019 16:15 - 17:00 PST
Sala 3C

16:15 PST

CloudBees Jenkins Support: Top 5 Issues and Solutions

Did you know CloudBees now provides support for Jenkins, even open source? In this session, we're going to take some time to walk through real-life cases and how our support team solved them. "So why is this important to me and how can I get this kind of expert help?" We'll cover that as we highlight common Jenkins issues first-hand and discuss the solutions to help you better understand how to overcome them. You'll walk away more prepared to keep Jenkins running healthy and those Pipelines humming along.

Speakers

Parker Ennis

Product Marketing Manager, CloudBees

Parker is a lover of all things open source and has worked at CloudBees for over three and a half years in multiple roles. He originally went to North Carolina State for his B.A. and graduated in 2013. He then went to The Iron Yard in Durham, NC to study back-end engineering, specifically... Read More →

Ryan Smith

Senior Development Support Engineer, CloudBees

Ryan Smith is a former Jenkins administrator and CloudBees client, and currently works as a senior developer support engineer for CloudBees. Ryan currently leads the performance and stability team within the support organization, and spends his days evangelizing enterprise Java deployment... Read More →

Top 5 Jenkins Issues (1) Parker Ennis pdf

Wednesday December 4, 2019 16:15 - 17:00 PST
Auditorium IV

All things Jenkins

16:15 PST

How to Build the Top Mobile Game for Every Platform Imaginable

Candy Crush Saga is one of the most-played, most-grossing mobile games of all time. Its success boils down to fun, tight gameplay available in an incredibly varied number of devices. Maintaining the required high quality, from concept to execution, in an agile environment, targeting all types of device - from flagship smartphones to Facebook, and everything in between - poses an incredible challenge from a CI/CD perspective.

In this session, we will explain some of the tricks we use at King, in all the layers of the CI/CD process, to help our studios deliver magic moments to players, for almost every platform available in the market, and then some.

Speakers

Nacho Fernandez

Build Engineer, King

Nacho began his career as a videogame certification tester. He became an operations engineer working in the Windows environment, using in-house tools to maintain and deploy databases and application servers, and eventually to build and configuration management. He worked at DICE... Read More →

Ignacio Fernandez How to build the top mobile game DWJW Lisbon Ignacio Fernandez pdf

Wednesday December 4, 2019 16:15 - 17:00 PST
Auditorium VII

CI/CD

16:15 PST

Integrating Security Scanning in a CI/CD Pipeline

In this talk, we will discuss the process of integrating Dynamic Application Security Testing (DAST) in a CI/CD pipeline. We will focus on web application security, but the examples can be generalized to other application security domains. Integrating dynamic security scans in a CI/CD pipeline poses unique challenges that usually are of little concern for more traditional types of testing, such as unit and integration tests. One of such challenges is the scan time. A dynamic scan, without proper care, can result in an unacceptable amount of scanning time and stall the pipeline. Therefore, we had to devise several strategies in order to balance the total scanning time and the thoroughness of the scan. We will propose some strategies, discuss their strengths and weaknesses, and give practical examples using a Jenkins plugin we built to enable DAST scans.

Speakers

João Poupino

Security Engineer, Probely

João Poupino is currently working on web application security at Probely. He has a special interest in security and cryptography, but has held many different roles in his career, ranging from system administrator to developer to security consultant.João has worked on cool projects... Read More →

integrating security in a cicd pipeline João Poupino pdf

Wednesday December 4, 2019 16:15 - 17:00 PST
Auditorium VI

CI/CD, DevSecOps and Security

16:15 PST

Jenkins Kubernetes Operator

Running Jenkins on Kubernetes cluster is not a trivial task.
Kubernetes platform was released ten years after the first version of Hudson project.
It means Jenkins couldn’t be designed to run on top of it.
Jenkins Operator tries to bridge that gap. It is an open source project that we contributed to jenkinsci organization a while ago(https://github.com/jenkinsci/kubernetes-operator).

This presentation will explain how operator pattern helps to manage Jenkins in Kubernetes.

We will take a look at the operator pattern and its use cases.
A closer look at the Jenkins Operator will show the operator pattern in practice.

We will go through day-to-day operations automation that the operator provides
like deployment, configuration and repair of a Jenkins instance.

After this presentation you will know how a non-cloud native application can be run in an immutable, scalable and secure way.

Speakers

Tomasz Sęk

Senior Cloud Engineer, VirtusLab

Senior Cloud Engineer at VirtusLab particularly interested in distributed computing and security.After few years of writing middleware code in Java he moved on to DevOps and Kubernetes.Maintainer of internal custom Kubernetes distribution on AWS. Skilled Golang coder. Responsible... Read More →

Jenkins World Jenkins Kubernetes Operator v2.0 Tomasz Sęk pdf

Wednesday December 4, 2019 16:15 - 17:00 PST
Sala 3A

Cloud Native

16:15 PST

Cultivating DevOps

It's clear there are many benefits to modern approaches, but defining this movement has proven to be elusive. "Cultivating DevOps" introduces a different perspective by drawing parallels to the power of nature. Modern civilization is supported by improved food production through agriculture, and this understanding can help us be more effective at producing technical outcomes. Daniel Ritchie will discuss the approaches taken at Broadridge Financial Solutions that have led to cultural and technology outcomes and ultimately driven customer value.

Speakers

Daniel Ritchie

Distinguished Engineer, Broadridge Financial Solutions

Daniel Ritchie is a distinguished engineer responsible for implementing CI/CD, fostering the transition to a DevOps-driven culture and other efforts related to systems integration, workflow design, configuration automation and performance optimizations for on-premise and cloud efforts... Read More →

2019 DWJW Lisbon DanielRitchieCultivatingDevOps 2.0 dan r pdf

Wednesday December 4, 2019 16:15 - 17:00 PST
Auditorium III

DevOps

16:15 PST

Jenkins X Optimized for GCP

Jenkins X is an industry-wide leap forward to provide developers with a cloud native CI/CD experience. As the next evolution in the Jenkins space, Jenkins X redefines how CI/CD workloads run. In this talk, we will guide you on how to deploy, configure and use Jenkins X CI/CD pipelines within the Google Kubernetes Engine while taking full advantage of Jenkins X's native integration with GCP's industry leading services.

Speakers

Craig Barber

Software Engineer, Google

Wednesday December 4, 2019 16:15 - 17:00 PST
Auditorium II

DevOps Practitioner

16:15 PST

How to Ramp Your Application Rollouts

Feature flags provide the most fault-tolerant deployment method, making them the best approach to use in a world where your CI/CD pipeline is highly automated and you deploy frequently. Learn how they work, how best to leverage them and how they play nicely with your other CloudBees and Jenkins-powered solutions.

Speakers

Erez Rusovsky

Director of Product Management, CloudBees

Eyal Keren

Director, Product Engineering, CloudBees

Wednesday December 4, 2019 16:15 - 17:00 PST
Sala 3B

Release Mgmt

17:00 PST

Book Signing: Team Topologies by Manuel Pais

Get a copy of "Team Topologies: Organizing Business and Technology Teams for Fast Flow" signed by author Manuel Pais during the SuperParty! Limited copies are available, so arrive early to secure yours.

