The DevSecOps Talks Podcast

By Mattias Hemmingsson, Julien Bisconti and Andrey Devyatkin

This is the show by and for DevSecOps practitioners who are trying to survive information overload, get through marketing nonsense, do the right technology bets, help their organizations to deliver va... more

· Technology

4

33 ratings

Download on the App Store

Download on the App Store

Get it on Google Play

FAQs about The DevSecOps Talks Podcast:

How many episodes does The DevSecOps Talks Podcast have?

The podcast currently has 79 episodes available.

The DevSecOps Talks Podcast episodes:

November 23, 2020 DEVSECOPS Talks #19-2020 - Deleting Resources In The Cloud
How to decommission resources from your cloud environment to keep it clean?
What to do when a resource is created without being in the infrastructure code?
Andrey is going through a checklist he uses to delete resources and the utility serverless functions he wrote.
ArgoCD is a project that does GitOps and automatically delete resources in Kubernetes namespaces if they are not defined.
We talked about the different layers of abstraction for infrastructure as code and where it makes sense to have a terraform controller in a Kubernetes cluster to manage the application dependencies.
Visit https://devsecops.fm to see show notes and https://gitter.im/devsecopstalks/community to join a discussion
...more
32min
October 26, 2020 DEVSECOPS Talks #18-2020 - HashiConf Special
Initially, we planned this episode as a discussion about HashiCorp Nomad and invited Jacob Lärfors. He recently published a great article about his experience working with Nomad (see link in the show notes). However, because of a few postponements, and with HashiConf that happened just a week ago, we decided to extend the podcast’s scope to go over all of the announcements that they did during the conference. So here it is - HashiConf special: all you need to know about everything that HashiCorp announced during the conference plus a discussion about Nomad!
Visit https://devsecops.fm to see show notes and https://gitter.im/devsecopstalks/community to join a discussion
...more
50min
October 13, 2020DEVSECOPS Talks #17-2020 - Best Practices for Building Docker Images
This is the first episode in the new format - 30 minutes short and crisp episodes, i.e., less water and side discussions, focusing on the topic, duration under (well, almost under) 30 minutes. We hope you like it!

The topic of this episode is building docker images - automation, security, best practices.

In this episode, we discuss:
Saving money with T3a family
Building Docker images locally and in CI
Setting up deamonless Docker builds for CI and k8s
Using multistage builds to keep your images nice and clean as well as encapsulate the build environment and make it portable
Passing secrets to Docker build and inspecting image layers for secrets (ssh-agent and many more)
Keeping Docker images updated with dependencies and updates
Scanning Docker images for vulnerabilities
Docker image layers caching - doing it right
DockerHub is to delete old images stored for free, and GitHub is ready to host them for you
Docker image naming so you can find all you need to debug quickly

In some of the information overlaps with episode #3 but greatly extends information provided before https://devsecops.fm/episodes/docker-secure-build/

Visit https://devsecops.fm to see show notes and https://gitter.im/devsecopstalks/community to join a discussion
...more
34min
September 29, 2020 DEVSECOPS Talks #16-2020 - Do you need a staging environment?
In this episode, we discuss options for splitting your deployment stages.
We hear people coming up with all possible type of environments - dev, test/QA, integration, stage, prod, etc
How many do you actually need? What is the reason for having all those stages?
Maybe do you need less? Why not deploy directly to production using some fancy technique?
Put it simply - stage or not to stage?

Visit https://devsecops.fm to see show notes and https://gitter.im/devsecopstalks/community to join a discussion
...more
50min
September 17, 2020 DEVSECOPS Talks #15-2020 - Remote Work Security
Let's talk about security in the era of remote work. Most of us have experienced a flaky VPN connection.
What are the alternatives? SSH certificates? Yubikey?
We discussed various topics around security inside a cluster and outside.

