SlideShare a Scribd company logo

Achieving DevSecOps Outcomes with Tanzu Advanced- May 25, 2021

Download as PPTX, PDF
VMware Tanzu
VMware Tanzu

Achieving DevSecOps Outcomes with Tanzu Advanced Speakers: David Zendzian, Global Field CISCO, VMware Tanzu James Urquhart, Strategic Executive Advisor, VMware Tanzu Mike Koleno, Chief Architect, AHEAD

Software
1 of 27
Confidential │ ©2020 VMware, Inc. Achieving DevSecOps Outcomes with Tanzu Advanced David M. Zendzian (dmz) Global Field CISO, VMware Tanzu James Urquhart Strategic Executive Advisor VMware Tanzu Mike Koleno Chief Architect AHEAD
Confidential │ ©2020 VMware, Inc. 2 Build or Acquire Software and the Hardware Required to Run It The Traditional Role of IT Applications Infrastructure
Confidential │ ©2020 VMware, Inc. 3 Deliver better software to production, faster Structured Around Critical Capabilities Applications Infrastructure DEVELOPER EXPERIENCE OPERATOR EXPERIENCE Code and containerize custom applications Reduce risk with curated build packs and services Automate deployment of apps into production Enable developer self- service with K8s across clouds, clusters and teams Apply enterprise observability to drive decisions and reduce risk Ensure secure and reliable communication between services Multi-cloud
Confidential │ ©2020 VMware, Inc. 4 Deliver better software to production faster with less risk Modern Application Demands Change The Conversation Applications Infrastructure LOW TOIL, LOW RISK PATH TO PRODUCTION LOW TOIL, LOW RISK SERVICE DELIVERY Multi-cloud
Confidential │ ©2020 VMware, Inc. Themes in App Modernization Embracing Cloud- Native Architecture Enterprise Integration Redux From Batch To Event-Driven 1 2 3 View From
Confidential │ ©2020 VMware, Inc. Creation (coding, sourcing, unit testing, dev local workspace) Build/Verify (CI, build, integration testing, registry, security scanning, etc) Deploy/Operate (CD, configuration, automation, load/stress testing) Connect (Networking, load balancing, ingress/egress, etc.) Observe (K8S, compute, network, storage, self-service) Five areas of focus for DevSecOps
Confidential │ ©2020 VMware, Inc. 7 DevSecOps Capabilities – Build, Run, Manage The Right Tools, The Right Parts Modern businesses operate in a regulated world; it is only when internal policy, governance and audit teams partner with developers that they can fully meet these regulations.
Confidential │ ©2020 VMware, Inc. 8 DevSecOps Capabilities – Create The Right Tools, The Right Parts Developers should focus on building great software, not achieving basic security for well- known architectures.
Confidential │ ©2020 VMware, Inc. 9 Development environment • Tools • Databases • Services • Kubernetes CODE DevSecOps Flow – Create Version Control Includes: • Developer’s local development environment • IDEs and editors • Debugging tools • Docker/containerd • Application Stack • Frameworks • Libraries • Middleware/Runtime • Required shared services • Databases and file stores • Message/event queues • Cloud services • Version Control • Balanced team – includes security / risk • Before building – architecture requirements • Data Classification / Auth / Secrets / ConfigMgmt / Circuitbreakers / Logging / Input-Output Validation / BoM / Risk Assessment / Incident Response • Framework guardrails for ATO • Code signing
Confidential │ ©2020 VMware, Inc. Run Enterprise Apps Are The Lifeblood of Organizations Today Build Any Cloud Any Platform Any Application Stack Innovate APP View From
Confidential │ ©2020 VMware, Inc. The Four Principles of GitOps Source: GitOps Working Group Declarative The entire system is described declaratively Versioned The canonical desired system state is versioned in Git Automation Approved changes can be automatically applied to the system Self-Healing Software agents ensure correctness and alert on divergence View From
Confidential │ ©2020 VMware, Inc. 12 DevSecOps Capabilities – Build/Verify The Right Tools, The Right Parts Bulding, testing, and packaging distributed applications requires a trusted supply- chain, verification of build integrity, and ensuring the immutability of delivered containers.
Confidential │ ©2020 VMware, Inc. 13 Automated container packaging • Validated • Reproducible builds • Security and patching CI Container image registry • Secure artifacts with policies and role-based access • Image scanning and signing DevSecOps Flow – Build/Verify Version Control Includes: • Cloud Native Build Packs • Curated/Validated • CVE and Bug Mitigations • Upstream • Automated Builds • “Sec” in DevSecOps • Lots of tooling • Code validation / OSL / BoM / SAST / DAST / … • Image Signing • Always latest image • Code / RootFS / Runtime • Building for container no dev workstation • Vuln Scanning • Inventory
Confidential │ ©2020 VMware, Inc. DEV STAGE PROD How Can The Tanzu Build Service Help? DEV STAGE PROD View From
Confidential │ ©2020 VMware, Inc. Tanzu Harbor Auditing: All the operations to the repositories are tracked. View From
Confidential │ ©2020 VMware, Inc. Tanzu Harbor Security Support: Integration with enterprise LDAP/AD systems for user authentication & management View From
Confidential │ ©2020 VMware, Inc. Tanzu Harbor Vulnerability Scanning: Harbor uses Clair to scan images regularly and warn users of vulnerabilities. View From
Confidential │ ©2020 VMware, Inc. 18 DevSecOps Capabilities – Deploy/Operate The Right Tools, The Right Parts Running custom software securely is not the act of a single organization or a single toolset. Intrinsic security is only achieved by an intentional coordination of security concerns, both between dependencies and up and down the stack.
Confidential │ ©2020 VMware, Inc. Tanzu App Catalog Operator Confidence: Gain the confidence that your open-source containers conform to your security requirements, are built on your OS of choice, and are automatically updated View From
Confidential │ ©2020 VMware, Inc. 20 Container image registry • Secure artifacts with policies and role-based access • Image scanning and signing CD CUSTOMER Validated catalog of runtimes and images • Curated, secure, validated OSS images DevSecOps Flow – Deploy/Operate Open source aligned Kubernetes • Certified, conformant Kubernetes runtime • Cluster-API-driven lifecycle management Centralized management for multiple clusters across clouds • Policy management, enforcement • Identity and access management • Backup and restore • Up to date source for dependencies automatically updated • Smoke testing for all critical platforms • Configuration hardening • AV / Malware scanning • Vulnerability Scanning • BoM – Libraries / versions / OSL • Signed • Trusted starting point for images and applications
Confidential │ ©2020 VMware, Inc. 21 DevSecOps Capabilities – Connect/Observe The Right Tools, The Right Parts Managing (and securing) a complex systems portfolio requires being able to see the system and both its intended and emergent behaviors.
Confidential │ ©2020 VMware, Inc. 22 CUSTOMER DevSecOps Flow – Connect Open source aligned Kubernetes • Certified, conformant Kubernetes runtime • Cluster-API-driven lifecycle management Centralized management for multiple clusters across clouds • Policy management, enforcement • Identity and access management • Backup and restore Connect and protect applications • Encrypted traffic, security policies, firewall • Kubernetes • Compliant – No lock-in / fastest response to upstream patches and updates • OPA / Gatekeeper policies • Network Policies • NSX/AVI/CNI integrations – extensive multi-layer segmentation options across multiple public and private clouds • Centralized Mission Control Vision • Extensive role based access • CLI for all functionality – api-first development • Cluster Groups • Policies – Cluster / Network / Image / CIS / STIG • Any Kubernetes • FedRamp High in process right now • Service Mesh • TLS Everywhere • mTLS client authentication • “zero-trust” application networks (when used with network policies)
Confidential │ ©2020 VMware, Inc. Tanzu Mission Control Centralized management of policy and security for all clusters across all teams View From
Confidential │ ©2020 VMware, Inc. 24 CUSTOMER DevSecOps Flow – Observe Open source aligned Kubernetes • Certified, conformant Kubernetes runtime • Cluster-API-driven lifecycle management Centralized management for multiple clusters across clouds • Policy management, enforcement • Identity and access management • Backup and restore Observability • Visibility across applications, clusters based on open standards Connect and protect applications • Encrypted traffic, security policies, firewall • Observability Vision • Millions of events per second • View of all clusters and applications • If architecture side prepared for observability • Forensic information • Abnormal performance • Unusual resource consumption • …
Confidential │ ©2020 VMware, Inc. Tanzu Observability Application Performance: View distributed application maps with pre-built dashboards, and query/filter traces and metrics at scale View From
Confidential │ ©2020 VMware, Inc. 26 Container image registry • Secure artifacts with policies and role-based access • Image scanning and signing Observability • Visibility across applications, clusters based on open standards Connect and protect applications • Encrypted traffic, security policies, firewall CD Development environment • Tools • Databases • Services • Kubernetes CODE CUSTOMER Automated container packaging • Validated • Reproducible builds • Security and patching CI Open source aligned Kubernetes • Certified, conformant Kubernetes runtime • Cluster-API-driven lifecycle management Centralized management for multiple clusters across clouds • Policy management, enforcement • Identity and access management • Backup and restore Validated catalog of runtimes and images • Curated, secure, validated OSS images DevSecOps Flow Version Control
Confidential │ ©2020 VMware, Inc. 27 VMware Tanzu Advanced Benefits New K8s, same UI Adopt Kubernetes with no additional code or training required Multi-cloud simplified Operate VMs and containers side-by- side with a global control plane Platform Development Drive cloud native architecture Consistent policy Access, back up, controls etc. across all clusters for DevSecOps Cloud native constructs Drive adoption of microservices, containers, and data models App Navigator Drive cloud native patterns Intrinsic security for apps App security part of software development lifecycle Accelerate developer velocity Enable self-service and automate the path to production Application Modernization Catalyst for customer outcomes OPS: Embrace move to containers and K8s Simplify operation across multi-cloud SEC: Secure containers and open source Reduce risk across app portfolio DEV: Deliver apps and updates faster Re-platform or re-factor app-by-app Architect: Enable agile business through software Eliminate friction of Dev, Sec, and Ops

