Slide 1

Slide 1 text

No content

Slide 2

Slide 2 text

Building a Service Delivery Infrastructure #GHC19

Slide 3

Slide 3 text

Paula Paul @paulapaultweets Slalom Build Distinguished Engineer Rosemary Wang @joatmon08 HashiCorp Developer Advocate 3 #GHC19

Slide 4

Slide 4 text

Building a Service Delivery Infrastructure Ecosystem #GHC19

Slide 5

Slide 5 text

5 What is it? #GHC19

Slide 6

Slide 6 text

services & applications business capability delivered in 6 #GHC19

Slide 7

Slide 7 text

services & applications business capability delivered in 7 #GHC19 delivered by business value delivered on infrastructure

Slide 8

Slide 8 text

Delivery Infrastructure Ecosystem 8 #GHC19

Slide 9

Slide 9 text

9 Given an identifier associated with a customer, When I call an API endpoint Then I should get the customer’s name. #GHC19 Deliver Me, "Hello Customer!"

Slide 10

Slide 10 text

10 Given an identifier associated with a customer, When I call an API endpoint Then I should get the customer’s name. #GHC19 Deliver Me, "Hello Customer!" I need to...

Slide 11

Slide 11 text

1 1 As a developer... #GHC19

Slide 12

Slide 12 text

I WANT TO BE PRODUCTIVE 12 #GHC19

Slide 13

Slide 13 text

13 As a ... I want ... So that … More / less detail Consider acceptance criteria #GHC19 Use Narratives to Describe Needs

Slide 14

Slide 14 text

14 As a developer I want to use CPU and memory resources So that I can deliver some business capability. #GHC19 Example: Core Compute

Slide 15

Slide 15 text

15 As a developer I want to securely manage my secrets So that I can mitigate exposure to passwords. #GHC19 Example: Secrets Management

Slide 16

Slide 16 text

16 #GHC19 CORE COMPUTE BUILD PIPELINES NETWORKING DATA PERSISTENCE WORKLOAD ORCHESTRATION OBSERVABILITY ARTIFACT REGISTRY EXTERNAL DEPENDENCIES (SAAS/DC) IDENTITY & ACCESS SECRETS MANAGEMENT VULNERABILITY MANAGEMENT Ecosystem Products and Journeys

Slide 17

Slide 17 text

17 #GHC19 CORE COMPUTE BUILD PIPELINES NETWORKING DATA PERSISTENCE WORKLOAD ORCHESTRATION OBSERVABILITY ARTIFACT REGISTRY EXTERNAL DEPENDENCIES (SAAS/DC) IDENTITY & ACCESS SECRETS MANAGEMENT VULNERABILITY MANAGEMENT Ecosystem Products and Journeys PATH TO PRODUCTION (“Hello Customer” P2P) PATH TO REPAIR (“Hello Customer” P2R) PATH TO COMPLIANCE (“Hello Customer” P2C)

Slide 18

Slide 18 text

1 8 As an infrastructure engineer... #GHC19

Slide 19

Slide 19 text

I WANT TO RECLAIM MY NIGHTS & WEEKENDS 19 #GHC19

Slide 20

Slide 20 text

20 Neither! Learn infrastructure-as-code End goal: quickly deliver "Hello, Customer!" #GHC19 "Expert Developer" or "Hero Operator"?

Slide 21

Slide 21 text

21 As a developer / infrastructure engineer I want to deliver my service / infrastructure in an automated way So that it is secure, compliant, and ready for my customer. #GHC19 Example: Deployment Pipeline

Slide 22

Slide 22 text

22 #GHC19 Infrastructure Deployment Pipeline UNIT Check configurations Example: terraform plan BUILD Automation Example: terraform apply TEST Check integrations Example: pytest,inspec- gcp, awspec SECURE Check security conformance Example: scout2, g- scout MONITOR Check monitoring exists Example: pytest PERFORM Check performance Example: locust, pumba PROMOTE Ready for next environment Conformance Tests, can run asynchronously

Slide 23

Slide 23 text

2 3 As an architect... #GHC19

Slide 24

Slide 24 text

I WANT TO CHAMPION THE ARCHITECTURE "-ILITIES" 24 #GHC19

Slide 25

Slide 25 text

25 security 0 high vulnerabilities resiliency less than 1% error rate for new deployment auditability less than 90 days since last audit #GHC19 https://www.thoughtworks.com/insights/blog/fitness-function-driven-development Architecture Fitness Functions

Slide 26

Slide 26 text

services & applications business capability delivered in 26 #GHC19 delivered by business value delivered on infrastructure

Slide 27

Slide 27 text

2 7 As a CxO... #GHC19

Slide 28

Slide 28 text

28 #GHC19 A Balancing Act Evolvability Vendor Lock-In Build vs. Buy Autonomy Cost Fixed vs. On- Demand Capacity Compliance Complexity Vendor Management Global vs. Regional

Slide 29

Slide 29 text

29 Mean Time to Recovery Deployment Failure Rate Deployment Frequency Lead Deployment Time The 4 Horsemen of the DevOp-ocalypse

Slide 30

Slide 30 text

3 0 Where do we start? #GHC19

Slide 31

Slide 31 text

Team Structure? 31 #GHC19 As an organization... Capabilities Development? Executive Buy-In? Known Journey?

Slide 32

Slide 32 text

32 #GHC19 As an individual... remember your customer experiment read examples re-purpose join/ build a community

Slide 33

Slide 33 text

Please remember to complete the session survey in the mobile app. THANK YOU YOU CAN FOLLOW US@ #GHC19 Paula Paul [email protected] @paulapaultweets Rosemary Wang [email protected] @joatmon08