Speakers

Manuel Pais

Co-Author, "Team Topologies"

Manuel Pais is co-author of Team Topologies: Organizing Business and Technology Teams for Fast Flow. Recognized by TechBeacon as a DevOps thought leader, Manuel is an independent IT organizational consultant and trainer, focused on team interactions, delivery practices, and accel... Read More →

Wednesday December 4, 2019 17:00 - 17:30 PST
Partner Theater

Social

17:00 PST

SuperParty Sponsored by Sonatype in Expo Hall

Wednesday December 4, 2019 17:00 - 19:00 PST

Social

06:15 PST

DevOps World | Jenkins World Fun Run

This year’s fun run at the DW | JW will cover one of the most beautiful and central parks in Lisbon, the Parque Eduardo VII. Starting from the Corinthia Hotel, we will run straight to the park, then to many nice attractions of the park (Carlos Lopes Pavilion and the largest Flag of Portugal in the world). We welcome both beginner and professional runners.

Register for the run here: https://www.eventbrite.com/e/devops-world-jenkins-world-fun-run-tickets-82833939543

Thursday December 5, 2019 06:15 - 07:00 PST

Social

07:30 PST

Registration Open

Thursday December 5, 2019 07:30 - 16:30 PST

Registration

09:00 PST

Keynote

9:15-9:45am - David Stanke, Google, Developer Advocate
So Long, Sheepdog: Towards a Cloud-Native CI/CD

Infrastructure has changed, and DevOps practitioners are embracing a new world. The adoption of modern runtimes--from cloud platforms, to Kubernetes, to serverless--is rapidly shifting the way we manage applications. Servers are now livestock, not pets. But the CI/CD systems we use to build and deploy those applications often lag behind, as fragile, bespoke one-offs. These are sheepdogs: pets we use to tend livestock. It’s time to modernize software delivery itself, by applying today’s best practices like configuration as code, containerization, and on-demand scalability. In this talk, I’ll review the hallmarks of a healthy DevOps practice, and describe how the continued evolution of development and delivery platforms is an essential factor in producing high-performing software teams.

Speakers

James Governor

Analyst & Co-founder, RedMonk

Founded RedMonk in 2002 with Stephen O’Grady. We focus on developers as the real key influencers in tech. Understanding that people choose technology because of gut instincts, not facts per se. An ex-journalist, I have managed teams and news agendas in weekly publication grind... Read More →

Bryan Liles

Senior Staff Engineer, VMware

Andre Pino

VP, Marketing, CloudBees

Dave Stanke

Developer Advocate, Google

Thursday December 5, 2019 09:00 - 11:00 PST
Auditorium I

Keynote

11:00 PST

Configuration as Code in CloudBees Jenkins Distribution

Speakers

Oleg Nenashev

Principal Engineer, CloudBees

CJD and Configuration as Code pdf

Thursday December 5, 2019 11:00 - 11:15 PST
CloudBees Booth in Expo Hall

All things Jenkins

11:00 PST

Break in Expo Hall

Thursday December 5, 2019 11:00 - 11:30 PST
Expo Hall

Break

11:30 PST

Continuous Integration for the Stars: CI at the European Southern Observatory

Federico will present the Jenkins-based automated build and test system used at the Control and System Engineering department at the European Southern Observatory (ESO) to validate and deliver software for the control systems of world class ground astronomical telescopes based in the Chilean Atacama desert and mainly developed at the ESO headquarters in Garching near Munich.

One of the two systems is used for the currently operating Very Large Telescope (VLT) software in use at the LaSilla-Paranal Observatory, whose code base started growing approximately 25 years ago, and is based on a legacy usage of Jenkins coupled with customized build and tests scripts to generate a suitable workflow and output to be represented in Jenkins. Problems arising from introducing a CI workflow and modern tooling into an old legacy system and very specific hardware needs will be presented and the solutions that were applied at ESO will be shown.

The newer system used for the currently ongoing work on the Extremely Large Telescope (ELT), a 39-meter aperture telescope under construction located in Cerro Armazones whose first light is planned for 2025, is based on a more up-to-date and modern usage pattern that suits and leverages better the newer technologies in Jenkins and other open-source tools. The interesting part of this system is the need to support three programming languages and a multitude of protocols, libraries and toolkits. This was tackled with the selection of a universal and very exapandable build system coupled together with many open source tools. The CI configuration also features integration of less commonly automated systems, such as Windows-OS based PLC devices.

The talk aims at showing a practical DevOps use case in a large scientific setting, emphasizing problematics encountered in a setting with quite diverse background user base and peculiarities of such systems. A general overview of all the tasks automated, such as building, various phases of testing, quality assurance tasks and packages preparation, for all the control systems will be shown and their interactions with parts such as the ticketing system or the configuration management system.

Speakers

Dr. Federico Pellegrin

Software Engineer, European Southern Observatory

Federico is a Linux and Open Source enthusiast since Yggdrasil "Fall 1993" and is since then using it on desktops and any kind of embedded system he comes across. He is always eager to introduce Linux usage to new users and new use cases. He wrote three articles for Linux Journal... Read More →

CI to the stars Federico Pellegrin pdf

Thursday December 5, 2019 11:30 - 12:15 PST
Auditorium II

All things Jenkins

11:30 PST

Women in DevOps Panel - Building A Pipeline of Gender Diversity for the Enterprise of the Future

Just 26% of the computing industry’s workforce is made up of women, according to the National Center for Women & Information Technology. And, the turnover rate is more than twice as high for women as it is for men - 41% versus 17%. With this rate of progress, it will take until 2133 to close the gender gap.

What positives and negatives exist for women in DevOps? Why is the gap widening instead of closing? What are some best practices that are helping to move the needle? How can we all contribute to forward progress? What resources are available to help change culture and drive gender diversity and equality in tech in the workplace sooner rather than later?

MODERATOR:Jayne Groll, CEO, DevOps Institute (already speaking)

Speakers

Tara Hernandez

Vice President Developer Productivity, MongoDB

Aoife Fitzmaurice

Architect for Enterprise Cloud Computing, Fidelity Investments

Cheryl Razzell

Director of Platform and Live Ops, Polystream

Cheryl has worked for many large organisations including the BBC , Apple , News UK and Microsoft. Her roles ranged from running their traditional IT departments to large scale digital transformation projects. More recently she worked for HSBC on their digital transformation enabling... Read More →

Jen Thomson

Senior Research Director

Jen Thomson is an IDC senior research director with over 20 years of experience in the IT industry. Jen leads the Accelerated App Delivery Practice for IDC in Europe and provides insights on the investment strategies and decisions of European enterprises as they transition to modern... Read More →

Ana Petkovska

DevOps Engineer, Nexthink

Ana Petkovska obtained her bachelor's degree in Engineering and Information Technologies from FEEIT at Ss. Cyril and Methodius University, North Macedonia in 2011. The same year, she started her doctoral studies at École Polytechnique Fédérale de Lausanne (EPFL), Switzerland. In... Read More →

Thursday December 5, 2019 11:30 - 12:15 PST
Sala 3C

DevOps

11:30 PST

Leading a Successful DevSecOps Transformation at Banca Digital

Banca Digital will share their experiences on how they have gone from Waterfall and no automation to a high level of DevSecOps maturity and automation. Carlos will share the cultural and organizational changes as well as technical implementations during this first year of their journey. Zivra will share their experiences on how they worked with Banca Digital along the way, including a recent DevSecOps assessment to help develop a strategic roadmap for 2020 and beyond.

