Loading…
or to bookmark your favorites and sync them to your phone or calendar.
Subject: OpsWorld clear filter
Tuesday, February 11
 

2:00pm PST

PRO WORKSHOP: GitHub Actions: Make Them Work for You!
Tuesday February 11, 2025 2:00pm - 2:50pm PST
Dev Exec World
Eleftherios Chrysochoidis, Chubb, Lead API Software Engineer

GitHub Actions offer robust and free CI/CD capabilities to streamline your development process. In this presentation, we'll dive into the core components of GitHub Actions and explore how they can be set to work for you by demonstrating various simple and advanced use cases!

GitHub Actions is an ideal tool for any project hosted on GitHub. It provides CI/CD features out of the box and is accessible to everyone without the need for extra infrastructure or setup. The declarative way of creating Actions makes their usage really easy, and its remarkable free layer provides sufficient limits even for big projects.

Especially for Open Source projects, where usually there is more than a single contributor, the need for CI/CD is huge. What will happen if you own an open source project and someone creates a Pull Request with really nice features but adds Security risks in the project (e.g. due to deprecated dependencies) or if they break some of the existing functionality? Would you be able to check all of them on your own? Maybe yes, but it would take much more time compared to having them all checked automatically by utilizing GitHub Actions.

Join me to explore how to make GitHub Actions run faster by utilizing caching mechanisms, build Reports for Testing, Coverage and Security issues and integrate them with any open Pull Request in the community, to have an automated evaluation of the suggested PR and get notifications for them.
Speakers
avatar for Eleftherios Chrysochoidis

Eleftherios Chrysochoidis

Lead API Software Engineer, Chubb
Experienced Lead Software Engineer with Passion for Community EngagementWith over six years of experience in software engineering, building and maintaining robust applications, Eleftherios (or simply Lefteris) gained a deep expertise in Java and Spring Boot technologies.His passion... Read More →
Tuesday February 11, 2025 2:00pm - 2:50pm PST
Dev Exec World
  OpsWorld
 
Wednesday, February 12
 

10:00am PST

OPEN Session: Scaling Secure, Codeless Mobile App Development and Continuous Monitoring in CI/CD for DevOps Teams
Wednesday February 12, 2025 10:00am - 10:25am PST
DeveloperWeek Main Stage
Karen Hsu, Appdome, SVP Mobile DevOps & Security Solutions

In the fast-paced world of DevOps, delivering secure, functional mobile apps quickly and efficiently is critical. This session is tailored for DevOps engineers and leaders looking to streamline mobile app development by incorporating code-less, secure app building, automated testing, and continuous monitoring into their CI/CD pipelines. Attendees will learn how to:
Integrate Secure Mobile App Builds Without Code or SDKs:

1. Automatically build critical security features such as encryption, fraud/malware/social engineering prevention, and threat detection directly into the mobile app, without writing any additional code or relying on third-party SDKs.
Automate Testing in CI/CD: Seamlessly integrate no-code security testing and scriptless functional testing into your CI/CD workflows. This ensures that each code push automatically triggers comprehensive testing, identifying any issues with secured apps before deployment—without requiring manual intervention.

2. Implement Continuous Threat Detection: Incorporate real-time threat detection for all your mobile apps. Then automate builds with protections against live attacks in your CI/CD pipeline. By closing the loop between security monitoring and app development, teams can ensure their apps are secure post-deployment and protected against evolving threats.

3. Optimize CI/CD Workflows for Faster Delivery: Implement a fully automated, end-to-end process that ensures every app build is secure, functional, and continuously monitored for potential threats. DevOps teams will learn how to accelerate their app delivery timelines without sacrificing security or performance, leveraging CI/CD tools like Jenkins, GitLab CI, and CircleCI, Bitrise and Azure DevOps.

This session will include a live demonstration showing how DevOps teams can integrate these capabilities into their existing CI/CD workflows, enabling faster, secure, and scalable mobile app delivery.
Speakers
avatar for Karen Hsu

Karen Hsu

SVP Mobile DevOps & Security Solutions, Appdome
Karen Hsu is SVP Mobile DevOps and Security Solutions at Appdome, focused on automating building and testing of secure apps in the DevOps pipeline. She co-founded BlockchainIntel to identify fraud in ACH, credit card and blockchain transactions, becoming part of Appdome to extend... Read More →
Wednesday February 12, 2025 10:00am - 10:25am PST
DeveloperWeek Main Stage
  Dev Exec World

10:30am PST

OPEN Session: Radical Transparency for Software Teams
Wednesday February 12, 2025 10:30am - 10:55am PST
OpsWorld
Gregory Lind, Buildly, CEO and Founder

Redefine team communication with radical transparency. Fostering a culture of openness, honesty, and positivity in your team, can create a work environment where everyone feels empowered to do their best work and grow both personally and professionally. This talk will give an overview to bringing radical transparency into your DevOps, software and product development processes. 
Speakers
avatar for Gregory Lind

Gregory Lind

CEO and Founder, Buildly
Author of "Radical Therapy for Software Teams", CEO of Buildly, and 20+ year career in Software, Open Source and Startups. Founder and CTO of four successful startups in 3 different countries. Worked with NGOs and Government agencies building open source grant management systems... Read More →
Wednesday February 12, 2025 10:30am - 10:55am PST
OpsWorld
  Dev Exec World

11:00am PST

OPEN Session: 5 Things You Didn’t Know Were Possible with GitHub Actions
Wednesday February 12, 2025 11:00am - 11:25am PST
OpsWorld
Jessica Deen, GitHub, Staff Developer Advocate

Unlock the full potential of GitHub Actions in this 25-minute demo with Jessica Deen, staff developer advocate at GitHub. Jessica will guide you through advanced features, such as job summaries, matrix jobs, reusable workflows, and OpenID Connect for passwordless cloud deployments. You'll also learn more about artifact attestations and explore starter workflow templates to help streamline your CI/CD processes. You'll see how these powerful tools can enhance your development workflow, boost productivity, and ensure security. 
Speakers
avatar for Jessica Deen

