when devops meets regulation integrating continuous with
play

when devops meets regulation: integrating 'continuous' with - PowerPoint PPT Presentation

Nov 17, 2022 •103 likes •426 views

when devops meets regulation: integrating 'continuous' with 'government' @jezhumble public domain slides courtesy @noahkunin, infrastructure director, 18F / GSA TTS what is continuous delivery? The ability to get changesfeatures, con fi

  1. when devops meets regulation: integrating 'continuous' with 'government' @jezhumble public domain slides courtesy @noahkunin, infrastructure director, 18F / GSA TTS

  3. what is continuous delivery? The ability to get changes—features, con fi guration changes, bug fi xes, experiments—into production or into the hands of users safely and quickly in a sustainable way.

  4. devops movement a cross-functional community of practice dedicated to the study of building, evolving and operating rapidly changing, secure, resilient systems at scale

  5. Let’s ship it!

  6. Or not.

  7. Shipping software isn’t rocket science

  8. Is the launch checklist working?

  9. The U.S. Government's Digital Launch Checklist

  10. Records Management Records Schedule Privacy Act Paperwork Reduction Act Section 508 and Accessibility Standards Federal Acquisition Regulation Anti-deficiency Act Economy Act E-Government Act Computer Matching Act National Cyber Protection System Guidance for Agency Use of Third-Party Websites and Applications Social Media and Web-Based Interactive Technologies Office of Management Budget Circular A-130 Appendix 3 Federal Information Security and Management Act Federal Information Processing Standard (FIPS) 199 Federal Information Processing Standard (FIPS) 200 Federal Information Processing Standard (FIPS) 140-2 Special Publication 800-37 Special Publication 800-53 Revision 4 Special Publication 800-60 Volume 1 Special Publication 800-60 Volume 2

  11. Special Publication 800-18 Special Publication 800-137 Special Publication 800-171 Special Publication 800-133 Special Publication 800-95 EINSTEIN Compliance FedRAMP OMB Guidance on third party websites and applications OMB Memo M-14-04 OMB Memo M-15-01 Trusted Internet Connection 2.o Reference Architecture Pages in total: 4006

  12. http://dx.doi.org/10.6028/NIST.SP.800-53r4

  13. http://dx.doi.org/10.6028/NIST.SP.800-53r4

  14. My friend, you can clearly see the intention of FIPS 140-2 Annex A was to deprecate SHA-1 on the lunar new year...

  15. http://dx.doi.org/10.6028/NIST.SP.800-53r4

  16. http://dx.doi.org/10.6028/NIST.SP.800-53r4

  17. http://dx.doi.org/10.6028/NIST.SP.800-53r4

  22. How long is this going to take?

  23. 6 - 14 months to ship

  25. Speed is the new security.

  26. Dev Ops

  27. Dev Ops PaaS IaaS

  30. what this gets you teams can deploy into a production-like environment from day 1 architectural paradigm designed for distributed systems push-button deployments most of the controls taken care of at the platform level templates for all your compliance documentation

Recommend

Continuous Load Testing for DevOps Presented by: Kevin

Continuous Load Testing for DevOps Presented by: Kevin

DT6 Integrating Testing into DevOps Thursday, November 8th, 2018 11:30 AM Continuous Load Testing for DevOps Presented by:

473 views • 33 slides
CONTINUOUS SECURITY CONTINUOUS SECURITY IN THE DEVOPS WORLD IN THE DEVOPS WORLD JULIEN VEHENT

CONTINUOUS SECURITY CONTINUOUS SECURITY IN THE DEVOPS WORLD IN THE DEVOPS WORLD JULIEN VEHENT

Continuous Security in DevOps https://jvehent.github.io/continuous-security-talk/?print-pdf#/ CONTINUOUS SECURITY CONTINUOUS SECURITY IN THE DEVOPS WORLD IN THE DEVOPS WORLD JULIEN VEHENT JULIEN VEHENT MOZILLA SECURITY MOZILLA SECURITY

724 views • 49 slides
SPE meets DevOps: best friends or consensual enemies? Catia Trubiani Gran Sasso Science

SPE meets DevOps: best friends or consensual enemies? Catia Trubiani Gran Sasso Science

Software Performance Engineering in the DevOps World September 26th 30th 2016, Schloss Dagstuhl, Germany SPE meets DevOps: best friends or consensual enemies? Catia Trubiani Gran Sasso Science Institute (GSSI) catia.trubiani@gssi.infn.it

553 views • 14 slides
Stabilizing Continuous Testing in DevOps Presented by:

Stabilizing Continuous Testing in DevOps Presented by:

W5 Continuous Testing Wednesday, October 23rd, 2019 11:30 AM Stabilizing Continuous Testing in DevOps Presented by: Eran