Recommended

Achieving DevSecOps Outcomes with Tanzu Advanced- March 22, 2021
Achieving DevSecOps Outcomes with Tanzu Advanced- March 22, 2021Achieving DevSecOps Outcomes with Tanzu Advanced- March 22, 2021
Achieving DevSecOps Outcomes with Tanzu Advanced- March 22, 2021VMware Tanzu
 
Governance for your Modern Application Platform - November 4, 2020
Governance for your Modern Application Platform - November 4, 2020Governance for your Modern Application Platform - November 4, 2020
Governance for your Modern Application Platform - November 4, 2020VMware Tanzu
 
Enterprise Application Migration
Enterprise Application MigrationEnterprise Application Migration
Enterprise Application MigrationVMware Tanzu
 
DevSecOps: Security at the Speed of DevOp
DevSecOps: Security at the Speed of DevOpDevSecOps: Security at the Speed of DevOp
DevSecOps: Security at the Speed of DevOpVMware Tanzu
 
Delivering-Off-The-Shelf Software with Kubernetes- November 12, 2020
Delivering-Off-The-Shelf Software with Kubernetes- November 12, 2020Delivering-Off-The-Shelf Software with Kubernetes- November 12, 2020
Delivering-Off-The-Shelf Software with Kubernetes- November 12, 2020VMware Tanzu
 
vSphere7 with Tanzu
vSphere7 with Tanzu vSphere7 with Tanzu
vSphere7 with Tanzu VMware Tanzu
 
Aaron Swain at VMware Tanzu Public Sector Connect 2021
Aaron Swain at VMware Tanzu Public Sector Connect 2021Aaron Swain at VMware Tanzu Public Sector Connect 2021
Aaron Swain at VMware Tanzu Public Sector Connect 2021VMware Tanzu
 
Kubernetes on vSphere Presentation- July 23, 2020
Kubernetes on vSphere Presentation- July 23, 2020Kubernetes on vSphere Presentation- July 23, 2020
Kubernetes on vSphere Presentation- July 23, 2020VMware Tanzu
 

Recommended

Achieving DevSecOps Outcomes with Tanzu Advanced- March 22, 2021
Achieving DevSecOps Outcomes with Tanzu Advanced- March 22, 2021Achieving DevSecOps Outcomes with Tanzu Advanced- March 22, 2021
Achieving DevSecOps Outcomes with Tanzu Advanced- March 22, 2021VMware Tanzu
 
Governance for your Modern Application Platform - November 4, 2020
Governance for your Modern Application Platform - November 4, 2020Governance for your Modern Application Platform - November 4, 2020
Governance for your Modern Application Platform - November 4, 2020VMware Tanzu
 
Enterprise Application Migration
Enterprise Application MigrationEnterprise Application Migration
Enterprise Application MigrationVMware Tanzu
 
DevSecOps: Security at the Speed of DevOp
DevSecOps: Security at the Speed of DevOpDevSecOps: Security at the Speed of DevOp
DevSecOps: Security at the Speed of DevOpVMware Tanzu
 
Delivering-Off-The-Shelf Software with Kubernetes- November 12, 2020
Delivering-Off-The-Shelf Software with Kubernetes- November 12, 2020Delivering-Off-The-Shelf Software with Kubernetes- November 12, 2020
Delivering-Off-The-Shelf Software with Kubernetes- November 12, 2020VMware Tanzu
 
vSphere7 with Tanzu
vSphere7 with Tanzu vSphere7 with Tanzu
vSphere7 with Tanzu VMware Tanzu
 
Aaron Swain at VMware Tanzu Public Sector Connect 2021
Aaron Swain at VMware Tanzu Public Sector Connect 2021Aaron Swain at VMware Tanzu Public Sector Connect 2021
Aaron Swain at VMware Tanzu Public Sector Connect 2021VMware Tanzu
 
Kubernetes on vSphere Presentation- July 23, 2020
Kubernetes on vSphere Presentation- July 23, 2020Kubernetes on vSphere Presentation- July 23, 2020
Kubernetes on vSphere Presentation- July 23, 2020VMware Tanzu
 
Enterprise Java on Azure: From Java EE to Spring, we have you covered
Enterprise Java on Azure: From Java EE to Spring, we have you coveredEnterprise Java on Azure: From Java EE to Spring, we have you covered
Enterprise Java on Azure: From Java EE to Spring, we have you coveredEd Burns
 
Introduction to Spring Cloud Kubernetes
Introduction to Spring Cloud Kubernetes Introduction to Spring Cloud Kubernetes
Introduction to Spring Cloud KubernetesVMware Tanzu
 
Wisconsin .NET UG - Windows Azure
Wisconsin .NET UG - Windows AzureWisconsin .NET UG - Windows Azure
Wisconsin .NET UG - Windows AzureWade Wegner
 
Tanzu Standard
Tanzu StandardTanzu Standard
Tanzu StandardVMware Tanzu
 
VMware - Snapshot sessions - Deploy and manage tomorrow's applications today
VMware - Snapshot sessions - Deploy and manage tomorrow's applications todayVMware - Snapshot sessions - Deploy and manage tomorrow's applications today
VMware - Snapshot sessions - Deploy and manage tomorrow's applications todayAnnSteyaert_vmware
 
How you as an ISV can build your app for the Azure Marketplace and have it sy...
How you as an ISV can build your app for the Azure Marketplace and have it sy...How you as an ISV can build your app for the Azure Marketplace and have it sy...
How you as an ISV can build your app for the Azure Marketplace and have it sy...Microsoft Tech Community
 
From Pivotal to VMware Tanzu: What you need to know
From Pivotal to VMware Tanzu: What you need to knowFrom Pivotal to VMware Tanzu: What you need to know
From Pivotal to VMware Tanzu: What you need to knowVMware Tanzu
 
Make Your Kubernetes Clusters Production-Ready with VMware Tanzu
Make Your Kubernetes Clusters Production-Ready with VMware TanzuMake Your Kubernetes Clusters Production-Ready with VMware Tanzu
Make Your Kubernetes Clusters Production-Ready with VMware TanzuVMware Tanzu
 
Pivotal Platform: A First Look at the October Release
Pivotal Platform: A First Look at the October ReleasePivotal Platform: A First Look at the October Release
Pivotal Platform: A First Look at the October ReleaseVMware Tanzu
 
Tanzu Basic
Tanzu BasicTanzu Basic
Tanzu BasicVMware Tanzu
 
Achieving DevSecOps Outcomes with Tanzu Advanced - Spanish
Achieving DevSecOps Outcomes with Tanzu Advanced - SpanishAchieving DevSecOps Outcomes with Tanzu Advanced - Spanish
Achieving DevSecOps Outcomes with Tanzu Advanced - SpanishVMware Tanzu
 
Cloud Native Runtime Platform
Cloud Native Runtime PlatformCloud Native Runtime Platform
Cloud Native Runtime PlatformVMware Tanzu
 
VMware Tanzu Introduction- June 11, 2020
VMware Tanzu Introduction- June 11, 2020VMware Tanzu Introduction- June 11, 2020
VMware Tanzu Introduction- June 11, 2020VMware Tanzu
 