Jessica Deen

Staff Developer Advocate, GitHub
Jessica is currently a Staff Developer Advocate at GitHub. She previously worked for AWS and Microsoft. Before that, she spent over a decade as an IT Consultant / Systems Administrator for various corporate and enterprise environments, catering to end users and IT professionals in... Read More →
Wednesday February 12, 2025 11:00am - 11:25am PST
OpsWorld
  OpsWorld

1:00pm PST

KEYNOTE: DigitalOcean -- AI Democratization: Enabling Developers of All Sizes
Wednesday February 12, 2025 1:00pm - 1:25pm PST
DeveloperWeek Main Stage
Bratin Saha, DigitalOcean, Chief Product and Technology Officer

Artificial intelligence (AI) seems to be taking all industries by storm. Still, the sad reality is that so far, these changes are afforded to and created by large players who have the resources to develop AI technology. But if we are to unlock the full potential and promise of this technology, the future of AI development needs to be shaped by developers in companies of all sizes, even if they are resource-constrained. This session will explore how democratizing AI tools, platforms, and knowledge can accelerate innovation, bridge skill gaps, and empower the next generation of AI technology creators.

Technology tends to follow the path of democratization. From an infrastructure layer to a platform layer to finally the application layer, making the technology accessible to everyday users should be the natural progression. AI will soon move from the foundational models developed by companies like Anthropic and Open AI to applications that allow users to interact with unique and useful AI tools in their daily lives. This will be made possible by lowering barriers to entry through open-source frameworks, user-friendly APIs, and collaborative ecosystems so AI can become a tool for everyone, not just a privileged few.

Attendees will leave this talk with practical insights on how companies can ensure the efficient and equitable development of AI through the steps needed to enable developers with AI infrastructure, simplify AI platforms and empower developers with AI-driven applications.
Speakers
avatar for Bratin Saha

Bratin Saha

Chief Product and Technology Officer, DigitalOcean
As Chief Product and Technology Officer, Bratin Saha drives product and platform strategy, development, and security with a focus on making DigitalOcean the simplest, most productive, and most cost-effective platform for the developer community. Bratin brings more than 20 years of... Read More →
Wednesday February 12, 2025 1:00pm - 1:25pm PST
DeveloperWeek Main Stage
  5. KEYNOTES & FEATURED

1:00pm PST

OpenAPI Summit: Your Cheat Code for API Authorization
Wednesday February 12, 2025 1:00pm - 1:25pm PST
Dev Exec World
Omri Gazitt, Aserto, Co-founder & CEO

Congrats, your org is all-in on microservices! But now you have hundreds (or thousands!) of APIs. Some power your customer-facing apps. Others are platform services that your front-end services consume. Still others are back-end services used by internal tools.

And ALL of them need to be authorized.

Not to mention, you need to be able to answer questions like “which users are authorized to invoke this endpoint?” and “which endpoints can this user invoke?”

Having each API “do its own thing” makes it all but impossible to wrangle this complexity. You need a cross-cutting solution to apply authorization rules consistently - either in the API code or at the API Gateway.

Enter Aserto: an open source cloud-native authorization service that does this, and more.

This talk provides hands-on learning for how to go from an OpenAPI spec to a fine-grained authorization model, ready to authorize your users, in just a few minutes.
Speakers
avatar for Omri Gazitt

Omri Gazitt

Co-founder & CEO, Aserto.com
Omri is the co-founder/CEO of Aserto.com, an authorization startup, and his 3rd entrepreneurial venture. He spent the majority of his 30-year career working on developer & infrastructure tech, most recently as the CPO of Puppet. Previously he was the VP & GM of HP's Cloud Native Platform... Read More →
Wednesday February 12, 2025 1:00pm - 1:25pm PST
Dev Exec World
  Dev Exec World

1:30pm PST

OPEN Session: Stateful Workloads Made Easy: A Practical Demo of Live Migration
Wednesday February 12, 2025 1:30pm - 1:55pm PST
Cloud Native World
Steven Fraser, CAST AI, Senior Solution Architect

Kubernetes works great for stateless applications, but stateful workloads like databases or long-running jobs pose a challenge. These applications rely on persistent data and can’t afford interruptions, making Kubernetes’ “ephemeral” approach risky. Downtime can lead to data loss, inconsistencies, and system failures.

That’s where live migration comes in, allowing stateful workloads to move between nodes without disruption. At Cast AI, we’ve developed Container Live Migration to automatically consolidate these workloads, ensuring continuous uptime, reducing resource fragmentation, and cutting costs. Join us to see how we’re making Kubernetes work for stateful applications in a practical demo.
Speakers
avatar for Steven Fraser

Steven Fraser

Senior Solution Architect, CAST AI
Senior Solution Architect
Wednesday February 12, 2025 1:30pm - 1:55pm PST
Cloud Native World
  Cloud Native World

1:30pm PST

OPEN Session: Where Is the Love? Why Automated Regression Testing Isn’t Getting the Attention It Needs
Wednesday February 12, 2025 1:30pm - 1:55pm PST
OpsWorld
Jens Wessling, Veracode, Chief Technology Officer

As software development continues to evolve at a rapid pace and new innovations bring a world of possibilities, one item is often left behind: automated regression testing. The truth is without it, organizations can forget about software quality, security, winning customers' trust or being agile.

Regression testing is an integral, non-negotiable part of the production software development process right from the very moment the first line of production code is written. Its impact goes beyond code correctness, influencing development velocity, reducing long-term maintenance costs and ensuring a smoother integration process during acquisitions. However, companies often scramble to retrofit regression testing into their legacy code, but in reality, less than 10% of these after-the-fact efforts ever pan out. It might be tempting to overlook the absence of solid regression testing in smaller companies, but here's the catch: the long-term costs of maintaining code without automated testing don't just stay put – they grow. It's not just a “nice to have” it’s a strategic investment to safeguard their current operations and for companies to position themselves for future growth, innovation and success.