Speakers

Carlos Ortiz

Director, Product Engineering, Banca Digital

Carlos is a Director at Banco Azteca’s Banca Digital. He has been in technology for over 10 years and responsibilities at the bank include driving the DevSecOps transformation for the digital group. Carlos’ team has been working to implement CI/CD Technology and cultural change... Read More →

Fabiola Lagunas

President, Zivra Technology Consulting

Fabiola is President at Zivra LLC, a leading DevSecOps advisory firm (Cloudbees Americas Partner of the year, 2017, 2018, 2019). Fabiola has an active role in growing Zivra’s Latin America’s DevSecOps capability and is working actively with customers and internally. When she’s... Read More →

2019BancoAztecaDevSecOps distro pdf

Thursday December 5, 2019 11:30 - 12:15 PST
Sala 3B

DevSecOps

11:30 PST

Make It Scale: Intelligent Jenkins Pipelines

Do you have several independent development projects? Do you need to scale Jenkins Pipelines across projects as efficiently as possible while keeping teams autonomous? We will share with you:
* How we address this within the SAP ecosystem for a few hundred development projects in order to comply with our high quality and security standards.
* How you can adopt it for your own scenarios also outside the SAP scope.

Our solution is available as an open source project and based on:
* Jenkins Pipelines as Code.
* Jenkins Shared Groovy Libraries.
* Kubernetes and Docker.

We combined it with:
* Smart pipeline logic.
* Layered yaml-based configuration.
* Advanced quality process for the library itself.

Get insights into the open source Jenkins library offering you a highly configurable and flexible way to scale CI/CD best practices throughout your teams while keeping them in the driver seat. Besides looking at the status quo, we will also share ideas how this might evolve in the light of the Continuous Delivery Foundation established early 2019.

Speakers

Oliver Nocon

Chief expert and CD/DevOps coach, SAP SE

Oliver is chief expert and CD/DevOps coach at SAP SE located in Walldorf/Germany. He has been working in SAP’s development organization since 2001 and has a proven track record in technology topics as well as in project, program, and delivery management - especially in the cloud-space... Read More →

Sven Merk

Security Architect, SAP SE

Sven joined SAP‘s development organization in 2010 experienced in Java and web development projects. Since 2017, he's been focused on product security and joined SAP’s Industry and Cross Development security team. While leading the Security and Data Privacy workstream for SAP’s... Read More →

2019 DWJW Lisbon Merk Nocon Sven Merk pdf

Thursday December 5, 2019 11:30 - 12:15 PST
Auditorium IV

DevSecOps and Security, CI/CD, Enterprise DevOps leadership, Cloud Native Evolution

11:30 PST

Thinking About Jenkins Security

This session is a condensed form of a two-hour training course that Wadeck and Mark presented remotely, along with demonstrations of areas of particular importance when securing Jenkins. This talk covers: Jenkins security concepts, Authorization, Authentication, Secure builds, Agent security, Configuration and administration security and Security best practices.

Speakers

Wadeck Follonier

Sr Security Software Engineer, CloudBees, Inc.

Mark Waite

Technical Evangelist, CloudBees

Thinking about JEnkins Security pdf

Thursday December 5, 2019 11:30 - 12:15 PST
Sala 3A

DevSecOps and Security, Jenkins Admin

11:30 PST

Continuous Delivery: It’s Not Just for Developers Anymore

Welcome to the new school where DevOps thinking has escaped the scrum room and is influencing every department to automate for efficiency, collaborate tightly and deliver value continuously.

It isn't easy and it's certainly not painless. Shawn Ahmed, CloudBees vice president of product marketing, pulls no punches sharing the challenges he's faced and successes he fought for in seeking a DevOps transformation.

If you believe your company needs that kind of change, Shawn is your coach; he will inspire you to get into the ring and fight for the future of innovation.

Speakers

Brian Dawson

DevOps Evangelist, CloudBees

Brian is a DevOps evangelist and practitioner with a focus on agile, continuous integration (CI), continuous delivery (CD) and DevOps practices. He has over 25 years as a software professional in multiple domains including quality assurance, engineering and management, with a focus... Read More →

Thursday December 5, 2019 11:30 - 12:15 PST
Auditorium III

Enterprise DevOps leadership DevOps leadership

11:30 PST

Creating and Managing Serverless Deployments with Knative and Jenkins X

As serverless computing is gaining momentum, we have to make some hard choices and answer some fundamental questions. What is serverless, and why do we want it? Are cloud vendors like Amazon, Google, and Microsoft the only places where it makes sense to run serverless applications? Which types of applications are good candidates to become serverless? Should we use Kubernetes as the platform to run serverless deployments? How do we manage the lifecycle of our serverless applications?
This talk with try to answer those and quite a few other questions and present Knative as one (out of many) possible platforms we can use to run serverless applications. We'll also see a live demonstration of the Knative project and use Jenkins X to manage the lifecycle of our serverless applications.

Speakers

Viktor Farcic

Developer Advocate, CloudBees

Thursday December 5, 2019 11:30 - 12:15 PST
Auditorium VII

Jenkins X

11:30 PST

Securing Jenkins X

The Jenkins X platform consists of a number of microservices running on Kubernetes, which work together to provide users a cloud-native CI/CD experience. In this talk, we will walk you through a number of security features and good practices that allow us to achieve a more secure Jenkins X setup.

The topics covered are:
- Learning about some security features available in Jenkins X.
- Ensuring your cluster is secure before the installation with the scan cluster command.
- Diving into the recommended configuration for a secure Jenkins X installation.
- Adopting best practices for handling secrets in Jenkins X pipeline.
- Managing secrets using the HashiCorp Vault integration.
- Configuring the single sign-on using the SSO add-on and operator easily.

Speakers

Cosmin Cojocar

Principal Software Engineer, CloudBees

Cosmin Cojocar is a principal software engineer at CloudBees working on the Jenkins X project. He is also the maintainer of the gosec tool and a contributor to Kubernetes and Prow, a CI/CD system maintained by the Kubernetes SIG-testing group. Prior to CloudBees, Cosmin worked for... Read More →

Securing JenkinsX Cosmin Cojocar pdf

Thursday December 5, 2019 11:30 - 12:15 PST
Auditorium VI

Jenkins X, All things Jenkins

12:15 PST

Lunch, Expo Open

Thursday December 5, 2019 12:15 - 13:45 PST
Expo Hall

Break

12:15 PST

Women in Tech Luncheon

Join the Women in Tech Luncheon on Thursday, December 5 to meet up with other women in the tech industry onsite at DevOps World | Jenkins World. This casual networking event is a great opportunity to connect with and celebrate our community of female participants at this year’s event. Jayne Groll (CEO, DevOps Institute) and Tara Hernandez (Engineering Manager, Google Cloud Platform) will be doing a short welcome and a few icebreakers to help encourage new connections being made onsite!

