PowerPoint Presentation

June 21, 2016AWS Talk: DevOpsLeo Zhadanovsky, Principal SA, AWSJack Nichols, Sr. Technical Program Manager, Interactive IntelligenceJustin Lundy, Founder & CTO, Evident.io

2016, Amazon Web Services, Inc. or its Affiliates. All rights reserved.

Jack Nichols, Product & Program ManagementJune 21, 2016Getting Out of OperationsA Personal DevOps Story

2016, Amazon Web Services, Inc. or its Affiliates. All rights reserved.

2

Travel back with me.. to 2003

1.) Etrade. First Dot Com trading, founded on technology.... Mention the Monkey for fun.2.) Everything was physical.3.) In the past we actually had pagers for pager duty!4.) NOC managing over 5000 servers and over 1000 network work infrastructure devices3

12

24

35Hours to update the websiteHours to change network passwordPeople in Operations40.530

1.) Ask people to guess the numbers...2.) Talk about the path of Operations to start scripting the basic operational tasks...- Network using Linux, Perl, Net-Telnet-Cisco, Net-SNMP to automate tasks and infromation- ET Unix Command infrastrcture- Ability to batch script Website Update3.) Guess the new numbers4.) People where not fired, the moved to other department opportunities.4

1AUTOMATION

What did I learn? Automation is a key pillar to expanding your operations.5

Moving forward. to 2008

1.) Brightpoint. Global Cell Logistics Company.... 43 offices in 26+ countries...Purchased by Ingram2.) VMWare and Virtualization of Physical Servers was all the Rage3.) The middle of the global recession. Less money for updating4.) Asked to manage a large widespread global infrastructure footprint, but with less than half of the resources as E*TRADE!

6

What did we learn.

1.) Standardize Models and Proccesses2.) Create tools to pump out the standard models quickly.3.) Leverage off the Shelf Mgmt & automation tools7

2INFRASTRUCTURE

Standardizing and virtualizing your infrastructure is another key pillar to improving your flexibility and expanding your automation8

Moving on to 2011

1.) Joined interactive and got to put the Infrastructure and Automation pieces together2.) Supporting Interactives first generation cloud contact as a service CaaS in 10 DCs around the world (really what we would consider hosted now). 3.) My first real view into exponential growth, infrastructure grew from 1500 nodes to over 5000 in 3 years4.) Added strong Asset and Service Management Tools into the mix of automation... But it was challenge.... Things failed... Patching 5000 nodes to meet compliance it time consuming and impacting9

And then.. in 2014

10

We dont know.

We dont care.

We dont name serversWe dont patch serversWe dont fix servers

When we moved to EC2 with a fully virtualized infrastructure old operational questions such as..

How many servers do we have? How many Failures? What the MTBF?

Became...

The best way I can explain this is......

11

UsersCallsActionsCustomerReportUIScriptsUsersUIActionsCustomerCalls

Report

Monolithic Architecture

Microservices Architecture

12

3APPLICATION

13

APPLICATIONINFRASTRUCTUREAUTOMATION

Everything has come together now.14

Today this allows us

200Code deployments daily

8

3300Amazon EC2 instances around the worldDevOps team members

Ok so can you guess what these numbers are this time?

Funny Note.. I had to goto finance to get the Amazon EC2 instances!15

Where are you?

Where are you in your Devops Story?16

Gratuitous self-promotion slide

jacknichols3

@jacknichols3

17

Weekly new AMIs..... patching, security, etc..Updating everything so often continuous deployment200 deployments a day, 10 to production.Jenkins - Opworks Asguard - Bricks homegrown for stateful clustered servicesChef / Puppet / Ansible

Backup technical data18

Immunible ArchitectureA & B TestingASG ScalingPagerDutyVictorOpsStatusPage.IOService CloudNew Relic & Sumo LogicGrand CentralPureCloudTake Advantage of the Cloud App/Services

Backup technical data19

Thank you!