In this Thought Leadership Session, Jens Wessling, CTO of Veracode, outlines the importance of automated regression testing, highlighting why both developers and the C-Suite should make it a priority from the outset and how to make it a core aspect of your team's ethos.
Speakers
avatar for Jens Wessling

Jens Wessling

Chief Technology Officer, Veracode
Jens Wessling is the Chief Technology Officer at Veracode. He leads the architecture vision for Veracode’s core capabilities around its proprietary data model and AI-powered remediation engine. With more than 25 years’ experience in software engineering and architecture, Jens... Read More →
Wednesday February 12, 2025 1:30pm - 1:55pm PST
OpsWorld
  Dev Exec World

1:30pm PST

OpenAPI Summit: No AI without APIs
Wednesday February 12, 2025 1:30pm - 1:55pm PST
Dev Exec World
Jeremy Snyder, Firetail, CEO

Application Programming Interfaces (APIs) and Artificial Intelligence (AI) are two of the most important developments in tech of the last 10 years. While AI has grabbed the majority of headlines lately, APIs are the unsung heroes, the “connective tissue” that ensures seamless integration across our digital lives. But how will the more recent emergence of AI affect API security, and how do APIs affect the security of AI? 
In this talk, we’ll explore these two hot topics that make our online worlds work. AI can be helpful to API security by allowing security teams to automate certain processes or make testing more efficient, but it can also be used to help malicious actors automate their attacks.
 
Speakers
avatar for Jeremy Snyder

Jeremy Snyder

CEO, FireTail
Jeremy is the founder and CEO of FireTail.io, an end-to-end API security startup. Prior to FireTail, Jeremy worked in M&A at Rapid7, a global cyber leader, where he worked on the acquisitions of 3 companies during the pandemic. Jeremy previously led sales at DivvyCloud, one of the... Read More →
Wednesday February 12, 2025 1:30pm - 1:55pm PST
Dev Exec World
  Dev Exec World

2:00pm PST

OPEN Session: From DevEx Disaster to Delight: How to Champion a DevEx Revolution in Your Organization
Wednesday February 12, 2025 2:00pm - 2:25pm PST
Frontend World
Jeremy Meiss, DevEx Institute, Developer Experience & Community Leader

Is your team struggling with bugs, inefficient tools, and demoralizing processes? Do you often hear them expressing their frustration with the deployment process and the codebase? Don't worry, this talk is your ticket to transforming your organization's Developer Experience (DevEx) from a disaster zone to a developer utopia.

We'll delve into the what, why, and how of DevEx, exploring practical strategies that will empower you to make your developers' lives easier and more productive. We'll cover everything from tooling and automation to fostering a culture of collaboration and feedback. By the end of this talk, you'll be equipped with the knowledge and practical tips to become a DevEx champion in your organization.
Speakers
avatar for Jeremy Meiss

Jeremy Meiss

Developer Experience & Community Leader, DevEx Institute
Jeremy is a seasoned Developer Experience and Community leader, formerly the Director of DevRel & Community at CircleCI, and previously at Solace, Auth0, and XDA. With almost 30 years in Tech, covering just about every functional area including support, system and database administration... Read More →
Wednesday February 12, 2025 2:00pm - 2:25pm PST
Frontend World
  Dev Exec World

2:00pm PST

OpenAPI Summit: APIOps: Interface Development at Scale
Wednesday February 12, 2025 2:00pm - 2:25pm PST
Dev Exec World
Erik Hansen, Dell Technologies, API Architect, Developer Platform Services

Sure, your product may deliver a REST API to customers, but what about all those interfaces that exist within your company - between microservices, for internal tooling, and from imported packages? API Operations (APIOps) enables a consistent process, for developing and sharing any type of software interface, within your company and for your customers – whether you have 2 or 200 teams.
In this talk, learn how Dell is implementing APIOps to:
- Increase development velocity - for the team producing a shared interface, and their consumers.
- Reduce complexity - through common developer tooling and processes.
- Promote Consistency - by automating validation and governance.
- Expand Visibility - across all types of interfaces: REST, gRPC, event-based, and others.
Speakers
avatar for Erik Hansen

Erik Hansen

API Architect, Developer Platform Services, Dell Technologies
Erik is a Distinguished Member Technical Staff and API Architect at Dell Technologies. He is an advocate for User Centered Design and Developer Experience, helping Dell modernize its software development processes and engagement with external developers.
Wednesday February 12, 2025 2:00pm - 2:25pm PST
Dev Exec World
  Dev Exec World

2:00pm PST

OPEN Session: Say Goodbye to Toil: Automating Cluster Upgrades
Wednesday February 12, 2025 2:00pm - 2:25pm PST
OpsWorld
Ben Ryves, GetYourGuide, Staff Site Reliability Engineer
Maggie Slukova, GetYourGuide, Staff Site Reliability Engineer

How difficult is it to minimize the toil of cluster upgrades while increasing confidence in deploying the changes?

Even when managed, cluster upgrades are an unavoidable part of cluster maintenance, yet they can also be a source of toil, stress and outages; either when upgrading Kubernetes itself or additional cluster components. Manually testing changes in staging clusters, deploying with a high sense of uncertainty - these time consuming tasks can be mitigated with tests. Add nifty automation and cluster management efforts are reduced to a bare minimum.

Is investing in cluster tests and automation worth it? Yes! This talk shows how a team of three engineers keeps multiple clusters continuously up-to-date with minimal time investment, effort and disruptions. By leveraging the e2e-framework and Helm, everything from Istio to cluster autoscaler is tested and seamlessly managed.
Speakers
avatar for Ben Ryves

Ben Ryves

Staff Site Reliability Engineer, GetYourGuide
Ben works as an SRE at GetYourGuide, building automation and testing tooling to provision production Kubernetes clusters. His main focus is networking, security, and resource optimisation.
avatar for Maggie Slukova

Maggie Slukova

Staff Site Reliability Engineer, GetYourGuide
Maggie is a backend engineer turned SRE with a background in Mathematics. Her areas of focus are Kubernetes, Istio, cluster optimisation, autoscaling and automation. She loves building things, be it software, infrastructure, furniture or games.
Wednesday February 12, 2025 2:00pm - 2:25pm PST
OpsWorld
  OpsWorld
 
Thursday, February 13
 

10:00am PST

OPEN Session: Elevating Cloud Security with a Graph-based Approach
Thursday February 13, 2025 10:00am - 10:25am PST
OpsWorld
Roy Maor, Cisco, Algorithm Team Lead

