Accelerating Innovation at Visa. And OpenStack Security and project Bandit!

Hello all - we've a couple of GREAT topics for the November OpenStack Meetup!!!

THANKS to Visa for co-sponsoring! Suresh Thumma of Visa will join us and talk about empowering developers at Visa to innovate faster by enabling them to develop business applications and services at speed with focus on self-service and integrated software development life cycle.

Visa Cloud platform provides an automated application deployment pipeline by abstracting most of the complexities that are associated with hosting and managing cloud-based applications. As an application developer, you can focus on developing your application without having to manage the infrastructure that is required to host it.The features and capabilities that will be enabled through the cloud platform are:

• Out of the box services that will enable development of applications

• Elasticity and Continuous availability

• Rich set of APIs for integration with developer toolsets

• Continuous Integration and Delivery.

The platform is based on Cloud Foundry integrated with OpenStack on Open Compute to provide an inter-operable platform that enables application development and portability across traditional bare metal, virtual machines and containers. The platform provides developers language run times such as Java, Ruby and python and middle ware services for the applications to use.

Suresh Thumma, Vice President responsible for Infrastructure automation and Cloud Platform Development. Suresh Joined Visa in July 2015. Prior to Visa he was with Goldman Sachs responsible for building various Infrastructure provisioning platforms empowering development teams to model and deploy applications in the private Cloud Platform.

++++++++++++++++++++++++++++++++++++++++++++

Topic 2: with Charles Neill of RackSpace: OpenStack is one of the largest open-source communities in the world, with millions of lines of code and thousands of contributors. With all that code zooming around, it's critical to ensure that security best practices are applied across the board.

The OpenStack Security Project (OSSP) tries to tackle this challenge with a number of activities. They write advisories and OpenStack Security Notes to call out potential vulnerabilities, provide triaging for reported bugs via the Vulnerability Management Team (VMT), and create tools to be used by all OpenStack projects to improve their security.

One key project, Bandit, is OpenStack's open-source static analysis tool for Python. As of this writing, 9 projects have Bandit jobs set up, and Keystone is running it as a gating job for their project. You can learn more about it here: https://wiki.openstack.org/wiki/Security/Projects/Bandit

Charles is a Security Developer at Rackspace, where he does application security modeling & testing for products developed in-house, as well as OpenStack projects and other third-party products. His team is currently working on a number of OpenStack security initiatives such as the Syntribos and Bandit projects. He is a leader of the OWASP San Antonio chapter, and a member of the OpenStack Security Project.

Reminders:

• LOCATION - Rackspace Austin - 9001 North IH35 (east side frontage road) #150, Austin, TX 78753

• NOTE: Rackspace security requires you provide a government issued ID in order to gain access to the facility. we recommend you arrive ~ 6:00 - 6:15pm.

• There will be light dinner courtesy of Visa ~ 6:15pm - with networking time till about 6:45pm - we will kick off the speaking sessions ~ 6:45pm.