Welcome to the world of abstraction layers. As a project initiated by Google, Kubernetes transitioned from just another new container project to a solution that is being used and trusted by many companies and professionals across the globe. This talk is for Kubernetes beginners. It doesn’t matter if this project is new for you or if you just got started but still struggle to understand the basic concepts of Kubernetes. We will look at the origins of this tool to get an idea of why the demand for container orchestration tools is that high. After that, I will introduce you to some key concepts, mainly referred to as abstraction layers. The talk will be wrapped up by a real-world example, showcasing a fictional online shop using Kubernetes to host its entire IT workload.

In this session, you will learn more about the native container services available in AWS.
The session will be a guided tour of an imaginary company that is just starting out and how it used App Runner to kickstart its online presence. Of course, they were a huge success and as their business continues to grow, they continue to evolve and grow.
They decide to use Amazon ECS and AWS Fargate to help them succeed to achieve their goals, growing the business, and becoming the hottest new startup on the block.

Dev containers help onboard team members to our projects faster and more conveniently by automating reproducible developer environments. They lower the barrier to open-source contributions. We can combine them with GitHub Codespaces to set up secure environments allowing open-source maintainers to inspect community contributions in isolation and enterprise developers to use our preferred tools in an isolated environment. Any software team whether in enterprise or open source can benefit enormously from dev containers and GitHub Codespaces.

A key element of successfully integrating security into the DevOps lifecycle is embedding it right from the start. Helping developers and operators build security controls in from day one with easy-to-use open source tooling can make that a reality. This workshop will take a hands-on approach to demonstrate how to install, configure and customize open-source security tools to be used throughout the DevOps process. The workshop will focus on a couple of core tools. Firstly understanding how Trivy can be used to help secure container images, Dockerfiles, Kubernetes manifests, and IaC code such as Terraform. Then the workshop will move on to operationalizing security controls using Starboard to automate the operation of Trivy and other security tools, providing continuous security assurance of workloads and Kubernetes clusters.

Gall's law says that all working complex systems evolved from simpler systems that also worked. Containers and, in the following more significant step, Kubernetes, apply this law, growing sometimes complex systems over time. Yet, there are realistic chances of failing this evolution. So in this talk, I will share our lessons learned from many projects with different customers and industries and how we overcome over-engineering and manage technical debts. We will dig down on the natural appearing steps from container to container orchestration, how to take on uncertainties, tell you how you will fail for sure, and give you helpful tools and techniques on your hand to be successful.