It is evident that using a graph theory-based approach to reduce cyber security risk on the cloud is a need rather than a want. Having a reliable data model and a continuous mapping of your
cloud environment to a graph database yields value in two different aspects. First, visibility – gaining a deep understanding of the environment’s cloud architecture, and second, cloud risk
management – identifying critical attack paths in the environment and mitigating the risk they present. By finding the right connections between graph algorithms to cloud security
misconfigurations and vulnerabilities, gaining brand new visibility on faulty cloud architecture and turning it into high-value context-based risk insights becomes possible.
Speakers
avatar for Roy Maor

Roy Maor

Algorithm Team Lead, Cisco
Roy Maor is an Algorithm Team Leader at Panoptica, Cisco's cloud application security product. Roy’s team drives the development of the product's trademark cloud graph, a dynamic engine detecting cloud security threats through graph theory models and algorithms. Roy is deeply passionate... Read More →
Thursday February 13, 2025 10:00am - 10:25am PST
OpsWorld
  OpsWorld

10:30am PST

OPEN Session: Reducing Developer Toil: Agentic AI-driven Testing
Thursday February 13, 2025 10:30am - 10:55am PST
OpsWorld
Animesh Mishra, Diffblue, Senior Solutions Engineer

Developer toil is real — days, even weeks, are spent conducting manual, repetitive, time-gobbling tasks like unit testing. And while GenAI coding assistants can support developers, they repeatedly fall short in performing complex TestQA tasks without human oversight.

The problem is compounded by the shortage of experienced testers, leaving developers drowning in QA testing rather than writing and innovating application code. Reports show 75% of developers’ time is spent on tasks other than code generation, resulting in 57% of developers admitting to skipping unit tests entirely.

For companies to succeed, code must be fool proof. So how can developers ensure testing is comprehensive and done with due diligence — and at scale?

The answer lies in reinforcement learning-based autonomous AI, which can eliminate up to 95% of the time developers typically spend on test writing. In this session, you will learn how to eliminate developer toil by automating manual and tedious test operations at scale (both locally and in CI), how the right tools can autonomously write and maintain unit tests for entire Java code bases, and how to ensure your unit tests for complex code are comprehensive.

This talk is designed for dev leaders looking to push the boundaries of what’s possible in Test/QA with emerging AI technology.
Speakers
avatar for Animesh Mishra

Animesh Mishra

Senior Solutions Engineer, Diffblue
Animesh Mishra is a dynamic B2B Sales Engineer with a background in both engineering and sales. Animesh excels in understanding complex AI solutions and translating them into tangible business benefits for engineering teams. He's passionate about AI and its transformative impact on... Read More →
Thursday February 13, 2025 10:30am - 10:55am PST
OpsWorld
  OpsWorld

11:00am PST

OPEN Session: Unlocking AI-Powered DevOps Within Your Organization
Thursday February 13, 2025 11:00am - 11:25am PST
AI DevWorld OPEN Stage
Jon Peck, GitHub, Technical Advocate & Software Developer

Software development is a team sport, with many different roles, where eveyone can win. But success isn't guaranteed; it depends on specific practices, policies, and tools which enable minimally-siloed, AI-accelerated collaboration across all parts of the DevOps process, from PM to development to CI/CD and security.

Discover the patterns and tools which lead to success, methods for changing the status quo, and perhaps a few horror stories. We'll touch on innersourcing, cloud development, AI, automation, governance, security, scaling and more -- with actionable learnings for everyone from small maintainer communities to F500 Enterprises.
Speakers
avatar for Jon Peck

Jon Peck

Software Developer, GitHub
An Enterprise Advocate (and occasional manager) at GitHub, Jon Peck meets daily with maintainers, startups, and F500 executives to familiarize them with industry best practices, policy suggestions, and product capabilities across DevOps and AI. With 25+ years of experience as a fullstack... Read More →
Thursday February 13, 2025 11:00am - 11:25am PST
AI DevWorld OPEN Stage
  Dev Exec World

11:00am PST

OPEN SESSSION: History of Auth
Thursday February 13, 2025 11:00am - 11:25am PST
OpsWorld
Tony Blank, FusionAuth, Sr. Director of Developer Marketing

Join Tony Blank of FusionAuth on a captivating journey through the evolution of authentication—from ancient clay seals to modern biometrics. Blending history, tech milestones, and humor, this talk explores how humanity has secured identity and access across ages, offering insights for developers, entrepreneurs, and tech enthusiasts alike. 
Speakers
avatar for Tony Blank

Tony Blank

Sr. Director of Developer Marketing, FusionAuth
As the Sr. Director of Developer Marketing at FusionAuth, Tony Blank is deeply rooted in the developer ecosystem. He is a frequent speaker at industry events and has delivered hundreds of workshops, mentor sessions, and speaking engagements to help educate developers. His unique perspective... Read More →
Thursday February 13, 2025 11:00am - 11:25am PST
OpsWorld
  OpsWorld

1:00pm PST

OPEN Session: The Laws of UX & UI Design
Thursday February 13, 2025 1:00pm - 1:25pm PST
OpsWorld
Andrew Peterson, MESCIUS, Technical Engagement Engineer

This presentation focuses on UX and UI design, why they are important, and how to follow the industry's best practices. We will take a closer and more precise look at these best practices so you can create an app or website that will have an advantage over the competition. 
Speakers
avatar for Andrew Peterson

Andrew Peterson

Technical Engagement Engineer, MESCIUS
Andrew Peterson graduated from Utah University with a bachelor’s degree in Web Design and Development. Before joining MESCIUS as a Technical Engagement Engineer, Andrew worked his way up from a Technical Support Engineer to a Junior Software Engineer at Solcius. While studying web... Read More →
Thursday February 13, 2025 1:00pm - 1:25pm PST
OpsWorld
  OpsWorld

2:00pm PST

OPEN Session: Optimizing CI/CD pipelines for High Performance
Thursday February 13, 2025 2:00pm - 2:25pm PST
OpsWorld
Neha Surendranath, LinkedIn, Sr. Technical Program Manager