Deploying Kafka on vSphere with Kubernetes Using the Confluent Operator (Just...
Deploying Kafka on vSphere with Kubernetes Using the Confluent Operator (Just...Deploying Kafka on vSphere with Kubernetes Using the Confluent Operator (Just...
Deploying Kafka on vSphere with Kubernetes Using the Confluent Operator (Just...confluent
 
July 30: How User-Centered Design Drives Impactful Products and Services
July 30: How User-Centered Design Drives Impactful Products and ServicesJuly 30: How User-Centered Design Drives Impactful Products and Services
July 30: How User-Centered Design Drives Impactful Products and ServicesVMware Tanzu
 
Handling Secrets in Your Cloud Native Architecture
Handling Secrets in Your Cloud Native ArchitectureHandling Secrets in Your Cloud Native Architecture
Handling Secrets in Your Cloud Native ArchitectureVMware Tanzu
 
VMware Tanzu Introduction
VMware Tanzu IntroductionVMware Tanzu Introduction
VMware Tanzu IntroductionVMware Tanzu
 
Building Kubernetes images at scale with Tanzu Build Service
Building Kubernetes images at scale with Tanzu Build ServiceBuilding Kubernetes images at scale with Tanzu Build Service
Building Kubernetes images at scale with Tanzu Build ServiceVMware Tanzu
 
Azure Spring Cloud Workshop - June 17, 2020
Azure Spring Cloud Workshop - June 17, 2020Azure Spring Cloud Workshop - June 17, 2020
Azure Spring Cloud Workshop - June 17, 2020VMware Tanzu
 
vSphere with Kubernetes Virtual Event- June 16, 2020
vSphere with Kubernetes Virtual Event- June 16, 2020vSphere with Kubernetes Virtual Event- June 16, 2020
vSphere with Kubernetes Virtual Event- June 16, 2020VMware Tanzu
 
VMware Application Catalog - Overview for vExperts[35].pdf
VMware Application Catalog - Overview for vExperts[35].pdfVMware Application Catalog - Overview for vExperts[35].pdf
VMware Application Catalog - Overview for vExperts[35].pdfMartin Hosken
 
Securing Kubernetes Clusters with NGINX Plus Ingress Controller & NAP
Securing Kubernetes Clusters with NGINX Plus Ingress Controller & NAPSecuring Kubernetes Clusters with NGINX Plus Ingress Controller & NAP
Securing Kubernetes Clusters with NGINX Plus Ingress Controller & NAPOlivia LaMar
 

More Related Content

What's hot

Enterprise Java on Azure: From Java EE to Spring, we have you covered
Enterprise Java on Azure: From Java EE to Spring, we have you coveredEnterprise Java on Azure: From Java EE to Spring, we have you covered
Enterprise Java on Azure: From Java EE to Spring, we have you coveredEd Burns
 
Introduction to Spring Cloud Kubernetes
Introduction to Spring Cloud Kubernetes Introduction to Spring Cloud Kubernetes
Introduction to Spring Cloud KubernetesVMware Tanzu
 
Wisconsin .NET UG - Windows Azure
Wisconsin .NET UG - Windows AzureWisconsin .NET UG - Windows Azure
Wisconsin .NET UG - Windows AzureWade Wegner
 
VMware - Snapshot sessions - Deploy and manage tomorrow's applications today
VMware - Snapshot sessions - Deploy and manage tomorrow's applications todayVMware - Snapshot sessions - Deploy and manage tomorrow's applications today
VMware - Snapshot sessions - Deploy and manage tomorrow's applications todayAnnSteyaert_vmware
 
How you as an ISV can build your app for the Azure Marketplace and have it sy...
How you as an ISV can build your app for the Azure Marketplace and have it sy...How you as an ISV can build your app for the Azure Marketplace and have it sy...
How you as an ISV can build your app for the Azure Marketplace and have it sy...Microsoft Tech Community
 
From Pivotal to VMware Tanzu: What you need to know
From Pivotal to VMware Tanzu: What you need to knowFrom Pivotal to VMware Tanzu: What you need to know
From Pivotal to VMware Tanzu: What you need to knowVMware Tanzu
 
Make Your Kubernetes Clusters Production-Ready with VMware Tanzu
Make Your Kubernetes Clusters Production-Ready with VMware TanzuMake Your Kubernetes Clusters Production-Ready with VMware Tanzu
Make Your Kubernetes Clusters Production-Ready with VMware TanzuVMware Tanzu
 
Pivotal Platform: A First Look at the October Release
Pivotal Platform: A First Look at the October ReleasePivotal Platform: A First Look at the October Release
Pivotal Platform: A First Look at the October ReleaseVMware Tanzu
 
Achieving DevSecOps Outcomes with Tanzu Advanced - Spanish
Achieving DevSecOps Outcomes with Tanzu Advanced - SpanishAchieving DevSecOps Outcomes with Tanzu Advanced - Spanish
Achieving DevSecOps Outcomes with Tanzu Advanced - SpanishVMware Tanzu
 
Cloud Native Runtime Platform
Cloud Native Runtime PlatformCloud Native Runtime Platform
Cloud Native Runtime PlatformVMware Tanzu
 
VMware Tanzu Introduction- June 11, 2020
VMware Tanzu Introduction- June 11, 2020VMware Tanzu Introduction- June 11, 2020
VMware Tanzu Introduction- June 11, 2020VMware Tanzu
 
Deploying Kafka on vSphere with Kubernetes Using the Confluent Operator (Just...
Deploying Kafka on vSphere with Kubernetes Using the Confluent Operator (Just...Deploying Kafka on vSphere with Kubernetes Using the Confluent Operator (Just...
Deploying Kafka on vSphere with Kubernetes Using the Confluent Operator (Just...confluent
 
July 30: How User-Centered Design Drives Impactful Products and Services
July 30: How User-Centered Design Drives Impactful Products and ServicesJuly 30: How User-Centered Design Drives Impactful Products and Services
July 30: How User-Centered Design Drives Impactful Products and ServicesVMware Tanzu
 
Handling Secrets in Your Cloud Native Architecture
Handling Secrets in Your Cloud Native ArchitectureHandling Secrets in Your Cloud Native Architecture
Handling Secrets in Your Cloud Native ArchitectureVMware Tanzu
 
VMware Tanzu Introduction
VMware Tanzu IntroductionVMware Tanzu Introduction
VMware Tanzu IntroductionVMware Tanzu
 
Building Kubernetes images at scale with Tanzu Build Service
Building Kubernetes images at scale with Tanzu Build ServiceBuilding Kubernetes images at scale with Tanzu Build Service
Building Kubernetes images at scale with Tanzu Build ServiceVMware Tanzu
 
Azure Spring Cloud Workshop - June 17, 2020
Azure Spring Cloud Workshop - June 17, 2020Azure Spring Cloud Workshop - June 17, 2020
Azure Spring Cloud Workshop - June 17, 2020VMware Tanzu
 
vSphere with Kubernetes Virtual Event- June 16, 2020
vSphere with Kubernetes Virtual Event- June 16, 2020vSphere with Kubernetes Virtual Event- June 16, 2020
vSphere with Kubernetes Virtual Event- June 16, 2020VMware Tanzu
 

What's hot (20)

Enterprise Java on Azure: From Java EE to Spring, we have you covered
Enterprise Java on Azure: From Java EE to Spring, we have you coveredEnterprise Java on Azure: From Java EE to Spring, we have you covered
Enterprise Java on Azure: From Java EE to Spring, we have you covered
 
Introduction to Spring Cloud Kubernetes
Introduction to Spring Cloud Kubernetes Introduction to Spring Cloud Kubernetes
Introduction to Spring Cloud Kubernetes
 
Wisconsin .NET UG - Windows Azure
Wisconsin .NET UG - Windows AzureWisconsin .NET UG - Windows Azure
Wisconsin .NET UG - Windows Azure
 
Tanzu Standard
Tanzu StandardTanzu Standard
Tanzu Standard
 
VMware - Snapshot sessions - Deploy and manage tomorrow's applications today
VMware - Snapshot sessions - Deploy and manage tomorrow's applications todayVMware - Snapshot sessions - Deploy and manage tomorrow's applications today
VMware - Snapshot sessions - Deploy and manage tomorrow's applications today
 
How you as an ISV can build your app for the Azure Marketplace and have it sy...
How you as an ISV can build your app for the Azure Marketplace and have it sy...How you as an ISV can build your app for the Azure Marketplace and have it sy...
How you as an ISV can build your app for the Azure Marketplace and have it sy...
 