Please reserve your spot here!

Speakers

Tara Hernandez

Vice President Developer Productivity, MongoDB

Jayne Groll

CEO, DevOps Institute

Thursday December 5, 2019 12:15 - 13:45 PST
Sala 1.16

Social

12:30 PST

Results from the 2019 Jenkins Google Summer of Code

In 2019, the Jenkins project participated in the Google Summer of Code. This is an annual, international, program which encourages college-aged students to participate in open source projects during the summer break between classes. In 2019, we had dozens of applications and many student projects. In this session, we will showcase the students' projects and talk about what they bring to the Jenkins ecosystem.

Speakers

Oleg Nenashev

Principal Engineer, CloudBees

Thursday December 5, 2019 12:30 - 12:45 PST
Community Booth in Expo Hall

12:30 PST

InnerSource: Sharing Code at Work for Fun and Profit

InnerSource is the use of open source methods to develop and share your work, but within your organization. Learn how to enjoy benefits that are typical of open source, from better code review and reuse to a happier, more collaborative culture — without giving away your intellectual property. Open and InnerSource have both fueled the success of GitLab, the open core product and the 100% remote company with more than 1,000 employees in 65 countries, where our mission is "Everyone can contribute."

Speakers

Brian Glanz

Product Marketing, GitLab

20191129 DevOpsWorld BrianGlanz InnerSource Brian Glanz pdf

Thursday December 5, 2019 12:30 - 12:45 PST
Partner Theater

Sponsor Session

12:45 PST

Multibranch Pipeline Support for GitLab

This talk will go through Parichay’s work from Google Summer of Code 2019. He worked on developing GitLab Branch Source Plugin in Jenkins CI. He will discuss about the how to get started with Jenkins contribution. About the features of GitLab Branch Source Plugin developed in his project. Talk about Open Source Software in general.

Speakers

Parichay Barpanda

Google Summer of Code Student, NIT Rourkela

Parichay is currently a Google Summer of Code 2019 student where he is working on the Gitlab Multibranch Pipeline Plugin in the Jenkins project. He is fascinated by programming languages and their different ways of solving different problems. His passion is to contribute to the... Read More →

JW Lisbon pptx

Thursday December 5, 2019 12:45 - 13:00 PST
Community Booth in Expo Hall

12:45 PST

CI/CD of the Future Today

Speakers

Joost van der Griendt

CloudBees

Thursday December 5, 2019 12:45 - 13:00 PST
CloudBees Booth in Expo Hall

CI/CD

13:00 PST

Remoting Over Apache Kafka with Kubernetes Features

This talk will go through Long's work during Google Summer of Code 2019. He will explain the motivations and completed features of the project. He will also brief on how to get started using the project.

Speakers

Long Nguyen

Google Summer of Code Student, FPT University

Long is a Software Engineering major student from FPT University, Vietnam. He contributes to Jenkins and participated in Google Summer of Code 2019 with the project, Remoting over Apache Kafka with Kubernetes features.

DW JW 2019 GSoC Remoting over Apache Kafka on Kubernetes.pptx (1) Le Vu Long Nguyen pdf

Thursday December 5, 2019 13:00 - 13:15 PST
Community Booth in Expo Hall

13:15 PST

Scavenger Hunt Winners Announcement

Gather at the Partner Theater in the Expo Hall at 13:15 where we will be revealing the winners of the Mobile App Scavenger Hunt.

Thursday December 5, 2019 13:15 - 13:20 PST
Partner Theater

13:15 PST

Benchmarking in Jenkins and Improvements to Authorization

The talk will go through Abhyudaya’s work during Google Summer of Code 2019. He will discuss about the framework for creating Java Micro Harness (JMH) benchmarks in Jenkins plugins and Jenkins core. The various ways to configure instances for test and different ways to run benchmarks, both locally and on ci.jenkins.io, will be discussed. This will be followed up with a discussion about the performance improvements made to the Role Strategy plugin and how benchmarks helped there. He will also present the new Folder Authorization plugin which makes handling permissions easier for jobs organized in folders from the Folders plugin. The performance improvements over Role Strategy Plugin will also be presented.

Speakers

Abhyudaya Sharma

Google Summer of Code Student, Shiv Nadar University

Abhyudaya is a student of Computer Science at Shiv Nadar University, India. He worked on improving the performance of the Role Strategy Plugin and developed the Folder Authorization plugin during Google Summer of Code 2019.

DWJW Lisbon Role Strategy Abhyudaya Sharma pdf

Thursday December 5, 2019 13:15 - 13:30 PST
Community Booth in Expo Hall

13:45 PST

DevOps Journey at BNP Paribas CIB

Speakers

Riad Ghafir

Global Head of Production Factories, BNP Paribas CIB

Riad is the global head of Production Factories at BNP PARIBAS CIB including DevOps platform and services, Environment management services and Intelligent automation.Riad has 19+ years of experience in IT within BNP Paribas with a wide range of transformation and leadership roles... Read More →

Jackie Wong

Global Head of DevOps, BNP Paribas CIB

John Yandrapati

Senior DevOps Engineer

I have been working as a Senior DevOps Engineer at BNP Paribas for the last couple of years. I am the Global Product Owner for Jenkins within BNP Paribas. I am responsible for installation, configuration, upgrading and day-day management of Jenkins on BNP Platforms.My skillset include... Read More →

Thursday December 5, 2019 13:45 - 14:00 PST
Sala 3C

DevSecOps

13:45 PST

Jenkins Performance: Avoiding Pitfalls, Diagnosing Problems and Scaling for Growth

Jenkins prides itself on being easy to get started with, but as our demands on it grow, its performance can degrade. We have worked as Support Engineers at CloudBees, and managed Jenkins masters with 170,000 jobs at Yahoo. From that experience, we've learned how to optimize Jenkins at the outset, troubleshoot performance problems when they crop up and scale Jenkins horizontally when growth in usage requires it.

Join us to learn about the tools, techniques and best practices that will help you avoid Jenkins performance headaches, whether you are just getting started or are a seasoned user. We’ll start by covering how to determine the best hardware for your workload, and how to configure and monitor Jenkins properly. Then we’ll talk about how to detect, diagnose and fix performance issues. Finally, we’ll cover when and how to scale horizontally, adding additional masters to support growth in your environment. Throughout our talk, we will use real-world examples from our experiences running Jenkins ourselves and supporting CloudBees customers.