In this technical session, we will explore advanced strategies to enhance the efficiency and reliability of Continuous Integration and Continuous Deployment (CI/CD) pipelines. We will also discover how implementing GitOps workflows with Argo CD and Flux can automate deployments and ensure consistency across environments. We'll also delve into advanced deployment techniques such as canary and blue-green releases to minimize downtime and reduce risk. 
Speakers
avatar for Neha Surendranath

Neha Surendranath

Sr. Technical Program Manager, LinkedIn
I work as a Senior Program Manager at LinkedIn, where I lead the development and enhancement of key platform features that help millions of professionals connect and find job opportunities. My role is crucial as I oversee projects like the recent update to our job recommendation algorithm... Read More →
Thursday February 13, 2025 2:00pm - 2:25pm PST
OpsWorld
  OpsWorld
 
Tuesday, February 18
 

9:00am PST

[Virtual] PRO WORKSHOP: GitHub Actions: Make Them Work for You!
Tuesday February 18, 2025 9:00am - 9:50am PST
Virtual Dev Security World
Eleftherios Chrysochoidis, Chubb, Lead API Software Engineer

GitHub Actions offer robust and free CI/CD capabilities to streamline your development process. In this presentation, we'll dive into the core components of GitHub Actions and explore how they can be set to work for you by demonstrating various simple and advanced use cases!

GitHub Actions is an ideal tool for any project hosted on GitHub. It provides CI/CD features out of the box and is accessible to everyone without the need for extra infrastructure or setup. The declarative way of creating Actions makes their usage really easy, and its remarkable free layer provides sufficient limits even for big projects.

Especially for Open Source projects, where usually there is more than a single contributor, the need for CI/CD is huge. What will happen if you own an open source project and someone creates a Pull Request with really nice features but adds Security risks in the project (e.g. due to deprecated dependencies) or if they break some of the existing functionality? Would you be able to check all of them on your own? Maybe yes, but it would take much more time compared to having them all checked automatically by utilizing GitHub Actions.

Join me to explore how to make GitHub Actions run faster by utilizing caching mechanisms, build Reports for Testing, Coverage and Security issues and integrate them with any open Pull Request in the community, to have an automated evaluation of the suggested PR and get notifications for them.
Speakers
avatar for Eleftherios Chrysochoidis

Eleftherios Chrysochoidis

Lead API Software Engineer, Chubb
Experienced Lead Software Engineer with Passion for Community EngagementWith over six years of experience in software engineering, building and maintaining robust applications, Eleftherios (or simply Lefteris) gained a deep expertise in Java and Spring Boot technologies.His passion... Read More →
Tuesday February 18, 2025 9:00am - 9:50am PST
Virtual Dev Security World
  OpsWorld
 
Wednesday, February 19
 

10:00am PST

[Virtual] OPEN Session: Scaling Secure, Codeless Mobile App Development and Continuous Monitoring in CI/CD for DevOps Teams
Wednesday February 19, 2025 10:00am - 10:25am PST
VIRTUAL DeveloperWeek Main Stage
Karen Hsu, Appdome, SVP Mobile DevOps & Security Solutions

In the fast-paced world of DevOps, delivering secure, functional mobile apps quickly and efficiently is critical. This session is tailored for DevOps engineers and leaders looking to streamline mobile app development by incorporating code-less, secure app building, automated testing, and continuous monitoring into their CI/CD pipelines. Attendees will learn how to:
Integrate Secure Mobile App Builds Without Code or SDKs:

1. Automatically build critical security features such as encryption, fraud/malware/social engineering prevention, and threat detection directly into the mobile app, without writing any additional code or relying on third-party SDKs.
Automate Testing in CI/CD: Seamlessly integrate no-code security testing and scriptless functional testing into your CI/CD workflows. This ensures that each code push automatically triggers comprehensive testing, identifying any issues with secured apps before deployment—without requiring manual intervention.

2. Implement Continuous Threat Detection: Incorporate real-time threat detection for all your mobile apps. Then automate builds with protections against live attacks in your CI/CD pipeline. By closing the loop between security monitoring and app development, teams can ensure their apps are secure post-deployment and protected against evolving threats.

3. Optimize CI/CD Workflows for Faster Delivery: Implement a fully automated, end-to-end process that ensures every app build is secure, functional, and continuously monitored for potential threats. DevOps teams will learn how to accelerate their app delivery timelines without sacrificing security or performance, leveraging CI/CD tools like Jenkins, GitLab CI, and CircleCI, Bitrise and Azure DevOps.

This session will include a live demonstration showing how DevOps teams can integrate these capabilities into their existing CI/CD workflows, enabling faster, secure, and scalable mobile app delivery.
Speakers
avatar for Karen Hsu

Karen Hsu

SVP Mobile DevOps & Security Solutions, Appdome
Karen Hsu is SVP Mobile DevOps and Security Solutions at Appdome, focused on automating building and testing of secure apps in the DevOps pipeline. She co-founded BlockchainIntel to identify fraud in ACH, credit card and blockchain transactions, becoming part of Appdome to extend... Read More →
Wednesday February 19, 2025 10:00am - 10:25am PST
VIRTUAL DeveloperWeek Main Stage
  Dev Exec World

10:30am PST

[Virtual] OPEN Session: Radical Transparency for Software Teams
Wednesday February 19, 2025 10:30am - 10:55am PST
VIRTUAL OpsWorld
Gregory Lind, Buildly, CEO and Founder

Redefine team communication with radical transparency. Fostering a culture of openness, honesty, and positivity in your team, can create a work environment where everyone feels empowered to do their best work and grow both personally and professionally. This talk will give an overview to bringing radical transparency into your DevOps, software and product development processes. 
Speakers
avatar for Gregory Lind

Gregory Lind

CEO and Founder, Buildly
Author of "Radical Therapy for Software Teams", CEO of Buildly, and 20+ year career in Software, Open Source and Startups. Founder and CTO of four successful startups in 3 different countries. Worked with NGOs and Government agencies building open source grant management systems... Read More →
Wednesday February 19, 2025 10:30am - 10:55am PST
VIRTUAL OpsWorld
  Dev Exec World

1:00pm PST

[Virtual] OpenAPI Summit: Your Cheat Code for API Authorization
Wednesday February 19, 2025 1:00pm - 1:25pm PST
VIRTUAL Dev Exec World
Omri Gazitt, Aserto, Co-founder & CEO

Congrats, your org is all-in on microservices! But now you have hundreds (or thousands!) of APIs. Some power your customer-facing apps. Others are platform services that your front-end services consume. Still others are back-end services used by internal tools.