From Pivotal to VMware Tanzu: What you need to know
From Pivotal to VMware Tanzu: What you need to knowFrom Pivotal to VMware Tanzu: What you need to know
From Pivotal to VMware Tanzu: What you need to know
 
Make Your Kubernetes Clusters Production-Ready with VMware Tanzu
Make Your Kubernetes Clusters Production-Ready with VMware TanzuMake Your Kubernetes Clusters Production-Ready with VMware Tanzu
Make Your Kubernetes Clusters Production-Ready with VMware Tanzu
 
Pivotal Platform: A First Look at the October Release
Pivotal Platform: A First Look at the October ReleasePivotal Platform: A First Look at the October Release
Pivotal Platform: A First Look at the October Release
 
Tanzu Basic
Tanzu BasicTanzu Basic
Tanzu Basic
 
Achieving DevSecOps Outcomes with Tanzu Advanced - Spanish
Achieving DevSecOps Outcomes with Tanzu Advanced - SpanishAchieving DevSecOps Outcomes with Tanzu Advanced - Spanish
Achieving DevSecOps Outcomes with Tanzu Advanced - Spanish
 
Cloud Native Runtime Platform
Cloud Native Runtime PlatformCloud Native Runtime Platform
Cloud Native Runtime Platform
 
VMware Tanzu Introduction- June 11, 2020
VMware Tanzu Introduction- June 11, 2020VMware Tanzu Introduction- June 11, 2020
VMware Tanzu Introduction- June 11, 2020
 
Deploying Kafka on vSphere with Kubernetes Using the Confluent Operator (Just...
Deploying Kafka on vSphere with Kubernetes Using the Confluent Operator (Just...Deploying Kafka on vSphere with Kubernetes Using the Confluent Operator (Just...
Deploying Kafka on vSphere with Kubernetes Using the Confluent Operator (Just...
 
July 30: How User-Centered Design Drives Impactful Products and Services
July 30: How User-Centered Design Drives Impactful Products and ServicesJuly 30: How User-Centered Design Drives Impactful Products and Services
July 30: How User-Centered Design Drives Impactful Products and Services
 
Handling Secrets in Your Cloud Native Architecture
Handling Secrets in Your Cloud Native ArchitectureHandling Secrets in Your Cloud Native Architecture
Handling Secrets in Your Cloud Native Architecture
 
VMware Tanzu Introduction
VMware Tanzu IntroductionVMware Tanzu Introduction
VMware Tanzu Introduction
 
Building Kubernetes images at scale with Tanzu Build Service
Building Kubernetes images at scale with Tanzu Build ServiceBuilding Kubernetes images at scale with Tanzu Build Service
Building Kubernetes images at scale with Tanzu Build Service
 
Azure Spring Cloud Workshop - June 17, 2020
Azure Spring Cloud Workshop - June 17, 2020Azure Spring Cloud Workshop - June 17, 2020
Azure Spring Cloud Workshop - June 17, 2020
 
vSphere with Kubernetes Virtual Event- June 16, 2020
vSphere with Kubernetes Virtual Event- June 16, 2020vSphere with Kubernetes Virtual Event- June 16, 2020
vSphere with Kubernetes Virtual Event- June 16, 2020
 

Similar to Achieving DevSecOps Outcomes with Tanzu Advanced- May 25, 2021

VMware Application Catalog - Overview for vExperts[35].pdf
VMware Application Catalog - Overview for vExperts[35].pdfVMware Application Catalog - Overview for vExperts[35].pdf
VMware Application Catalog - Overview for vExperts[35].pdfMartin Hosken
 
Securing Kubernetes Clusters with NGINX Plus Ingress Controller & NAP
Securing Kubernetes Clusters with NGINX Plus Ingress Controller & NAPSecuring Kubernetes Clusters with NGINX Plus Ingress Controller & NAP
Securing Kubernetes Clusters with NGINX Plus Ingress Controller & NAPOlivia LaMar
 
VMware Tanzu Kubernetes Connect
VMware Tanzu Kubernetes ConnectVMware Tanzu Kubernetes Connect
VMware Tanzu Kubernetes ConnectVMware Tanzu
 
Continuous Delivery with CloudBees Core
Continuous Delivery with CloudBees CoreContinuous Delivery with CloudBees Core
Continuous Delivery with CloudBees CoreBhavani Rao
 
VMware overview presentation by alamgir hossain
VMware overview presentation by alamgir hossainVMware overview presentation by alamgir hossain
VMware overview presentation by alamgir hossainALAMGIR HOSSAIN
 
VMware vShield - Overview
VMware vShield - OverviewVMware vShield - Overview
VMware vShield - OverviewIrsandi Hasan
 
tanzu_developer_connect.pptx
tanzu_developer_connect.pptxtanzu_developer_connect.pptx
tanzu_developer_connect.pptxVMware Tanzu
 
TENDENCIAS DE SEGURIDAD PARA AMBIENTES EN LA NUBE
TENDENCIAS DE SEGURIDAD PARA AMBIENTES EN LA NUBETENDENCIAS DE SEGURIDAD PARA AMBIENTES EN LA NUBE
TENDENCIAS DE SEGURIDAD PARA AMBIENTES EN LA NUBECristian Garcia G.
 
IBM Multicloud Management on the OpenShift Container Platform
IBM Multicloud Management on the OpenShift Container PlatformIBM Multicloud Management on the OpenShift Container Platform
IBM Multicloud Management on the OpenShift Container PlatformMichael Elder
 
Nginx app protect-for-meetup-v1.0-202006_lk
Nginx app protect-for-meetup-v1.0-202006_lkNginx app protect-for-meetup-v1.0-202006_lk
Nginx app protect-for-meetup-v1.0-202006_lkJuraj Hantak
 
Data Driven Decisions in DevOps
Data Driven Decisions in DevOpsData Driven Decisions in DevOps
Data Driven Decisions in DevOpsLeon Stigter
 
Real World Application Orchestration Made Easy on VMware vCloud Air, vSphere ...
Real World Application Orchestration Made Easy on VMware vCloud Air, vSphere ...Real World Application Orchestration Made Easy on VMware vCloud Air, vSphere ...
Real World Application Orchestration Made Easy on VMware vCloud Air, vSphere ...Nati Shalom
 
Get the Most Out of Kubernetes with NGINX
Get the Most Out of Kubernetes with NGINXGet the Most Out of Kubernetes with NGINX
Get the Most Out of Kubernetes with NGINXNGINX, Inc.
 
Webinar Fondazione CRUI e VMware: VMware vRealize Suite
Webinar Fondazione CRUI e VMware: VMware vRealize Suite Webinar Fondazione CRUI e VMware: VMware vRealize Suite
Webinar Fondazione CRUI e VMware: VMware vRealize SuiteJürgen Ambrosi
 
How VMware IT Modernized My VMware to Deliver an Exceptional Customer Experience
How VMware IT Modernized My VMware to Deliver an Exceptional Customer ExperienceHow VMware IT Modernized My VMware to Deliver an Exceptional Customer Experience
How VMware IT Modernized My VMware to Deliver an Exceptional Customer ExperienceVMware Tanzu
 
VMware-vShield-Presentation-pp-en-Dec10.pptx
VMware-vShield-Presentation-pp-en-Dec10.pptxVMware-vShield-Presentation-pp-en-Dec10.pptx
VMware-vShield-Presentation-pp-en-Dec10.pptxAbasse KPEGOUNI
 
Enterprise pks overview
Enterprise pks overview Enterprise pks overview
Enterprise pks overview Boskey Savla
 
Web Application Security for Continuous Delivery Pipelines
Web Application Security for Continuous Delivery PipelinesWeb Application Security for Continuous Delivery Pipelines
Web Application Security for Continuous Delivery PipelinesAvi Networks
 
VMworld 2013: NSX PCI Reference Architecture Workshop Session 3 - Operational...
VMworld 2013: NSX PCI Reference Architecture Workshop Session 3 - Operational...VMworld 2013: NSX PCI Reference Architecture Workshop Session 3 - Operational...
VMworld 2013: NSX PCI Reference Architecture Workshop Session 3 - Operational...VMworld
 
Secured APIM-as-a-Service
Secured APIM-as-a-ServiceSecured APIM-as-a-Service
Secured APIM-as-a-ServiceNGINX, Inc.
 