Justin Lundy, Founder & CTO, Evident.ioJune 21, 2016DevSecOps by the NumbersHow to Innovate Faster and More Securely than the Competition

2016, Amazon Web Services, Inc. or its Affiliates. All rights reserved.

Gartner DevOps stats- By 2016, DevOps evolves into a mainstream strategy leveraged by 25% of the global

80% of Evident customers fall in this group

Source: Gartner

-Based on what Evident sees in 2016, Gartners estimate from 2015 is low

RightScale survey DevOps stats- DevOps adoption increased to 74% in 2016- Enterprises adopting DevOps from the bottom up: Adoption is by- 29% - Projects or teams- 31% - Business units or divisions- 21% - Company wide

Source: RightScale

- Evident customers adopt DevOps out of necessity: Rapid time-to-market, speeding up innovation, competitive pressures

Puppet DevOps survey agility stats- 30x more frequent production deployments- 200x faster production deployment lead time

Source: Puppet

- Evident customers do deployments monthly, weekly, daily, and sometimes multiple deployments per day

Puppet DevOps survey reliability stats- 60x higher change success rate for prod deployments-166x faster mean time to restore service

Source: Puppet

- Evident customers operate more reliably on AWS due to DevOps culture and technology adoption

Puppet DevOps survey performance stats- 2x more likely to exceed productivity, market share, and profitability goals- 50% higher market capitalization growth over three years

Source: Puppet

- Three Evident employees, prior to founding Evident, grew Adobes Creative Cloud line of business to $1.8B revenue in 18 months leveraging DevOps

Traditional Ops team vs. DevOps team statsTraditional Ops are 41% more time-consumingTraditional Ops spends avg 7.2 hrs weekly communicatingDevOps spends 33% more time on infrastructure improvementsDevOps spends 60% less time handling support cases

Source: Upguard

Benefits of adopting DevOps culture stats- 63% experience quality improvement- 64% release new software more frequently- 55% see improved cooperation and collaboration- 38% report higher quality code

Source: Upguard

- DevOps is a force multiplier. Arm your teams to be more effective.

Federal DevOps and migrations to the cloud66% of federal IT managers believe their agencies need to move to the cloud faster to meet mission and fundamental needsSource: MeriTalkDevOps can help federal agencies deliver new/modern solutions up to 30x faster, with 50% fewer failures, and with happier customersSource: InfoWorld- DHS, CIS, and NASA are great examples

Evident Security Platform overview- How to leading organizations migrate to the cloud faster and more securely than the competition? The Evident Security Platform.

- Evident provides continuous monitoring and assessment of AWS services across all of a customers AWS accounts and regions to identify potentially exploitable vulnerabilities and facilitate rapid remediation while integrating into DevOps workflows

Evident - continuous monitoring and self assessment- Use ESP as a continuous monitoring and self assessment security tool during the development phase for your application or service

- Advanced customers integrate ESP into their DevOps continuous integration lifecycle

Evident - address risks before (and in) production- Developers can quickly identify potential vulnerabilities early in the development cycle and not wait until test or production phase to address them

- Harden security baselines in development before promoting to test and production environments where sensitive data is more likely to be present

Evident - preparing for Certification & Accreditation (C&A)- Continue to use ESP for self-scans as you prepare for Certification and Accreditation

- As development continues, so does assessment, enabling incremental adjustments to streamline efforts

Evident streamlining Body of Evidence collection- As part of the Body of Evidence, provide copies of ESP report on AWS infrastructure security configurations to the C&A team

- Advanced customers automate the collection and integration of this data into their products via our APIs

Evident - guided remediation for rapid response- Guided remediation for your DevOps and Security teams to quickly fix vulnerabilities and respond to compliance incidents where compliance violations have occurred

- Advanced customers leverage ESP APIs to auto-remediate vulnerabilities based on organizational policies.

Check us out- https://evident.io/

Thank you!