And ALL of them need to be authorized.

Not to mention, you need to be able to answer questions like “which users are authorized to invoke this endpoint?” and “which endpoints can this user invoke?”

Having each API “do its own thing” makes it all but impossible to wrangle this complexity. You need a cross-cutting solution to apply authorization rules consistently - either in the API code or at the API Gateway.

Enter Aserto: an open source cloud-native authorization service that does this, and more.

This talk provides hands-on learning for how to go from an OpenAPI spec to a fine-grained authorization model, ready to authorize your users, in just a few minutes.
Speakers
avatar for Omri Gazitt

Omri Gazitt

Co-founder & CEO, Aserto.com
Omri is the co-founder/CEO of Aserto.com, an authorization startup, and his 3rd entrepreneurial venture. He spent the majority of his 30-year career working on developer & infrastructure tech, most recently as the CPO of Puppet. Previously he was the VP & GM of HP's Cloud Native Platform... Read More →
Wednesday February 19, 2025 1:00pm - 1:25pm PST
VIRTUAL Dev Exec World
  Dev Exec World

1:30pm PST

[Virtual] OPEN Session: Stateful Workloads Made Easy: A Practical Demo of Live Migration
Wednesday February 19, 2025 1:30pm - 1:55pm PST
VIRTUAL Cloud Native World
Steven Fraser, CAST AI, Senior Solution Architect

Kubernetes works great for stateless applications, but stateful workloads like databases or long-running jobs pose a challenge. These applications rely on persistent data and can’t afford interruptions, making Kubernetes’ “ephemeral” approach risky. Downtime can lead to data loss, inconsistencies, and system failures.

That’s where live migration comes in, allowing stateful workloads to move between nodes without disruption. At Cast AI, we’ve developed Container Live Migration to automatically consolidate these workloads, ensuring continuous uptime, reducing resource fragmentation, and cutting costs. Join us to see how we’re making Kubernetes work for stateful applications in a practical demo.
Speakers
avatar for Steven Fraser

Steven Fraser

Senior Solution Architect, CAST AI
Senior Solution Architect
Wednesday February 19, 2025 1:30pm - 1:55pm PST
VIRTUAL Cloud Native World
  Cloud Native World

1:30pm PST

[Virtual] OPEN Session: Where Is the Love? Why Automated Regression Testing Isn’t Getting the Attention It Needs
Wednesday February 19, 2025 1:30pm - 1:55pm PST
VIRTUAL OpsWorld
Jens Wessling, Veracode, Chief Technology Officer

As software development continues to evolve at a rapid pace and new innovations bring a world of possibilities, one item is often left behind: automated regression testing. The truth is without it, organizations can forget about software quality, security, winning customers' trust or being agile.

Regression testing is an integral, non-negotiable part of the production software development process right from the very moment the first line of production code is written. Its impact goes beyond code correctness, influencing development velocity, reducing long-term maintenance costs and ensuring a smoother integration process during acquisitions. However, companies often scramble to retrofit regression testing into their legacy code, but in reality, less than 10% of these after-the-fact efforts ever pan out. It might be tempting to overlook the absence of solid regression testing in smaller companies, but here's the catch: the long-term costs of maintaining code without automated testing don't just stay put – they grow. It's not just a “nice to have” it’s a strategic investment to safeguard their current operations and for companies to position themselves for future growth, innovation and success.

In this Thought Leadership Session, Jens Wessling, CTO of Veracode, outlines the importance of automated regression testing, highlighting why both developers and the C-Suite should make it a priority from the outset and how to make it a core aspect of your team's ethos.
Speakers
avatar for Jens Wessling

Jens Wessling

Chief Technology Officer, Veracode
Jens Wessling is the Chief Technology Officer at Veracode. He leads the architecture vision for Veracode’s core capabilities around its proprietary data model and AI-powered remediation engine. With more than 25 years’ experience in software engineering and architecture, Jens... Read More →
Wednesday February 19, 2025 1:30pm - 1:55pm PST
VIRTUAL OpsWorld
  Dev Exec World

1:30pm PST

[Virtual] OpenAPI Summit: No AI without APIs
Wednesday February 19, 2025 1:30pm - 1:55pm PST
VIRTUAL Dev Exec World
Jeremy Snyder, Firetail, CEO

Application Programming Interfaces (APIs) and Artificial Intelligence (AI) are two of the most important developments in tech of the last 10 years. While AI has grabbed the majority of headlines lately, APIs are the unsung heroes, the “connective tissue” that ensures seamless integration across our digital lives. But how will the more recent emergence of AI affect API security, and how do APIs affect the security of AI? 
In this talk, we’ll explore these two hot topics that make our online worlds work. AI can be helpful to API security by allowing security teams to automate certain processes or make testing more efficient, but it can also be used to help malicious actors automate their attacks.

Speakers
avatar for Jeremy Snyder

Jeremy Snyder

CEO, FireTail
Jeremy is the founder and CEO of FireTail.io, an end-to-end API security startup. Prior to FireTail, Jeremy worked in M&A at Rapid7, a global cyber leader, where he worked on the acquisitions of 3 companies during the pandemic. Jeremy previously led sales at DivvyCloud, one of the... Read More →
Wednesday February 19, 2025 1:30pm - 1:55pm PST
VIRTUAL Dev Exec World
  Dev Exec World

2:00pm PST

[Virtual] OPEN Session: From DevEx Disaster to Delight: How to Champion a DevEx Revolution in Your Organization
Wednesday February 19, 2025 2:00pm - 2:25pm PST
Frontend World
Jeremy Meiss, DevEx Institute, Developer Experience & Community Leader

Is your team struggling with bugs, inefficient tools, and demoralizing processes? Do you often hear them expressing their frustration with the deployment process and the codebase? Don't worry, this talk is your ticket to transforming your organization's Developer Experience (DevEx) from a disaster zone to a developer utopia.