Speakers

Ryan Smith

Senior Development Support Engineer, CloudBees

DWJWLisbon2019 Jenkins Performance Avoiding Pitfalls, Diagnosing Issues, and Scaling for Growth Ryan Smith pdf

Thursday December 5, 2019 13:45 - 14:30 PST
Auditorium VII

All things Jenkins Jenkins Admin

13:45 PST

Is Data Friction Putting a Crimp in Your CI/CD Flow?

The end goal of establishing a CI/CD pipeline is to achieve a continuous 'flow' of releases as new features get built, integrated, tested and deployed to production-like non-prod environments, and eventually to production. This flow depends upon the continuous integration and delivery of small batches of code, data schema and environment changes. Data friction results in the inability to have the right data being provisioned to the right non-prod environment, when it is needed by the right practitioner, causing the flow to be interrupted or at best slowed. Data friction, in turn, is caused due to the time and cost it takes to provision test data sets to multiple development and test environments in a secure, compliant manner. Practitioners who manage and those who secure data need to be brought into the cross-functional teams of those who need data, eliminating these 'silos' and extending DevOps practices into the data realm.

This session will go into client tested and proven methods and practices to address data friction in the CI/CD pipeline, and show how to bring secure, compliant data, on-demand to practitioners and achieve CI/CD flow.

Speakers

Gary Hallam

Director of Channel Enablement, Delphix

Gary is currently responsible for Enabling Channel Partners in EMEA, helping them to sell, implement and support Delphix's DataOps solution across the region. He has a broad application development and consulting background and prior to joining Delphix he worked for Oracle in Spain... Read More →

Thursday December 5, 2019 13:45 - 14:30 PST
Sala 3A

CI/CD

13:45 PST

Lean Software Engineering for the World of Continuous Disruption

The current environment of Continuous Disruption requires companies to respond with Continuous Adaptability in order to survive and thrive. Lean Software Engineering lays the foundation for the ability to continuously adapt. By focusing on maximizing value delivered and applying traditional Lean approaches to Software Development Lifecycle companies can achieve high levels of time to market, quality, productivity, and employee engagement.

Speakers

Stas Zvinyatskovsky

Managing Director, Accenture

Stas Zvinyatskovsky is a Managing Director at Accenture. Stas has over 20 years of industry experience. Having played various roles, from tester to architect to executive, he works across Software Engineering disciplines to help companies, large and small, achieve their dreams with... Read More →

Lean Software Engineering 2019 11 28 SUBMITTED Stas Zvinyatskovsky pdf

Thursday December 5, 2019 13:45 - 14:30 PST
Auditorium III

CI/CD

13:45 PST

Progressive Delivery with Jenkins X

Jenkins X runs on Kubernetes and transparently uses on demand containers to run build agents and jobs, and isolate job execution. It enables CI/CD-as-code and automated deployments of Cloud Native applications. It integrates Skaffold, Helm, Knative and other popular tools. Enables pull request based environments that can easily be used for canary and blue-green deployments.

We will demo how to use Jenkins X on Kubernetes for fully automated CI and CD using a GitOps approach, taking advantage of serverless Jenkins Pipelines, only running for the duration of your jobs and providing 'unlimited' scalability and a pay-per-use model.

This talk will provide updates on the Jenkins serverless project and integrations for canary deployments and enabling Progressive Delivery

Speakers

Carlos Sanchez

Principal Scientist, Adobe

Carlos Sanchez is a Principal Scientist at Adobe Experience Manager, specializing in software automation, from build tools to Continuous Delivery and Progressive Delivery. Involved in Open Source for over 15 years, he is the author of the Jenkins Kubernetes plugin and a member of... Read More →

Progressive Delivery with Jenkins X Carlos Sanchez pdf

Thursday December 5, 2019 13:45 - 14:30 PST
Auditorium IV

Cloud Native, All things Kubernetes

13:45 PST

Value Stream Management: Using Proper Metrics to Understand if You're Delivering Better Software Faster

Well-defined measurement and management of the DevOps process has tangible benefits. Proper value stream management is core to DevOps, ensuring the facets related to end-to-end software development are connected and measured to properly and efficiently move the flow of value related to a product or service to the customer. In this session, we'll step through the proper metrics you can access to help you answer the question -- are we delivering better software faster?

Speakers

Michael Baldani

Senior Product Marketing Manager, CloudBees

Mike Baldani is a senior product marketing manager at CloudBees. He has spent the last 20 years marketing software and SaaS solutions to help customers overcome the challenges they face in their daily roles.

Deepro Basu

Senior Product Manager, CloudBees

Deepro Basu is an accomplished 'full stack' product manager with a pragmatic approach to solving customer problems. As a former software engineer and customer engagement manager, he brings a unique blend of developer and customer success experience to product management, with a history... Read More →

Thursday December 5, 2019 13:45 - 14:30 PST
Sala 3B

Data/Reporting

13:45 PST

The Story, the Findings and the Fixes Behind More than 100 Jenkins Plugins Vulnerabilities

Jenkins is an open source tool that helps developers build, deploy and automate software development and delivery. It can be extended with further functionality by more than a thousand plugins. These plugins help with recurring tasks such as executing a static code analyzer or copying a compiled software to a CIFS share or they may add functionalities like Active Directory authentication or role-based authorization. Similar to well-known content management systems, this core framework is extended by hundreds of plugins. But most these plugins are developed by third-party developers and it is up to them for securely writing them.

As the number of open source and third-party developed plugins grow as part of the Jenkins installation, it can be a challenging task to ensure that only secure components are being used in the DevOps environment. This talk takes a look at the most common vulnerabilities as well as ones found during research into more than 100 plugins. More importantly, we look at how to prevent these vulnerabilities during plugin development so that a more secure Jenkins CI and CD environment can be built.

Speakers

Viktor Gazdag

Security Consultant, NCC Group

Viktor Gazdag has been in the IT security industry for over five years and currently working at NCC Group as a security consultant. Recently he started to research and report security vulnerabilities in multiple DevOps products and plugins. Viktor's name might be familiar based on... Read More →

2019 DWJW Lisbon Viktor Gazdag wood speed pdf

Thursday December 5, 2019 13:45 - 14:30 PST
Auditorium II

DevSecOps

13:45 PST

How Jenkins Builds and Delivers Jenkins in the Cloud

Want to know how Jenkins builds Jenkins? Catch this session to see the real-life implementation of Jenkins’ development (ci.jenkins.io) and delivery infrastructure in the cloud as it evolved from a mix of platforms to multi-platform virtual machines, containers and Kubernetes on Microsoft Azure. Expect a frank discussion of issues that were encountered along the way, how the architecture has evolved and what’s on the roadmap.
I’ll share important tips and tricks for implementing your own Jenkins infrastructure on any cloud, based on my own Jenkins’ implementation experience.