Similar to Achieving DevSecOps Outcomes with Tanzu Advanced- May 25, 2021 (20)

VMware Application Catalog - Overview for vExperts[35].pdf
VMware Application Catalog - Overview for vExperts[35].pdfVMware Application Catalog - Overview for vExperts[35].pdf
VMware Application Catalog - Overview for vExperts[35].pdf
 
Securing Kubernetes Clusters with NGINX Plus Ingress Controller & NAP
Securing Kubernetes Clusters with NGINX Plus Ingress Controller & NAPSecuring Kubernetes Clusters with NGINX Plus Ingress Controller & NAP
Securing Kubernetes Clusters with NGINX Plus Ingress Controller & NAP
 
VMware Tanzu Kubernetes Connect
VMware Tanzu Kubernetes ConnectVMware Tanzu Kubernetes Connect
VMware Tanzu Kubernetes Connect
 
Continuous Delivery with CloudBees Core
Continuous Delivery with CloudBees CoreContinuous Delivery with CloudBees Core
Continuous Delivery with CloudBees Core
 
VMware overview presentation by alamgir hossain
VMware overview presentation by alamgir hossainVMware overview presentation by alamgir hossain
VMware overview presentation by alamgir hossain
 
VMware vShield - Overview
VMware vShield - OverviewVMware vShield - Overview
VMware vShield - Overview
 
tanzu_developer_connect.pptx
tanzu_developer_connect.pptxtanzu_developer_connect.pptx
tanzu_developer_connect.pptx
 
TENDENCIAS DE SEGURIDAD PARA AMBIENTES EN LA NUBE
TENDENCIAS DE SEGURIDAD PARA AMBIENTES EN LA NUBETENDENCIAS DE SEGURIDAD PARA AMBIENTES EN LA NUBE
TENDENCIAS DE SEGURIDAD PARA AMBIENTES EN LA NUBE
 
IBM Multicloud Management on the OpenShift Container Platform
IBM Multicloud Management on the OpenShift Container PlatformIBM Multicloud Management on the OpenShift Container Platform
IBM Multicloud Management on the OpenShift Container Platform
 
Nginx app protect-for-meetup-v1.0-202006_lk
Nginx app protect-for-meetup-v1.0-202006_lkNginx app protect-for-meetup-v1.0-202006_lk
Nginx app protect-for-meetup-v1.0-202006_lk
 
Data Driven Decisions in DevOps
Data Driven Decisions in DevOpsData Driven Decisions in DevOps
Data Driven Decisions in DevOps
 
Real World Application Orchestration Made Easy on VMware vCloud Air, vSphere ...
Real World Application Orchestration Made Easy on VMware vCloud Air, vSphere ...Real World Application Orchestration Made Easy on VMware vCloud Air, vSphere ...
Real World Application Orchestration Made Easy on VMware vCloud Air, vSphere ...
 
Get the Most Out of Kubernetes with NGINX
Get the Most Out of Kubernetes with NGINXGet the Most Out of Kubernetes with NGINX
Get the Most Out of Kubernetes with NGINX
 
Webinar Fondazione CRUI e VMware: VMware vRealize Suite
Webinar Fondazione CRUI e VMware: VMware vRealize Suite Webinar Fondazione CRUI e VMware: VMware vRealize Suite
Webinar Fondazione CRUI e VMware: VMware vRealize Suite
 
How VMware IT Modernized My VMware to Deliver an Exceptional Customer Experience
How VMware IT Modernized My VMware to Deliver an Exceptional Customer ExperienceHow VMware IT Modernized My VMware to Deliver an Exceptional Customer Experience
How VMware IT Modernized My VMware to Deliver an Exceptional Customer Experience
 
VMware-vShield-Presentation-pp-en-Dec10.pptx
VMware-vShield-Presentation-pp-en-Dec10.pptxVMware-vShield-Presentation-pp-en-Dec10.pptx
VMware-vShield-Presentation-pp-en-Dec10.pptx
 
Enterprise pks overview
Enterprise pks overview Enterprise pks overview
Enterprise pks overview
 
Web Application Security for Continuous Delivery Pipelines
Web Application Security for Continuous Delivery PipelinesWeb Application Security for Continuous Delivery Pipelines
Web Application Security for Continuous Delivery Pipelines
 
VMworld 2013: NSX PCI Reference Architecture Workshop Session 3 - Operational...
VMworld 2013: NSX PCI Reference Architecture Workshop Session 3 - Operational...VMworld 2013: NSX PCI Reference Architecture Workshop Session 3 - Operational...
VMworld 2013: NSX PCI Reference Architecture Workshop Session 3 - Operational...
 
Secured APIM-as-a-Service
Secured APIM-as-a-ServiceSecured APIM-as-a-Service
Secured APIM-as-a-Service
 

More from VMware Tanzu

What AI Means For Your Product Strategy And What To Do About It
What AI Means For Your Product Strategy And What To Do About ItWhat AI Means For Your Product Strategy And What To Do About It
What AI Means For Your Product Strategy And What To Do About ItVMware Tanzu
 
Make the Right Thing the Obvious Thing at Cardinal Health 2023
Make the Right Thing the Obvious Thing at Cardinal Health 2023Make the Right Thing the Obvious Thing at Cardinal Health 2023
Make the Right Thing the Obvious Thing at Cardinal Health 2023VMware Tanzu
 
Enhancing DevEx and Simplifying Operations at Scale
Enhancing DevEx and Simplifying Operations at ScaleEnhancing DevEx and Simplifying Operations at Scale
Enhancing DevEx and Simplifying Operations at ScaleVMware Tanzu
 
Spring Update | July 2023
Spring Update | July 2023Spring Update | July 2023
Spring Update | July 2023VMware Tanzu
 
Platforms, Platform Engineering, & Platform as a Product
Platforms, Platform Engineering, & Platform as a ProductPlatforms, Platform Engineering, & Platform as a Product
Platforms, Platform Engineering, & Platform as a ProductVMware Tanzu
 
Building Cloud Ready Apps
Building Cloud Ready AppsBuilding Cloud Ready Apps
Building Cloud Ready AppsVMware Tanzu
 
Spring Boot 3 And Beyond
Spring Boot 3 And BeyondSpring Boot 3 And Beyond
Spring Boot 3 And BeyondVMware Tanzu
 
Spring Cloud Gateway - SpringOne Tour 2023 Charles Schwab.pdf
Spring Cloud Gateway - SpringOne Tour 2023 Charles Schwab.pdfSpring Cloud Gateway - SpringOne Tour 2023 Charles Schwab.pdf
Spring Cloud Gateway - SpringOne Tour 2023 Charles Schwab.pdfVMware Tanzu
 
Simplify and Scale Enterprise Apps in the Cloud | Boston 2023
Simplify and Scale Enterprise Apps in the Cloud | Boston 2023Simplify and Scale Enterprise Apps in the Cloud | Boston 2023
Simplify and Scale Enterprise Apps in the Cloud | Boston 2023VMware Tanzu
 
Simplify and Scale Enterprise Apps in the Cloud | Seattle 2023
Simplify and Scale Enterprise Apps in the Cloud | Seattle 2023Simplify and Scale Enterprise Apps in the Cloud | Seattle 2023
Simplify and Scale Enterprise Apps in the Cloud | Seattle 2023VMware Tanzu
 
Tanzu Virtual Developer Connect Workshop - French
Tanzu Virtual Developer Connect Workshop - FrenchTanzu Virtual Developer Connect Workshop - French
Tanzu Virtual Developer Connect Workshop - FrenchVMware Tanzu
 
Tanzu Developer Connect Workshop - English
Tanzu Developer Connect Workshop - EnglishTanzu Developer Connect Workshop - English
Tanzu Developer Connect Workshop - EnglishVMware Tanzu
 
Virtual Developer Connect Workshop - English
Virtual Developer Connect Workshop - EnglishVirtual Developer Connect Workshop - English
Virtual Developer Connect Workshop - EnglishVMware Tanzu
 
Tanzu Developer Connect - French
Tanzu Developer Connect - FrenchTanzu Developer Connect - French
Tanzu Developer Connect - FrenchVMware Tanzu
 
Simplify and Scale Enterprise Apps in the Cloud | Dallas 2023
Simplify and Scale Enterprise Apps in the Cloud | Dallas 2023Simplify and Scale Enterprise Apps in the Cloud | Dallas 2023
Simplify and Scale Enterprise Apps in the Cloud | Dallas 2023VMware Tanzu
 
SpringOne Tour: Deliver 15-Factor Applications on Kubernetes with Spring Boot
SpringOne Tour: Deliver 15-Factor Applications on Kubernetes with Spring BootSpringOne Tour: Deliver 15-Factor Applications on Kubernetes with Spring Boot
SpringOne Tour: Deliver 15-Factor Applications on Kubernetes with Spring BootVMware Tanzu
 
SpringOne Tour: The Influential Software Engineer
SpringOne Tour: The Influential Software EngineerSpringOne Tour: The Influential Software Engineer
SpringOne Tour: The Influential Software EngineerVMware Tanzu
 
SpringOne Tour: Domain-Driven Design: Theory vs Practice
SpringOne Tour: Domain-Driven Design: Theory vs PracticeSpringOne Tour: Domain-Driven Design: Theory vs Practice
SpringOne Tour: Domain-Driven Design: Theory vs PracticeVMware Tanzu
 