280 views • 16 slides
Shift Left: Continuous Performance Testing in the CI/CD Pipeline

Shift Left: Continuous Performance Testing in the CI/CD Pipeline

DT3 Integrating Testing into DevOps Thursday, November 8th, 2018 10:00 AM Shift Left: Continuous Performance Testing in the CI/CD

373 views • 22 slides
DevOps Meets Formal Modelling in High-Criticality Complex Systems Marta Olszewska, Marina Wald

DevOps Meets Formal Modelling in High-Criticality Complex Systems Marta Olszewska, Marina Wald

DevOps Meets Formal Modelling in High-Criticality Complex Systems Marta Olszewska, Marina Wald n 1 st International Workshop on Quality-Aware DevOps (QUDOS 2015) 1 st September 2015, Bergamo, Italy Roadmap Why? Motivation and goals

638 views • 31 slides
Stabilizing Continuous Testing in DevOps Presented by:

Stabilizing Continuous Testing in DevOps Presented by:

AT4 Agile and Continuous Testing Thursday, November 7th, 2019 10:00 AM Stabilizing Continuous Testing in DevOps Presented by:

378 views • 18 slides
The New Era of Integrated Software Delivery with DevOps Plan and Measure DevOps Sujatha (Suj)

The New Era of Integrated Software Delivery with DevOps Plan and Measure DevOps Sujatha (Suj)

The New Era of Integrated Software Delivery with DevOps Plan and Measure DevOps Sujatha (Suj) Perepa Monitor Continuous Develop innovation, and Optimize and Test feedback and Software IT Architect improvements Release and Deploy IBM

309 views • 19 slides
When devops meets security Michael Brunton-Spall I'm from the Government and I'm here to

When devops meets security Michael Brunton-Spall I'm from the Government and I'm here to

When devops meets security Michael Brunton-Spall I'm from the Government and I'm here to help I'm from security and I'm here to help Government Digital Service Simpler, Clearer, Faster The state of information security in 2015

844 views • 70 slides
Continuous Innovation through DevOps Pipelines Andreas Grabner: @grabnerandi,

Continuous Innovation through DevOps Pipelines Andreas Grabner: @grabnerandi,

Continuous Innovation through DevOps Pipelines Andreas Grabner: @grabnerandi, andreas.grabner@dynatrace.com Slides: http://www.slideshare.net/grabnerandi Podcast: https://www.spreaker.com/show/pureperformance The Story started in 2009

788 views • 63 slides
DevOps paul.persson@thecodingarchitect.se www.linkedin.com/in/thecodingarchitect Definition

DevOps paul.persson@thecodingarchitect.se www.linkedin.com/in/thecodingarchitect Definition

DevOps paul.persson@thecodingarchitect.se www.linkedin.com/in/thecodingarchitect Definition DevOps is the union of people, process, and products to enable continuous delivery of value to our end users. (Donovan Brown, Microsoft)

333 views • 19 slides
Intro to Continuous Delivery and DevOps From a testing perspective Lisa Crispin With material

Intro to Continuous Delivery and DevOps From a testing perspective Lisa Crispin With material

Intro to Continuous Delivery and DevOps From a testing perspective Lisa Crispin With material from Abby Bangser, Ashley Hunsberger, Lisi Hocke & more It takes a village @lisacrispin A little about me... Testing advocate with

769 views • 54 slides
Model-Driven Continuous Deployment for Quality DevOps D. A. Tamburri , E. Di Nitto, M. Guerriero,

Model-Driven Continuous Deployment for Quality DevOps D. A. Tamburri , E. Di Nitto, M. Guerriero,

Model-Driven Continuous Deployment for Quality DevOps D. A. Tamburri , E. Di Nitto, M. Guerriero, M. Artac , T. Borov s ak DICE Horizon 2020 Research & Innovation Action Grant Agreement no. 644869 Funded by the Horizon 2020

621 views • 25 slides
eSulabSolutions Integrating Automated Scalability

eSulabSolutions Integrating Automated Scalability

eSulabSolutions Integrating Automated Scalability Assessment into DevOps Alberto Avritzer et al. The Eighth International Workshop on Load Testing and Benchmarking of Software Systems (LTB 2020) Our

748 views • 31 slides
CONTINUOUS DEPLOYMENT AND DEVOPS D E P R E C A T I N G S I L O S JOSH DEVINS, NOKIA JAOO 2010

CONTINUOUS DEPLOYMENT AND DEVOPS D E P R E C A T I N G S I L O S JOSH DEVINS, NOKIA JAOO 2010

CONTINUOUS DEPLOYMENT AND DEVOPS D E P R E C A T I N G S I L O S JOSH DEVINS, NOKIA JAOO 2010 TOM SULSTON, THOUGHTWORKS RHUS, DENMARK Monday, October 4, 2010 1 WHO ARE WE AND WHERE ARE WE FROM? Josh Devins, Nokia Berlin Software