Speakers

Olivier Vernin

Senior Operation Engineer, CloudBees

Olivier is a Senior Operation Engineer at CloudBees and the principal maintainer of the Jenkins infrastructure project. As a regular contributor to open source infrastructure projects, he works on a wide range of tasks from service reliability to application maintenance. More recently... Read More →

How Jenkins Builds and Delivers Jenkins in the Cloud pdf

Thursday December 5, 2019 13:45 - 14:30 PST
Auditorium VI

Jenkins Admin

14:45 PST

We're Talkin' 'Bout A (People) Revolution

Change is scary, resistance to it can be heavy, and it seems like some lessons inevitably are learned the hard way. Innovations in technology have enabled huge accomplishments in tech, but only when the people interacting with that technology have bought into the new modes of thinking those innovations required. How do we, as the people who care about the systems that enable software development, make sure new tech helps, not hinders? How do we ensure that the necessary changes in thinking are fostered? During this talk, I'll share some embarrassing fails along with some great wins in the evolution of software development support, and how the emergence of the DevOps philosophy made such a difference for us software development lifecycle practitioners trying to revolutionize our art.

Speakers

Tara Hernandez

Vice President Developer Productivity, MongoDB

Tara Hernandez pdf

Thursday December 5, 2019 14:45 - 15:30 PST
Sala 3B

14:45 PST

Autonomous Real-time Testing

For safety in automotive, for data privacy protection, or for the Internet of Things (IoT), to be legally compliant requires testing the impact of any action before allowing it to occur. However, system boundaries change at runtime, more and more software-intense products contain artificial intelligence (AI) and use deep learning instead of coded algorithms. Support vector machines (SVM) are readily used to exhibit behavior not testable before delivery. Tests, if any, must happen anytime, anywhere, becoming part of continuous delivery.

This tutorial explains the theory and implementation of the framework for autonomous real-time testing (ART) of a software-intense system while in operation for autonomous cars. The key to continuous testing complex systems is understanding the needs (or values) of the customer, or user, in general. The hype for autonomous cars is over but Advanced Driver Assistance Systems (ADAS) are state of the art and will appear in vehicles everywhere, shortly. They contain deep learning devices such as visual recognition systems that share learning among a wide range of cars.

ART addresses the need to automatically generate test cases based on an initial set of test stories. Automatic test case generation requires avoiding a combinatorial explosion. This is where quality function deployment (QFD) and the needs of drives come in. Using Six Sigma transfer functions, we can effectively limit the growth of test cases and keep focus on the train operator’s needs.

Neither QFD nor Six Sigma is widely known among automotive, testing, or DevOps engineers, and this tutorial will change that. Participants learn not only the theoretical background, but as well how to set up and manage ART for an ADAS, to avoid detecting software failures during operations.

The session schedule is as follows:

Functional Size
The ISO/IEC 19761 COSMIC approach
Automated model construction
Automated Measurement

Among some of the topics we will go over include:

Test metrics
Test size
Test density
Test coverage
The convergence gap
Defect density prediction
Measuring test coverage
Selecting relevant test cases
Autonomous real-time testing
Continuous delivery with CloudBees CodeShip
Continuous safety metrics with CloudBees DevOptics
The DevOps challenge for testing
Discussion how such metrics can become a standard and who should set standards

Throughout this sessionl we will assume DevOps development methods, CI/CD and use its terminology.

Speakers

Thomas Fehlmann

Senior Researcher, Euro Project Office AG

Thomas Fehlmann is a senior expert in software metrics and testing, a Lean Six Sigma Black Belt for lean and agile software development and promoter of customer-oriented product design and testing. He spent most of his professional life as a quality manager for software organizations... Read More →

ART Fehlmann (Slides) pdf

ART Fehlmann (Notes) pdf

Thursday December 5, 2019 14:45 - 15:30 PST
Sala 3A

All things Jenkins

14:45 PST

Declarative Pipeline 2019: Tips, Tricks and What's Next

Are you using Declarative Pipeline? Are you considering using them? Are you just curious? Well, we're going to help you get more out of Declarative Pipeline with less complexity and less effort. We'll walk through some best practices, point out some tricks you might not have known, warn you off some common mistakes, review what's changed in the last year and give you a preview of what we're working on for Declarative Pipeline going forward.

Speakers

Liam Newman

Senior Software Engineer, CloudBees

Thursday December 5, 2019 14:45 - 15:30 PST
Auditorium II

All things Jenkins

14:45 PST

Don't Repeat Job-Self!

In this session, we'll share our experience on how to avoid the redundant execution of repeated jobs using the Results Cache Plugin.

At King, we use Jenkins extensively to build our games and execute our tests. All of King’s development departments use this tool as there is a high-throughput of screenings, which generate large volumes of diverse data. This requires a flexible approach when building integrated, scalable and robust computational workflows for building. Maintaining our games is challenging.

In the build, test and release stages, there are two main workflows: “Merge to Meta” and “Hotfix” to build, test and fix all our libraries and our meta release, which are the most common sets of shared libraries used in all King games.

For example, each of these workflows could possibly launch at least a hundred of building jobs and this amount of jobs might potentially increase in the future due to the addition of new modules and features added every quarter. Therefore, they must be tested in order to deliver a good quality product. The same Jenkins job is repeated for a substantial number of times with exactly the same parameters within King’s Jenkins servers.

Buts sometimes, the job fails due to something not related to the job itself. It might be a failed connection in a GitHub repository, a timeout in the pending jobs queue or a disk space error in the Jenkins agent. One single job failure can ruin all the work done during the workflow execution.

So, what can we do to avoid the redundant execution of something that we know worked before?

Our initial search in the Jenkins Plugins page didn’t show any plugins that would solve the problem, so we had to research it from scratch.

We wanted the new plugin to ask for the status of a previously executed job at the beginning of the job execution: If it was a success, then it would just interrupt it and return a “SUCCESS” result, otherwise, it would keep on executing the job as expected. After execution, the ideal plugin would save the result of the execution, just in case the job is executed again in the future.

With that in mind, we created the Results Cache Plugin which can be found at the Jenkins plugins site.

Speakers

Francisco Javier García Orduña

Software Engineer, King.com

Francisco is a software engineer with more than 15 years of experience in the Java/J2EE platform. He is experienced with analysis, design and development of web frontend and backend cross-platform components such as communication with other agencies, payment gateways, security and... Read More →

David Campos Vall

Software Engineer, King.com

David is a computer engineer with a specialized hybrid profile: Software development and automated software quality assurance.As a software engineer, David has a strong background in cryptographic systems/applications, identity systems (federated or user-centric) and computer security.He... Read More →

Don't Repeat Job Self! pptx

Thursday December 5, 2019 14:45 - 15:30 PST
Auditorium III

CI/CD

14:45 PST

Upskilling DevOps: Results from the Enterprise DevOps Skills Report

Skills transformation is a key factor in digital transformation particularly as it relates to the evolution of the specialist into the T-shaped, multi-dimensional IT professional.

Identifying the stem of the T (the deep core competency) is easy for most practitioners and hiring managers. But, what should we look for or acquire in the Top of the T (the breadth of skills)? Process and functional skills, soft skills, technical skills and automation tool knowledge? And which ones are the most important to prepare for recruiting or for getting hired?