SpringOne Tour: Spring Recipes: A Collection of Common-Sense Solutions
SpringOne Tour: Spring Recipes: A Collection of Common-Sense SolutionsSpringOne Tour: Spring Recipes: A Collection of Common-Sense Solutions
SpringOne Tour: Spring Recipes: A Collection of Common-Sense SolutionsVMware Tanzu
 
SpringOne Tour: Doing Progressive Delivery with your Team
SpringOne Tour: Doing Progressive Delivery with your TeamSpringOne Tour: Doing Progressive Delivery with your Team
SpringOne Tour: Doing Progressive Delivery with your TeamVMware Tanzu
 

More from VMware Tanzu (20)

What AI Means For Your Product Strategy And What To Do About It
What AI Means For Your Product Strategy And What To Do About ItWhat AI Means For Your Product Strategy And What To Do About It
What AI Means For Your Product Strategy And What To Do About It
 
Make the Right Thing the Obvious Thing at Cardinal Health 2023
Make the Right Thing the Obvious Thing at Cardinal Health 2023Make the Right Thing the Obvious Thing at Cardinal Health 2023
Make the Right Thing the Obvious Thing at Cardinal Health 2023
 
Enhancing DevEx and Simplifying Operations at Scale
Enhancing DevEx and Simplifying Operations at ScaleEnhancing DevEx and Simplifying Operations at Scale
Enhancing DevEx and Simplifying Operations at Scale
 
Spring Update | July 2023
Spring Update | July 2023Spring Update | July 2023
Spring Update | July 2023
 
Platforms, Platform Engineering, & Platform as a Product
Platforms, Platform Engineering, & Platform as a ProductPlatforms, Platform Engineering, & Platform as a Product
Platforms, Platform Engineering, & Platform as a Product
 
Building Cloud Ready Apps
Building Cloud Ready AppsBuilding Cloud Ready Apps
Building Cloud Ready Apps
 
Spring Boot 3 And Beyond
Spring Boot 3 And BeyondSpring Boot 3 And Beyond
Spring Boot 3 And Beyond
 
Spring Cloud Gateway - SpringOne Tour 2023 Charles Schwab.pdf
Spring Cloud Gateway - SpringOne Tour 2023 Charles Schwab.pdfSpring Cloud Gateway - SpringOne Tour 2023 Charles Schwab.pdf
Spring Cloud Gateway - SpringOne Tour 2023 Charles Schwab.pdf
 
Simplify and Scale Enterprise Apps in the Cloud | Boston 2023
Simplify and Scale Enterprise Apps in the Cloud | Boston 2023Simplify and Scale Enterprise Apps in the Cloud | Boston 2023
Simplify and Scale Enterprise Apps in the Cloud | Boston 2023
 
Simplify and Scale Enterprise Apps in the Cloud | Seattle 2023
Simplify and Scale Enterprise Apps in the Cloud | Seattle 2023Simplify and Scale Enterprise Apps in the Cloud | Seattle 2023
Simplify and Scale Enterprise Apps in the Cloud | Seattle 2023
 
Tanzu Virtual Developer Connect Workshop - French
Tanzu Virtual Developer Connect Workshop - FrenchTanzu Virtual Developer Connect Workshop - French
Tanzu Virtual Developer Connect Workshop - French
 
Tanzu Developer Connect Workshop - English
Tanzu Developer Connect Workshop - EnglishTanzu Developer Connect Workshop - English
Tanzu Developer Connect Workshop - English
 
Virtual Developer Connect Workshop - English
Virtual Developer Connect Workshop - EnglishVirtual Developer Connect Workshop - English
Virtual Developer Connect Workshop - English
 
Tanzu Developer Connect - French
Tanzu Developer Connect - FrenchTanzu Developer Connect - French
Tanzu Developer Connect - French
 
Simplify and Scale Enterprise Apps in the Cloud | Dallas 2023
Simplify and Scale Enterprise Apps in the Cloud | Dallas 2023Simplify and Scale Enterprise Apps in the Cloud | Dallas 2023
Simplify and Scale Enterprise Apps in the Cloud | Dallas 2023
 
SpringOne Tour: Deliver 15-Factor Applications on Kubernetes with Spring Boot
SpringOne Tour: Deliver 15-Factor Applications on Kubernetes with Spring BootSpringOne Tour: Deliver 15-Factor Applications on Kubernetes with Spring Boot
SpringOne Tour: Deliver 15-Factor Applications on Kubernetes with Spring Boot
 
SpringOne Tour: The Influential Software Engineer
SpringOne Tour: The Influential Software EngineerSpringOne Tour: The Influential Software Engineer
SpringOne Tour: The Influential Software Engineer
 
SpringOne Tour: Domain-Driven Design: Theory vs Practice
SpringOne Tour: Domain-Driven Design: Theory vs PracticeSpringOne Tour: Domain-Driven Design: Theory vs Practice
SpringOne Tour: Domain-Driven Design: Theory vs Practice
 
SpringOne Tour: Spring Recipes: A Collection of Common-Sense Solutions
SpringOne Tour: Spring Recipes: A Collection of Common-Sense SolutionsSpringOne Tour: Spring Recipes: A Collection of Common-Sense Solutions
SpringOne Tour: Spring Recipes: A Collection of Common-Sense Solutions
 
SpringOne Tour: Doing Progressive Delivery with your Team
SpringOne Tour: Doing Progressive Delivery with your TeamSpringOne Tour: Doing Progressive Delivery with your Team
SpringOne Tour: Doing Progressive Delivery with your Team
 

Recently uploaded

Global Identity Enrolment and Verification Pro Solution - Cizo Technology Ser...
Global Identity Enrolment and Verification Pro Solution - Cizo Technology Ser...Global Identity Enrolment and Verification Pro Solution - Cizo Technology Ser...
Global Identity Enrolment and Verification Pro Solution - Cizo Technology Ser...Cizo Technology Services
 
Balasore Best It Company|| Top 10 IT Company || Balasore Software company Odisha
Balasore Best It Company|| Top 10 IT Company || Balasore Software company OdishaBalasore Best It Company|| Top 10 IT Company || Balasore Software company Odisha
Balasore Best It Company|| Top 10 IT Company || Balasore Software company Odishasmiwainfosol
 
Open Source Summit NA 2024: Open Source Cloud Costs - OpenCost's Impact on En...
Open Source Summit NA 2024: Open Source Cloud Costs - OpenCost's Impact on En...Open Source Summit NA 2024: Open Source Cloud Costs - OpenCost's Impact on En...
Open Source Summit NA 2024: Open Source Cloud Costs - OpenCost's Impact on En...Matt Ray
 
How to submit a standout Adobe Champion Application
How to submit a standout Adobe Champion ApplicationHow to submit a standout Adobe Champion Application
How to submit a standout Adobe Champion ApplicationBradBedford3
 
Software Coding for software engineering
Software Coding for software engineeringSoftware Coding for software engineering
Software Coding for software engineeringssuserb3a23b
 
VK Business Profile - provides IT solutions and Web Development
VK Business Profile - provides IT solutions and Web DevelopmentVK Business Profile - provides IT solutions and Web Development
VK Business Profile - provides IT solutions and Web Developmentvyaparkranti
 
What is Advanced Excel and what are some best practices for designing and cre...
What is Advanced Excel and what are some best practices for designing and cre...What is Advanced Excel and what are some best practices for designing and cre...
What is Advanced Excel and what are some best practices for designing and cre...Technogeeks
 
办理学位证(UQ文凭证书)昆士兰大学毕业证成绩单原版一模一样
办理学位证(UQ文凭证书)昆士兰大学毕业证成绩单原版一模一样办理学位证(UQ文凭证书)昆士兰大学毕业证成绩单原版一模一样
办理学位证(UQ文凭证书)昆士兰大学毕业证成绩单原版一模一样umasea
 
Precise and Complete Requirements? An Elusive Goal
Precise and Complete Requirements? An Elusive GoalPrecise and Complete Requirements? An Elusive Goal
Precise and Complete Requirements? An Elusive GoalLionel Briand
 
What is Fashion PLM and Why Do You Need It
What is Fashion PLM and Why Do You Need ItWhat is Fashion PLM and Why Do You Need It
What is Fashion PLM and Why Do You Need ItWave PLM
 
A healthy diet for your Java application Devoxx France.pdf
A healthy diet for your Java application Devoxx France.pdfA healthy diet for your Java application Devoxx France.pdf
A healthy diet for your Java application Devoxx France.pdfMarharyta Nedzelska
 
React Server Component in Next.js by Hanief Utama
React Server Component in Next.js by Hanief UtamaReact Server Component in Next.js by Hanief Utama
React Server Component in Next.js by Hanief UtamaHanief Utama
 
