How organizations get hacked in the cloud & How to fail Enterprise SRE adoption

Two exciting topics, two very experienced speakers and much networking opportunity. We are very much looking forward to the next DevOps Meetup Zurich. Here's what's planned for the evening:

17:30 - 18:00 - Arrival and first drinks
18:00 - 18:45 - How organizations are getting hacked in the cloud, and quick wins to improve your security posture
18:45 - 19:30 - How to fail your Enterprise SRE adoption
19:30 - 20:30 - Networking, Open Space & More drinks

How organizations are getting hacked in the cloud, and quick wins to improve your security posture by Christophe Tafani-Dereeper
Cloud adoption is rising, in particular in Switzerland where AWS opened their first region last November. Cloud environments bring new challenges to secure identities, data and infrastructure - but security is first and foremost a matter of prioritization. Without knowing the actual threats you face, you can't efficiently direct your security investments.

In this talk, we'll demonstrate the most common ways companies are getting hacked on AWS and showcase real-world documented data breaches from recent years. We'll then discuss the best ways to protect against them—in particular, setting up secure defaults and ensuring that engineers can ship secure infrastructure without sacrificing speed. Through the process, we'll show that security best practices often align with DevOps ones, and that operational excellence typically leads to more secure cloud environments.

You'll leave this talk with actionable insights on what's critical to get right from the start, a practical overview of the open source tools you can use, and a shortlist of high-value security quick wins you can take to your AWS environment right away.

Christophe Tafani-Dereeper
Christophe lives in Switzerland and works on open source and cloud security at Datadog. He's passionate about cloud-native technologies, information security, and especially the intersection of both. He previously worked as a software developer, penetration tester and cloud security engineer, and is the maintainer of several open-source projects.

How to fail your Enterprise SRE adoption by Riccardo Carlesso
Learn about the challenges of adopting site reliability engineering (SRE) in enterprises, and how we recommend cloud customers go about this journey

• Adoption of SRE best practices by cloud customers through evaluating their existing environment and architecture
• Identify how SRE guiding principles fit into a cloud customers existing organization (e.g. how to embrace risk)
• Adapt SRE practices for cloud customers existing team structure and knowledge

Nurture a successful SRE initiative outside of Google

Riccardo Carlesso
Developer Advocate at Google Cloud.
Former network administrator, sysadmin, and Ruby on Rails developer, Riccardo has been in operations for 20+ years and still likes to spend time coding (better if Ruby). He loves engaging with customers and help them run their operations reliably and successfully in the cloud.

Many thanks to our sponsors:

• Catering Sponsor: DevOpsDays Zürich https://www.devopsdays.ch/
• Location Sponsor: Digicomp https://www.digicomp.ch/