390 views • 37 slides
Orchestrating an OpenStack DevOps Cloud for R&D to Achieve Continuous Delivery Ting Zou &

Orchestrating an OpenStack DevOps Cloud for R&D to Achieve Continuous Delivery Ting Zou &

Orchestrating an OpenStack DevOps Cloud for R&D to Achieve Continuous Delivery Ting Zou & Tanay Nagjee November 7, 2013 Introductions Ting Zou Director, Cloud Computing R&D Data Center Huawei USA Tanay Nagjee Solutions

544 views • 50 slides
INFRASTRUCTURE AS CODE kief@thoughtworks.com Cloud Practice Lead (UK) DevOps, Continuous

INFRASTRUCTURE AS CODE kief@thoughtworks.com Cloud Practice Lead (UK) DevOps, Continuous

INFRASTRUCTURE AS CODE kief@thoughtworks.com Cloud Practice Lead (UK) DevOps, Continuous Delivery, Agile Ops Twitter: @kief Book: http://oreil.ly/1JKIBVe Site: http://infrastructure-as-code.com June 2016 AGENDA CONTEXT Motivations

979 views • 39 slides
Securing Serverless and Container Services Marc Schrter AWS DevOps Engineer @ globaldatanet

Securing Serverless and Container Services Marc Schrter AWS DevOps Engineer @ globaldatanet

Securing Serverless and Container Services Marc Schrter AWS DevOps Engineer @ globaldatanet Community Day 2019 Sponsors Serverless DevOps Automation Continuous Delivery Highly scalable and Infrastructure as Code fault-tolerant solutions

410 views • 40 slides
Integrating Quality of Service in Incentive Regulation experience from Norwegian electricity

Integrating Quality of Service in Incentive Regulation experience from Norwegian electricity

Integrating Quality of Service in Incentive Regulation experience from Norwegian electricity distribution Christian Growitsch Tooraj Jamasb 6th Infraday, Berlin 2007 0 agenda 1. Motivation and techno-economic background 2. Electricity

186 views • 15 slides
CLIF meets Jenkins Performance testing in continuous integration, and more... Bruno Dillenseger

CLIF meets Jenkins Performance testing in continuous integration, and more... Bruno Dillenseger

CLIF meets Jenkins Performance testing in continuous integration, and more... Bruno Dillenseger - Orange Labs CLIF is OW2's load testing framework project, featuring outstanding adaptation capabilities. Among its possible integrations (such as

154 views • 13 slides
DevOps & AWS Chris Econn Head of DevOps CorpInfo | AWS Premier Partner DevOps Bill of Rights

DevOps & AWS Chris Econn Head of DevOps CorpInfo | AWS Premier Partner DevOps Bill of Rights

DevOps & AWS Chris Econn Head of DevOps CorpInfo | AWS Premier Partner DevOps Bill of Rights How to use CI/CD to safeguard personal liberties within your organization LA AWS Users Meetup Group

614 views • 30 slides
Continuous Update Project Integrating cancer and NCD prevention Ricardo Uauy, MD, PhD Institute

Continuous Update Project Integrating cancer and NCD prevention Ricardo Uauy, MD, PhD Institute

Continuous Update Project Integrating cancer and NCD prevention Ricardo Uauy, MD, PhD Institute of Nutrition INTA University of Chile and London School of Hygiene and Tropical Medicine London UK UICC World Cancer Congress 28 August, 2012

613 views • 22 slides
Use of SAXS to study DNA regulation Titia Sixma t.sixma@nki.nl Integrating SAXS analysis into

Use of SAXS to study DNA regulation Titia Sixma t.sixma@nki.nl Integrating SAXS analysis into

Use of SAXS to study DNA regulation Titia Sixma t.sixma@nki.nl Integrating SAXS analysis into functional analysis DNA mismatch repair - MutS dimers/tetramers Resolving conformational states Ubiquitin conjugation - Activation of

847 views • 69 slides
conditions: The Feds declining balance sheet meets the LCR BPI-SIFMA Prudential Regulation

conditions: The Feds declining balance sheet meets the LCR BPI-SIFMA Prudential Regulation

Forces shaping money market conditions: The Feds declining balance sheet meets the LCR BPI-SIFMA Prudential Regulation Conference June 4, 2019 Simplified Fed Balance Sheet Demand and Supply of Reserves Growth in Fed Balance Sheet Current

213 views • 17 slides

More recommend