Machine Learning Software Engineering Patterns and Their Engineering
Machine Learning Software Engineering Patterns and Their EngineeringMachine Learning Software Engineering Patterns and Their Engineering
Machine Learning Software Engineering Patterns and Their EngineeringHironori Washizaki
 
Comparing Linux OS Image Update Models - EOSS 2024.pdf
Comparing Linux OS Image Update Models - EOSS 2024.pdfComparing Linux OS Image Update Models - EOSS 2024.pdf
Comparing Linux OS Image Update Models - EOSS 2024.pdfDrew Moseley
 
Folding Cheat Sheet #4 - fourth in a series
Folding Cheat Sheet #4 - fourth in a seriesFolding Cheat Sheet #4 - fourth in a series
Folding Cheat Sheet #4 - fourth in a seriesPhilip Schwarz
 
PREDICTING RIVER WATER QUALITY ppt presentation
PREDICTING RIVER WATER QUALITY ppt presentationPREDICTING RIVER WATER QUALITY ppt presentation
PREDICTING RIVER WATER QUALITY ppt presentationvaddepallysandeep122
 
cpct NetworkING BASICS AND NETWORK TOOL.ppt
cpct NetworkING BASICS AND NETWORK TOOL.pptcpct NetworkING BASICS AND NETWORK TOOL.ppt
cpct NetworkING BASICS AND NETWORK TOOL.pptrcbcrtm
 

Recently uploaded (20)

Global Identity Enrolment and Verification Pro Solution - Cizo Technology Ser...
Global Identity Enrolment and Verification Pro Solution - Cizo Technology Ser...Global Identity Enrolment and Verification Pro Solution - Cizo Technology Ser...
Global Identity Enrolment and Verification Pro Solution - Cizo Technology Ser...
 
Balasore Best It Company|| Top 10 IT Company || Balasore Software company Odisha
Balasore Best It Company|| Top 10 IT Company || Balasore Software company OdishaBalasore Best It Company|| Top 10 IT Company || Balasore Software company Odisha
Balasore Best It Company|| Top 10 IT Company || Balasore Software company Odisha
 
Open Source Summit NA 2024: Open Source Cloud Costs - OpenCost's Impact on En...
Open Source Summit NA 2024: Open Source Cloud Costs - OpenCost's Impact on En...Open Source Summit NA 2024: Open Source Cloud Costs - OpenCost's Impact on En...
Open Source Summit NA 2024: Open Source Cloud Costs - OpenCost's Impact on En...
 
How to submit a standout Adobe Champion Application
How to submit a standout Adobe Champion ApplicationHow to submit a standout Adobe Champion Application
How to submit a standout Adobe Champion Application
 
Software Coding for software engineering
Software Coding for software engineeringSoftware Coding for software engineering
Software Coding for software engineering
 
2.pdf Ejercicios de programación competitiva
2.pdf Ejercicios de programación competitiva2.pdf Ejercicios de programación competitiva
2.pdf Ejercicios de programación competitiva
 
VK Business Profile - provides IT solutions and Web Development
VK Business Profile - provides IT solutions and Web DevelopmentVK Business Profile - provides IT solutions and Web Development
VK Business Profile - provides IT solutions and Web Development
 
What is Advanced Excel and what are some best practices for designing and cre...
What is Advanced Excel and what are some best practices for designing and cre...What is Advanced Excel and what are some best practices for designing and cre...
What is Advanced Excel and what are some best practices for designing and cre...
 
办理学位证(UQ文凭证书)昆士兰大学毕业证成绩单原版一模一样
办理学位证(UQ文凭证书)昆士兰大学毕业证成绩单原版一模一样办理学位证(UQ文凭证书)昆士兰大学毕业证成绩单原版一模一样
办理学位证(UQ文凭证书)昆士兰大学毕业证成绩单原版一模一样
 
Precise and Complete Requirements? An Elusive Goal
Precise and Complete Requirements? An Elusive GoalPrecise and Complete Requirements? An Elusive Goal
Precise and Complete Requirements? An Elusive Goal
 
What is Fashion PLM and Why Do You Need It
What is Fashion PLM and Why Do You Need ItWhat is Fashion PLM and Why Do You Need It
What is Fashion PLM and Why Do You Need It
 
A healthy diet for your Java application Devoxx France.pdf
A healthy diet for your Java application Devoxx France.pdfA healthy diet for your Java application Devoxx France.pdf
A healthy diet for your Java application Devoxx France.pdf
 
React Server Component in Next.js by Hanief Utama
React Server Component in Next.js by Hanief UtamaReact Server Component in Next.js by Hanief Utama
React Server Component in Next.js by Hanief Utama
 
Odoo Development Company in India | Devintelle Consulting Service
Odoo Development Company in India | Devintelle Consulting ServiceOdoo Development Company in India | Devintelle Consulting Service
Odoo Development Company in India | Devintelle Consulting Service
 
Machine Learning Software Engineering Patterns and Their Engineering
Machine Learning Software Engineering Patterns and Their EngineeringMachine Learning Software Engineering Patterns and Their Engineering
Machine Learning Software Engineering Patterns and Their Engineering
 
Comparing Linux OS Image Update Models - EOSS 2024.pdf
Comparing Linux OS Image Update Models - EOSS 2024.pdfComparing Linux OS Image Update Models - EOSS 2024.pdf
Comparing Linux OS Image Update Models - EOSS 2024.pdf
 
Hot Sexy call girls in Patel Nagar🔝 9953056974 🔝 escort Service
Hot Sexy call girls in Patel Nagar🔝 9953056974 🔝 escort ServiceHot Sexy call girls in Patel Nagar🔝 9953056974 🔝 escort Service
Hot Sexy call girls in Patel Nagar🔝 9953056974 🔝 escort Service
 
Folding Cheat Sheet #4 - fourth in a series
Folding Cheat Sheet #4 - fourth in a seriesFolding Cheat Sheet #4 - fourth in a series
Folding Cheat Sheet #4 - fourth in a series
 
PREDICTING RIVER WATER QUALITY ppt presentation
PREDICTING RIVER WATER QUALITY ppt presentationPREDICTING RIVER WATER QUALITY ppt presentation
PREDICTING RIVER WATER QUALITY ppt presentation
 
cpct NetworkING BASICS AND NETWORK TOOL.ppt
cpct NetworkING BASICS AND NETWORK TOOL.pptcpct NetworkING BASICS AND NETWORK TOOL.ppt
cpct NetworkING BASICS AND NETWORK TOOL.ppt
 