Visit https://devsecops.fm to see show notes and https://gitter.im/devsecopstalks/community to join a discussion
...more
51min
August 31, 2020 DEVSECOPS Talks #14-2020 - Theory of constraint
This time, we are joined by Henrik Høegh who shares his unique perspective on applying the theory of constraint to IT transformation as well as how it applies in the world of Cloud Native. We go back to the origin of DevOps, discussing the various problems companies are facing when transforming their organizations and adopting cultural changes.

Visit https://devsecops.fm to see show notes and https://gitter.im/devsecopstalks/community to join a discussion
...more
1h
August 18, 2020 DEVSECOPS Talks #13-2020 - All you need to know about setting up HashiCorp Vault
Mattias wants to setup HashiCorp Vault and quizzes Andrey how to do that.
We cover a lot of ground - from basic Vault concepts to setting it up and hardening.
...more
53min
August 03, 2020 DEVSECOPS Talks #12-2020 - Scale and Scaling
Julien and Andrey got together to define the scale and ways to automate the scaling of your infrastructure in response to changes in load patterns.
What are the prerequisites implementing scaling? What is cooling down, warm up, horizontal and vertical scaling, scale-up, and scale in? What are the metrics that could be useful for making scaling decisions?
And last but not least, the very unexpected spin that Julien gives to the conversation.

Visit https://devsecops.fm to see show notes and https://gitter.im/devsecopstalks/community to join a discussion
...more
55min
July 10, 2020 DEVSECOPS Talks #11-2020 - AWS Security Maturity Roadmap 2020
This time we are discussing the white paper by Summit Route - AWS Security Maturity Roadmap 2020. Tune in to learn more about the white paper and recommendations that we pile up on top of it.
To view show notes visit https://devsecops.fm
Chat with hosts and suggest topics for upcoming episodes at our Gitter channel https://gitter.im/devsecopstalks/community
...more
57min
June 26, 2020 DEVSECOPS Talks #10-2020 - Are we wrong about Terragrunt?
Our guest speaker is Anton Babenko
he is DevSecOps Talks podcast fan, AWS Community Hero, Terraform fanatic, HashiCorp Ambassador and a prolific open source contributor.
After listening to episode #9 Terraform in CI and #1 Infrastructure as code,
Anton decided that enough is enough and volunteered to give his point of view on Terragrunt since he though that we are missing a few important points.
In this episode, we are discussing the use cases of Terragrunt,
a wrapper around Terraform for working with multiple environment and modules.
...more
53min

FAQs about The DevSecOps Talks Podcast:

How many episodes does The DevSecOps Talks Podcast have?

The podcast currently has 79 episodes available.

More shows like The DevSecOps Talks Podcast

Security Now (Audio) by TWiT

Security Now (Audio)

1,965 Listeners

Hanselminutes with Scott Hanselman by Scott Hanselman

Hanselminutes with Scott Hanselman

377 Listeners

SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast) by Johannes B. Ullrich

SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)

629 Listeners

The Changelog: Software Development, Open Source by Changelog Media

The Changelog: Software Development, Open Source

285 Listeners

The Cloudcast by Massive Studios

The Cloudcast

153 Listeners

The New Stack Podcast by The New Stack

The New Stack Podcast

32 Listeners

Software Engineering Daily by Software Engineering Daily

Software Engineering Daily

628 Listeners

AWS Podcast by Amazon Web Services

AWS Podcast

201 Listeners

The Secure Developer by Snyk

The Secure Developer

21 Listeners

Data Engineering Podcast by Tobias Macey

Data Engineering Podcast

141 Listeners

Kubernetes Podcast from Google by Abdel Sghiouar, Kaslin Fields

Kubernetes Podcast from Google

180 Listeners

Cloud Security Podcast by Cloud Security Podcast Team

Cloud Security Podcast

55 Listeners

The Real Python Podcast by Real Python

The Real Python Podcast

137 Listeners

All-In with Chamath, Jason, Sacks & Friedberg by All-In Podcast, LLC

All-In with Chamath, Jason, Sacks & Friedberg

8,771 Listeners

Relating to DevSecOps by Ken Toler and Mike McCabe

Relating to DevSecOps

8 Listeners