The DevOps Institute fielded the 2019 Upskilling: Enterprise DevOps Skills Report based on a global community survey that was completed by more than over 1,600 individuals from various geographies, company sizes, and roles. The data was supplemented by interviews with several senior IT leaders, recruitment companies and others involved in the skilling and hiring of DevOps professionals.

This session will be co-presented by Jayne Groll, CEO of the DevOps Institute and Eveline Oehrlich, Chief Research Analyst for the Upskilling report. Together, they will share key findings from the report, including insights on:

DevOops adoption maturity within the sample group
Hiring plans
Recruitment challenges
Job titles
A breakdown and ranking of process, soft, functional and technical skills

Speakers

Jayne Groll

CEO, DevOps Institute

JGroll Upskilling DevOps Jayne Groll pdf

Thursday December 5, 2019 14:45 - 15:30 PST
Auditorium VII

DevOps leadership

14:45 PST

10 Attributes of the DevSecOps Elite

We've spent six years studying secure coding practices of DevOps and continuous delivery organizations by surveying over 15,000 IT professionals. We've analyzed their staffing practices, educational priorities, automation choices and process improvements that improve their cybersecurity preparedness. Our study has also uncovered details of where automation fails, awareness falls short and breaches happen.

Come participate in this session where we will share the 10 habits practiced by the DevSecOps Elite that you can then apply to -- or further mature within -- your own organization. We will also uncover what our analysis revealed about securing CI/CD pipelines, including what popular Jenkins plug-ins are used for security.

Speakers

DJ Schleen

DevSecOps advocate, Sonatype

DJ is a seasoned DevSecOps advocate at Sonatype and provides thought leadership to organizations looking to integrate security into their DevOps practices. He comes from a practitioner background and specializes in architecting DevSecOps pipelines, automating security in DevOps environments... Read More →

Hasan Yasar

Technical Director, Software Engineering Institute |CMU

Hasan Yasar is the Technical Director of the Continuous Deployment of Capability group at the Software Engineering Institute, CMU. Hasan leads an engineering group to enable, accelerate and assure Transformation at the speed of relevance by leveraging, DevSecOps, Agile, Lean AI/ML... Read More →

JWDW DevSecOps Top 10 Lisbon pdf

Thursday December 5, 2019 14:45 - 15:30 PST
Auditorium VI

DevSecOps and Security

14:45 PST

1 Year with Jenkins X

In this session, we’ll share our experience using Jenkins X at Dailymotion for more than 1 year: how we went from the “hello world” to the “real world” with the “most innovative Jenkins X implementation”. We’ll explain how we adopted Jenkins X and its new practices – both on the organizational and technical side.
We’ll go through our custom implementation of Jenkins X:

the integration of Osiris in the Preview Environments, to have auto-scaling to zero deployments,
the use of sops to encrypt/decrypt our secrets, and store them encrypted in our git repositories,
the use of Helmfile instead of Helm for the staging/prod deployments, to deploy on multiple clusters,
the use of updatebot to propagate new releases as Pull Requests everywhere, and merge them when needed

Speakers

Vincent Behar

Principal Engineer, Dailymotion

Vincent is a Principal Engineer at Dailymotion. He started his CI/CD journey with Hudson in 2007 and authored the Jenkins Rundeck Plugin in 2011 to implement Continuous Delivery pipelines. He started using Kubernetes in 2015, and Jenkins X in 2018.

1 year with Jenkins X Vincent Behar pdf

Thursday December 5, 2019 14:45 - 15:30 PST
Auditorium IV

Jenkins X, CI/CD

14:45 PST

From Monolith to Kubernetes with Jenkins X

Mauricio was in charge of migrating a monolithic open-source large application written in Java to a cloud-native approach running smoothly on Kubernetes. In this session, he will cover tools around the K8S ecosystem that will help you to sail smoothly to your destination port. A live demo on how it feels to bring a set of services to a remote Kubernetes Cluster – with a hint to the typical pitfalls will be presented.

Speakers

Mauricio Salatino

Principal Software Engineer, Camunda & ZeebeHQ

Mauricio Salatino (salaboy.com / @salaboy) is an open source, Kubernetes, Java, Spring Cloud, Jenkins X, JHipster and Business Automation enthusiast and promoter. Ex-Red Hat/JBoss, Activiti Cloud Creator and Architect... Read More →

JenkinsWorld Dec 2019 FromMonolithToK8s Salaboy Mauricio Salatino pdf

Thursday December 5, 2019 14:45 - 15:30 PST
Sala 3C

Jenkins X

15:30 PST

Afternoon Break in Expo Hall

Thursday December 5, 2019 15:30 - 16:15 PST
Expo Hall

Break

16:15 PST

Automating Jenkins (re)Installation: Some Thoughts, Tips and Tricks

In the true DevOps spirit, it is a sound and recommended practice to be able to automatically (re)install and configure a Jenkins CI/CD infrastructure.

This talk will discuss the reasons and goals of such a strategy, the available vectors (file system manipulations, Rest API, CLI, JCasC) and the recommended best practices. We will explain the various common use cases and illustrate them with Ansible examples (easily converted to other popular config management tools). Although the examples will deal mainly with CloudBees Core for traditional platforms, the discussion can easily be extended to Jenkins, CloudBees Jenkins Distribution or CloudBees Core for cloud platforms.

Based on this session, you will learn practical solutions to common problems, best practices and "tips and tricks" to implement your own strategy.

Speakers

Jean-Marc Meessen

DevOps Consultant, CloudBees

Jean-Marc Meessen is a perpetual and enthusiastic learner and admirer of all the cool stuff out there. He loves to share his discoveries and passions.Considered “old generation", Jean-Marc has seen the birth of personal computing, word processing, email, the World Wide Web, mobile... Read More →

Jean Marc Meesen pdf

Thursday December 5, 2019 16:15 - 17:00 PST
Auditorium II

All things Jenkins, IT Automation

16:15 PST

Implementing Modern CI in an Embedded Medical Project

Industry requirements and regulations add complexity to the release process for medical systems. At Siemens Healthineers Point of Care, we significantly accelerated release cycles of our software platform for the next generation medical devices using Jenkins and Artifactory. This presentation shares our experiences in building continuous integration (CI) pipelines for a functional safety project in the embedded medical (FDA/62304) market for the company.

The session also provides an overview of the implemented pipelines that enabled higher levels of compliance, testing, quality and security. It also covers additional CI topics including: managing build artifacts from a platform to product lines, automating configuration and infrastructure, automating testing with profiling and open source compliance in an enterprise.

Speakers

Jacob Lärfors

CTO, Verifa

Implementing Modern CI June 2019 0.4 Jacob Lärfors pdf

Thursday December 5, 2019 16:15 - 17:00 PST
Auditorium III

All things Jenkins

16:15 PST

Buying More Time for Innovation with CloudBees Accelerator

We've all heard Marc Andreessen's quote about "Every business is a software business." But did you know the rest of that quote includes this gem: "Cycle time compression may be the most underestimated force in determining winners and losers in tech.” If you've automated everything and have bought the biggest hardware or clouds you can afford but STILL have engineers complaining about build and test speeds, perhaps it's time to take another look at the problem. In this session, you will learn how to accelerate your builds and tests on half your existing infrastructure - and keep your engineers off the ping pong table.