Achieving DevSecOps Outcomes with Tanzu Advanced- May 25, 2021

  • 1. Confidential │ ©2020 VMware, Inc. Achieving DevSecOps Outcomes with Tanzu Advanced David M. Zendzian (dmz) Global Field CISO, VMware Tanzu James Urquhart Strategic Executive Advisor VMware Tanzu Mike Koleno Chief Architect AHEAD
  • 2. Confidential │ ©2020 VMware, Inc. 2 Build or Acquire Software and the Hardware Required to Run It The Traditional Role of IT Applications Infrastructure
  • 3. Confidential │ ©2020 VMware, Inc. 3 Deliver better software to production, faster Structured Around Critical Capabilities Applications Infrastructure DEVELOPER EXPERIENCE OPERATOR EXPERIENCE Code and containerize custom applications Reduce risk with curated build packs and services Automate deployment of apps into production Enable developer self- service with K8s across clouds, clusters and teams Apply enterprise observability to drive decisions and reduce risk Ensure secure and reliable communication between services Multi-cloud
  • 4. Confidential │ ©2020 VMware, Inc. 4 Deliver better software to production faster with less risk Modern Application Demands Change The Conversation Applications Infrastructure LOW TOIL, LOW RISK PATH TO PRODUCTION LOW TOIL, LOW RISK SERVICE DELIVERY Multi-cloud
  • 5. Confidential │ ©2020 VMware, Inc. Themes in App Modernization Embracing Cloud- Native Architecture Enterprise Integration Redux From Batch To Event-Driven 1 2 3 View From
  • 6. Confidential │ ©2020 VMware, Inc. Creation (coding, sourcing, unit testing, dev local workspace) Build/Verify (CI, build, integration testing, registry, security scanning, etc) Deploy/Operate (CD, configuration, automation, load/stress testing) Connect (Networking, load balancing, ingress/egress, etc.) Observe (K8S, compute, network, storage, self-service) Five areas of focus for DevSecOps
  • 7. Confidential │ ©2020 VMware, Inc. 7 DevSecOps Capabilities – Build, Run, Manage The Right Tools, The Right Parts Modern businesses operate in a regulated world; it is only when internal policy, governance and audit teams partner with developers that they can fully meet these regulations.
  • 8. Confidential │ ©2020 VMware, Inc. 8 DevSecOps Capabilities – Create The Right Tools, The Right Parts Developers should focus on building great software, not achieving basic security for well- known architectures.
  • 9. Confidential │ ©2020 VMware, Inc. 9 Development environment • Tools • Databases • Services • Kubernetes CODE DevSecOps Flow – Create Version Control Includes: • Developer’s local development environment • IDEs and editors • Debugging tools • Docker/containerd • Application Stack • Frameworks • Libraries • Middleware/Runtime • Required shared services • Databases and file stores • Message/event queues • Cloud services • Version Control • Balanced team – includes security / risk • Before building – architecture requirements • Data Classification / Auth / Secrets / ConfigMgmt / Circuitbreakers / Logging / Input-Output Validation / BoM / Risk Assessment / Incident Response • Framework guardrails for ATO • Code signing
  • 10. Confidential │ ©2020 VMware, Inc. Run Enterprise Apps Are The Lifeblood of Organizations Today Build Any Cloud Any Platform Any Application Stack Innovate APP View From
  • 11. Confidential │ ©2020 VMware, Inc. The Four Principles of GitOps Source: GitOps Working Group Declarative The entire system is described declaratively Versioned The canonical desired system state is versioned in Git Automation Approved changes can be automatically applied to the system Self-Healing Software agents ensure correctness and alert on divergence View From
  • 12. Confidential │ ©2020 VMware, Inc. 12 DevSecOps Capabilities – Build/Verify The Right Tools, The Right Parts Bulding, testing, and packaging distributed applications requires a trusted supply- chain, verification of build integrity, and ensuring the immutability of delivered containers.
  • 13. Confidential │ ©2020 VMware, Inc. 13 Automated container packaging • Validated • Reproducible builds • Security and patching CI Container image registry • Secure artifacts with policies and role-based access • Image scanning and signing DevSecOps Flow – Build/Verify Version Control Includes: • Cloud Native Build Packs • Curated/Validated • CVE and Bug Mitigations • Upstream • Automated Builds • “Sec” in DevSecOps • Lots of tooling • Code validation / OSL / BoM / SAST / DAST / … • Image Signing • Always latest image • Code / RootFS / Runtime • Building for container no dev workstation • Vuln Scanning • Inventory
  • 14. Confidential │ ©2020 VMware, Inc. DEV STAGE PROD How Can The Tanzu Build Service Help? DEV STAGE PROD View From
  • 15. Confidential │ ©2020 VMware, Inc. Tanzu Harbor Auditing: All the operations to the repositories are tracked. View From
  • 16. Confidential │ ©2020 VMware, Inc. Tanzu Harbor Security Support: Integration with enterprise LDAP/AD systems for user authentication & management View From
  • 17. Confidential │ ©2020 VMware, Inc. Tanzu Harbor Vulnerability Scanning: Harbor uses Clair to scan images regularly and warn users of vulnerabilities. View From
  • 18. Confidential │ ©2020 VMware, Inc. 18 DevSecOps Capabilities – Deploy/Operate The Right Tools, The Right Parts Running custom software securely is not the act of a single organization or a single toolset. Intrinsic security is only achieved by an intentional coordination of security concerns, both between dependencies and up and down the stack.
  • 19. Confidential │ ©2020 VMware, Inc. Tanzu App Catalog Operator Confidence: Gain the confidence that your open-source containers conform to your security requirements, are built on your OS of choice, and are automatically updated View From
  • 20. Confidential │ ©2020 VMware, Inc. 20 Container image registry • Secure artifacts with policies and role-based access • Image scanning and signing CD CUSTOMER Validated catalog of runtimes and images • Curated, secure, validated OSS images DevSecOps Flow – Deploy/Operate Open source aligned Kubernetes • Certified, conformant Kubernetes runtime • Cluster-API-driven lifecycle management Centralized management for multiple clusters across clouds • Policy management, enforcement • Identity and access management • Backup and restore • Up to date source for dependencies automatically updated • Smoke testing for all critical platforms • Configuration hardening • AV / Malware scanning • Vulnerability Scanning • BoM – Libraries / versions / OSL • Signed • Trusted starting point for images and applications
  • 21. Confidential │ ©2020 VMware, Inc. 21 DevSecOps Capabilities – Connect/Observe The Right Tools, The Right Parts Managing (and securing) a complex systems portfolio requires being able to see the system and both its intended and emergent behaviors.
  • 22. Confidential │ ©2020 VMware, Inc. 22 CUSTOMER DevSecOps Flow – Connect Open source aligned Kubernetes • Certified, conformant Kubernetes runtime • Cluster-API-driven lifecycle management Centralized management for multiple clusters across clouds • Policy management, enforcement • Identity and access management • Backup and restore Connect and protect applications • Encrypted traffic, security policies, firewall • Kubernetes • Compliant – No lock-in / fastest response to upstream patches and updates • OPA / Gatekeeper policies • Network Policies • NSX/AVI/CNI integrations – extensive multi-layer segmentation options across multiple public and private clouds • Centralized Mission Control Vision • Extensive role based access • CLI for all functionality – api-first development • Cluster Groups • Policies – Cluster / Network / Image / CIS / STIG • Any Kubernetes • FedRamp High in process right now • Service Mesh • TLS Everywhere • mTLS client authentication • “zero-trust” application networks (when used with network policies)
  • 23. Confidential │ ©2020 VMware, Inc. Tanzu Mission Control Centralized management of policy and security for all clusters across all teams View From
  • 24. Confidential │ ©2020 VMware, Inc. 24 CUSTOMER DevSecOps Flow – Observe Open source aligned Kubernetes • Certified, conformant Kubernetes runtime • Cluster-API-driven lifecycle management Centralized management for multiple clusters across clouds • Policy management, enforcement • Identity and access management • Backup and restore Observability • Visibility across applications, clusters based on open standards Connect and protect applications • Encrypted traffic, security policies, firewall • Observability Vision • Millions of events per second • View of all clusters and applications • If architecture side prepared for observability • Forensic information • Abnormal performance • Unusual resource consumption • …
  • 25. Confidential │ ©2020 VMware, Inc. Tanzu Observability Application Performance: View distributed application maps with pre-built dashboards, and query/filter traces and metrics at scale View From
  • 26. Confidential │ ©2020 VMware, Inc. 26 Container image registry • Secure artifacts with policies and role-based access • Image scanning and signing Observability • Visibility across applications, clusters based on open standards Connect and protect applications • Encrypted traffic, security policies, firewall CD Development environment • Tools • Databases • Services • Kubernetes CODE CUSTOMER Automated container packaging • Validated • Reproducible builds • Security and patching CI Open source aligned Kubernetes • Certified, conformant Kubernetes runtime • Cluster-API-driven lifecycle management Centralized management for multiple clusters across clouds • Policy management, enforcement • Identity and access management • Backup and restore Validated catalog of runtimes and images • Curated, secure, validated OSS images DevSecOps Flow Version Control
  • 27. Confidential │ ©2020 VMware, Inc. 27 VMware Tanzu Advanced Benefits New K8s, same UI Adopt Kubernetes with no additional code or training required Multi-cloud simplified Operate VMs and containers side-by- side with a global control plane Platform Development Drive cloud native architecture Consistent policy Access, back up, controls etc. across all clusters for DevSecOps Cloud native constructs Drive adoption of microservices, containers, and data models App Navigator Drive cloud native patterns Intrinsic security for apps App security part of software development lifecycle Accelerate developer velocity Enable self-service and automate the path to production Application Modernization Catalyst for customer outcomes OPS: Embrace move to containers and K8s Simplify operation across multi-cloud SEC: Secure containers and open source Reduce risk across app portfolio DEV: Deliver apps and updates faster Re-platform or re-factor app-by-app Architect: Enable agile business through software Eliminate friction of Dev, Sec, and Ops

Editor's Notes

  1. So what?
  2. So what?
  3. So what?
  4. Need to fix
  5. Now it’s time to recap the benefits of Tanzu Advanced for your organization. From the operations side, you can benefit from that consistency of Kubernetes distribution and management. You can simplify your multi-cloud and hybrid cloud operation and manage policy centrally and effectively. From an application development side, developers can use the frameworks and tools that they prefer and plug into an automated, secure software supply chain to deliver their application to production. Self service vs. friction. Tanzu Advanced enables that shift-left of security so that containers are secure by design and continuously maintained. You can see how Tanzu Advanced brings these teams together to speed the delivery of modern apps securely and at scale. And Tanzu Labs can help you pull all of this together to help you build the platform that’s right for your organization and modernize your applications. And along the way, they can help you adopt a DevSecOps approach to software development and delivery.