We'll delve into the what, why, and how of DevEx, exploring practical strategies that will empower you to make your developers' lives easier and more productive. We'll cover everything from tooling and automation to fostering a culture of collaboration and feedback. By the end of this talk, you'll be equipped with the knowledge and practical tips to become a DevEx champion in your organization.
Speakers
avatar for Jeremy Meiss

Jeremy Meiss

Developer Experience & Community Leader, DevEx Institute
Jeremy is a seasoned Developer Experience and Community leader, formerly the Director of DevRel & Community at CircleCI, and previously at Solace, Auth0, and XDA. With almost 30 years in Tech, covering just about every functional area including support, system and database administration... Read More →
Wednesday February 19, 2025 2:00pm - 2:25pm PST
Frontend World
  Dev Exec World

2:00pm PST

[Virtual] OpenAPI Summit: APIOps: Interface Development at Scale
Wednesday February 19, 2025 2:00pm - 2:25pm PST
VIRTUAL Dev Exec World
Erik Hansen, Dell Technologies, API Architect, Developer Platform Services

Sure, your product may deliver a REST API to customers, but what about all those interfaces that exist within your company - between microservices, for internal tooling, and from imported packages? API Operations (APIOps) enables a consistent process, for developing and sharing any type of software interface, within your company and for your customers – whether you have 2 or 200 teams.
In this talk, learn how Dell is implementing APIOps to:
- Increase development velocity - for the team producing a shared interface, and their consumers.
- Reduce complexity - through common developer tooling and processes.
- Promote Consistency - by automating validation and governance.
- Expand Visibility - across all types of interfaces: REST, gRPC, event-based, and others.
Speakers
avatar for Erik Hansen

Erik Hansen

API Architect, Developer Platform Services, Dell Technologies
Erik is a Distinguished Member Technical Staff and API Architect at Dell Technologies. He is an advocate for User Centered Design and Developer Experience, helping Dell modernize its software development processes and engagement with external developers.
Wednesday February 19, 2025 2:00pm - 2:25pm PST
VIRTUAL Dev Exec World
  Dev Exec World

2:00pm PST

[Virtual] OPEN Session: Say Goodbye to Toil: Automating Cluster Upgrades
Wednesday February 19, 2025 2:00pm - 2:25pm PST
OpsWorld
Ben Ryves, GetYourGuide, Staff Site Reliability Engineer
Maggie Slukova, GetYourGuide, Staff Site Reliability Engineer

How difficult is it to minimize the toil of cluster upgrades while increasing confidence in deploying the changes?

Even when managed, cluster upgrades are an unavoidable part of cluster maintenance, yet they can also be a source of toil, stress and outages; either when upgrading Kubernetes itself or additional cluster components. Manually testing changes in staging clusters, deploying with a high sense of uncertainty - these time consuming tasks can be mitigated with tests. Add nifty automation and cluster management efforts are reduced to a bare minimum.

Is investing in cluster tests and automation worth it? Yes! This talk shows how a team of three engineers keeps multiple clusters continuously up-to-date with minimal time investment, effort and disruptions. By leveraging the e2e-framework and Helm, everything from Istio to cluster autoscaler is tested and seamlessly managed.
Speakers
avatar for Ben Ryves

Ben Ryves

Staff Site Reliability Engineer, GetYourGuide
Ben works as an SRE at GetYourGuide, building automation and testing tooling to provision production Kubernetes clusters. His main focus is networking, security, and resource optimisation.
avatar for Maggie Slukova

Maggie Slukova

Staff Site Reliability Engineer, GetYourGuide
Maggie is a backend engineer turned SRE with a background in Mathematics. Her areas of focus are Kubernetes, Istio, cluster optimisation, autoscaling and automation. She loves building things, be it software, infrastructure, furniture or games.
Wednesday February 19, 2025 2:00pm - 2:25pm PST
OpsWorld
  OpsWorld
 
Thursday, February 20
 

10:00am PST

[Virtual] OPEN Session: Elevating Cloud Security with a Graph-based Approach
Thursday February 20, 2025 10:00am - 10:25am PST
VIRTUAL OpsWorld
Roy Maor, Cisco, Algorithm Team Lead

It is evident that using a graph theory-based approach to reduce cyber security risk on the cloud is a need rather than a want. Having a reliable data model and a continuous mapping of your
cloud environment to a graph database yields value in two different aspects. First, visibility – gaining a deep understanding of the environment’s cloud architecture, and second, cloud risk
management – identifying critical attack paths in the environment and mitigating the risk they present. By finding the right connections between graph algorithms to cloud security
misconfigurations and vulnerabilities, gaining brand new visibility on faulty cloud architecture and turning it into high-value context-based risk insights becomes possible.
Speakers
avatar for Roy Maor

Roy Maor

Algorithm Team Lead, Cisco
Roy Maor is an Algorithm Team Leader at Panoptica, Cisco's cloud application security product. Roy’s team drives the development of the product's trademark cloud graph, a dynamic engine detecting cloud security threats through graph theory models and algorithms. Roy is deeply passionate... Read More →
Thursday February 20, 2025 10:00am - 10:25am PST
VIRTUAL OpsWorld
  OpsWorld

10:30am PST

[Virtual] OPEN Session: Reducing Developer Toil: Agentic AI-driven Testing
Thursday February 20, 2025 10:30am - 10:55am PST
VIRTUAL OpsWorld
Animesh Mishra, Diffblue, Senior Solutions Engineer

Developer toil is real — days, even weeks, are spent conducting manual, repetitive, time-gobbling tasks like unit testing. And while GenAI coding assistants can support developers, they repeatedly fall short in performing complex TestQA tasks without human oversight.

The problem is compounded by the shortage of experienced testers, leaving developers drowning in QA testing rather than writing and innovating application code. Reports show 75% of developers’ time is spent on tasks other than code generation, resulting in 57% of developers admitting to skipping unit tests entirely.

For companies to succeed, code must be fool proof. So how can developers ensure testing is comprehensive and done with due diligence — and at scale?

The answer lies in reinforcement learning-based autonomous AI, which can eliminate up to 95% of the time developers typically spend on test writing. In this session, you will learn how to eliminate developer toil by automating manual and tedious test operations at scale (both locally and in CI), how the right tools can autonomously write and maintain unit tests for entire Java code bases, and how to ensure your unit tests for complex code are comprehensive.