Speakers

Mohan Dattatreya

Director of Engineering, CloudBees

Mohan is the director of engineering for Acceleration solutions at CloudBees. Mohan brings over 20 years of leadership experience in delivering innovative products at startups as well as at large companies. Prior to joining CloudBees, Mohan held leadership roles at Nortel Networks... Read More →

Tim Johnson

Product Marketing Manager, CloudBees

2019 DWJW Lisbon Accelerator Talk Track Timothy Johnson pdf

Thursday December 5, 2019 16:15 - 17:00 PST
Sala 3B

CI/CD

16:15 PST

Jenkins for Low-Code Apps

Gartner predicts low-code application development will be responsible for more than 65 percent of enterprise application development by 2024. But how does low-code work with existing DevOps tool chains? Are these strategies incompatible? Or can they work together? Join Andy Pemberton, VP-Field Engineering, at OutSystems to find out!

Speakers

Andy Pemberton

VP, Field Engineering, OutSystems

Andy leads OutSystems' Field Engineering team and has many years of experience helping organizations ship higher quality software. A long-time consultant and former DevOps and API engineering leader at Capital One and Solution Architecture leader at CloudBees, Andy writes regularly... Read More →

2019 DWJW Lisbon Jenkins for Low Code Apps Andy Pemberton pptx

Thursday December 5, 2019 16:15 - 17:00 PST
Sala 3A

DevOps, All things Jenkins

16:15 PST

Do It Yourself: Continuous Improvement for the Win!

In the constant flux of software development, everyone involved in creating new technologies and features must adapt to changes or be left behind. One obstacle facing professional development is lack of support and/or guidance from management. According to a recent survey by Robert Half Finance & Accounting, only 26% of employers allow their employees to attend continuing professional education courses during business hours. However, all is not lost. Change can come from within rather than management. Employees can take the reins of continuous improvement and generate positive change for themselves and their organization.

In this session, attendees will learn how to implement a robust continuous improvement curriculum that can be integrated into an organization's culture -- one training class, one conference, one professional group at a time.

Speakers

Thomas Haver

Test Automation Architect, Red Green Refactor

Thomas is presently serving as a Test Automation Architect. He leads a team of testers, ops engineers, and production support analysts in the adoption of DevOps practices. Previously, he led the enterprise automation support of 73 applications at Huntington National Bank that encompassed... Read More →

DIYCIFTW thomas haver devopsworld 20191205 Thomas Haver pdf

Thursday December 5, 2019 16:15 - 17:00 PST
Auditorium VI

DevOps leadership

16:15 PST

Why You Need to Think About Team Design for CI/CD

At Jenkins World 2018, Kohsuke Kawaguchi talked about the need to move away from Jenkinsteins, those single-headed monsters that eat all our food (resources) and steal our peace of mind.

Jenkins X, Pipelines as Code, Configuration as Code, Evergreen, and Serverless Jenkins are all important initiatives to achieve modern, fast and reliable software delivery. However… there’s still something we need to talk about and that is team organization for effective continuous integration/continuous delivery.

Should every application team own and maintain their own instances and flavors of Jenkins, since it’s all code now? Or do we still need a Jenkins admin team to handle Jenkins for everyone in the department/org so they only have to worry about their own pipelines and nothing else? Or something else, like a CI/CD platform providing out-of-the-box solutions that can be customized by application teams to fit their specific needs? The answer, as you probably guessed, is: it depends!

But just like we are advancing our tools to become easier to install, run and update, we also need to think about how to design our teams and responsibilities for transparency and ownership of both the CI/CD system (it’s actually a product) itself and the application pipelines.

This talk draws on research and case studies from the book Team Topologies by Matthew Skelton and Manuel Pais (IT Revolution Press, 2019) together with first-hand consulting experience from the authors with organizations around the world.

Key takeaways:

1. Moving to fast, distributed, and reliable CI/CD systems is not just a matter of better tooling, but also clearer team design and responsibilities.

2. With “everything as code” for CI/CD, application teams can be empowered to own their CI/CD chains if they wish. But with great power comes great responsibility. We need to consider the teams’ cognitive capacity as well as organization size (which btw might change quickly).

3. By applying four fundamental topologies and three interaction modes from Team Topologies, we can describe different ways to split responsibility for our CI/CD system and decide which one best matches the organization and teams’ needs.

Speakers

Manuel Pais

Co-Author, "Team Topologies"

2019.12.05 Manuel Pais Why You Need to Think About Team Design for CI CD Jenkins World Lisbon pdf

Thursday December 5, 2019 16:15 - 17:00 PST
Auditorium VII

DevOps leadership

16:15 PST

Exploring Deployment Strategies through Jenkins X

For many people, deploying applications is transparent or even irrelevant. If you are a developer, you might be focused on writing code and allowing magic to happen. By magic, I mean letting other people and departments figure out how to deploy your code. Similarly, you might be oblivious to deployments. You might be a tester, or you might have some other role not directly related to system administration, operations, or infrastructure. Now, I doubt that you are one of the oblivious. The chances are that you would not be even reading this if that's the case. If, against all bets, you do belong to the deployment-is-not-my-thing group, the only thing I can say is that you are wrong.
Deployment strategies affect everyone, no matter whether we are focused only on a single aspect of the application lifecycle or we are in full control. The way we deploy affects the architecture, testing, monitoring, and many other aspects. And not only that, but we can say that architecture, testing, and monitoring affect the way we deploy. All those things are closely related and affect each other in ways that might not be obvious on the first look.
We'll discuss different deployment strategies and answer a couple of questions. Is your application stateful or stateless? Does its architecture permit scaling? How do you roll back? How do you scale up and down? Do you need your application to run always? Should you use Kubernetes Deployments instead of, let's say, StatefulSets? Those are only a few of the questions you need to answer to choose the right deployment mechanism. But, answers to those questions will not serve much unless we are familiar with some of the most commonly used deployment strategies. Not only that knowledge will help us choose which one to pick, but they might even influence the architecture of our applications.
We'll explore serverless, recreate, rolling update, and canary deployment strategies and we'll automate them all using Jenkins X.

Speakers

Viktor Farcic

Developer Advocate, CloudBees

Thursday December 5, 2019 16:15 - 17:00 PST
Auditorium IV

Jenkins X, All things Jenkins

16:15 PST

Community Lightning Talks

This is an open space for those who would like us for lightning talks. Talks are 5 minutes short. Pre-signup is required. Signups are accepted starting Wednesday, 4 December.

Speakers

Olivier Vernin

Senior Operation Engineer, CloudBees

Mark Waite

Technical Evangelist, CloudBees

Thursday December 5, 2019 16:15 - 17:15 PST
Sala 3C

All things Jenkins