This talk is designed for dev leaders looking to push the boundaries of what’s possible in Test/QA with emerging AI technology.
Speakers
avatar for Animesh Mishra

Animesh Mishra

Senior Solutions Engineer, Diffblue
Animesh Mishra is a dynamic B2B Sales Engineer with a background in both engineering and sales. Animesh excels in understanding complex AI solutions and translating them into tangible business benefits for engineering teams. He's passionate about AI and its transformative impact on... Read More →
Thursday February 20, 2025 10:30am - 10:55am PST
VIRTUAL OpsWorld
  OpsWorld

11:00am PST

[Virtual] OPEN SESSSION: History of Auth
Thursday February 20, 2025 11:00am - 11:25am PST
VIRTUAL OpsWorld
Tony Blank, FusionAuth, Sr. Director of Developer Marketing

Join Tony Blank of FusionAuth on a captivating journey through the evolution of authentication—from ancient clay seals to modern biometrics. Blending history, tech milestones, and humor, this talk explores how humanity has secured identity and access across ages, offering insights for developers, entrepreneurs, and tech enthusiasts alike. 
Speakers
avatar for Tony Blank

Tony Blank

Sr. Director of Developer Marketing, FusionAuth
As the Sr. Director of Developer Marketing at FusionAuth, Tony Blank is deeply rooted in the developer ecosystem. He is a frequent speaker at industry events and has delivered hundreds of workshops, mentor sessions, and speaking engagements to help educate developers. His unique perspective... Read More →
Thursday February 20, 2025 11:00am - 11:25am PST
VIRTUAL OpsWorld
  OpsWorld

1:00pm PST

[Virtual] OPEN Session: The Laws of UX & UI Design
Thursday February 20, 2025 1:00pm - 1:25pm PST
VIRTUAL OpsWorld
Andrew Peterson, MESCIUS, Technical Engagement Engineer

This presentation focuses on UX and UI design, why they are important, and how to follow the industry's best practices. We will take a closer and more precise look at these best practices so you can create an app or website that will have an advantage over the competition. 
Speakers
avatar for Andrew Peterson

Andrew Peterson

Technical Engagement Engineer, MESCIUS
Andrew Peterson graduated from Utah University with a bachelor’s degree in Web Design and Development. Before joining MESCIUS as a Technical Engagement Engineer, Andrew worked his way up from a Technical Support Engineer to a Junior Software Engineer at Solcius. While studying web... Read More →
Thursday February 20, 2025 1:00pm - 1:25pm PST
VIRTUAL OpsWorld
  OpsWorld
 
Share Modal

Share this link via

Or copy link

Filter sessions
Apply filters to sessions.
Monday, February 10
Tuesday, February 11
Wednesday, February 12
Thursday, February 13
Tuesday, February 18
Wednesday, February 19
Thursday, February 20
AI DevWorld Main Stage
AI DevWorld OPEN Stage
AI DevWorld Stage 1
Cloud Native World
Dev Exec World
Dev Innovation World Stage
Dev Security World
DeveloperWeek Main Stage
DeveloperWeek PRO STAGE
Expo Hall
Frontend World
OpsWorld
ProductWorld Main Stage
Roundtable Room
Santa Clara Convention Center - Lobby
Santa Clara Hyatt Regency Lobby
VIRTUAL AI DevWorld Main Stage
VIRTUAL AI DevWorld OPEN Stage
VIRTUAL AI DevWorld Stage 1
VIRTUAL Cloud Native World
VIRTUAL Dev Exec World
VIRTUAL Dev Innovation World
Virtual Dev Security World
VIRTUAL DeveloperWeek Main Stage
VIRTUAL Frontend World
VIRTUAL OpsWorld
VIRTUAL ProductWorld Main Stage
  • 1. Badge Pick-up & Registration
  • 2. Experiences & Official Events
  • 3. Expo Hours
  • 4. Hackathon
  • 5. KEYNOTES & FEATURED
  • AI DevWorld
  • Cloud Native World
  • Dev Exec World
  • Dev Innovation World
  • Dev Security World
  • Frontend World
  • OpsWorld
  • ProductWorld
  • Tracks & Topics
  • APIs & Microservices
  • Blockchain & Web3
  • Data Engineering
  • Dev Career
  • Developer Experience (DX)
  • Developer Tools
  • DevOps
  • Enterprise
  • Gen AI / LLMs
  • Platform Engineering
  • Technical Leadership & Management
  • Session Type
  • OPEN Session
  • PRO Session
  • PRO Workshop Day (Tues)
  • Conferences
  • AI & Organizational Change Management (AI DevWorld)
  • AI DevWorld
  • AI DevWorld: AI Strategy Conference
  • AI DevWorld: AI/ML Engineering Conference
  • AI DevWorld: Industry AI Conference
  • AI Ethics (AI DevWorld)
  • AI for the Enterprise (AI DevWorld)
  • AI Security & Governance & Compliance (AI DevWorld)
  • Applied AI Innovation (AI DevWorld)
  • Bots & Language Processing (AI DevWorld)
  • Cloud Native World
  • Dev Exec World
  • Dev Innovation World
  • Dev Security World
  • Finance/FinTech AI (AI DevWorld)
  • Frontend World
  • Generative AI & LLMs (AI DevWorld)
  • Methodology: Agile and Rapid Prototyping and SCRUM and Beyond (ProductWorld)
  • MLOps & AIOps (AI DevWorld)
  • OPEN Session
  • OpenAPI Summit
  • OpsWorld
  • OWASP Certified
  • Product Lead / Product Manager Roundtables (ProductWorld)
  • Product Lifecycle & Case Studies (ProductWorld)
  • Product Management Tools & Software (ProductWorld)
  • Product Roadmap Strategy & Innovation (ProductWorld)
  • Product Team Management & Structure (ProductWorld)
  • ProductWorld
  • Tensorflow & PyTorch & Open Source Frameworks (AI DevWorld)
  • Virtual
  • In-Person/Virtual
  • In Person
  • Virtual
  • Virtual Exclusive