Frank Moley
Engineering Manager - DataStax
Spring Hill, Kansas, United States
Actions
Frank Moley is an Engineering Manager for DataStax working on distributed cloud platforms.
His focus areas of software development include cloud native architectures, microservices architectures, DevOps and DevSecOps workflows, and general system design and development using Java, Python and Go. He is an open source software enthusiast and contributor. Much of time these days is spent build multi-cloud systems leveraging kubernetes as a platform and all the automation and tooling that comes with it.
Frank is also a content author for LinkedIn Learning and has many offerings on the Spring Framework, Java Development, and Architecture. Finally he is a co-founder of the KC Spring User Group as well as the KC Java User Group.
Area of Expertise
Topics
DevSecOps: Building a culture of Security
In today's world, we move a million miles an hour to deliver code as fast as possible with as few resources as possible. We have moved into agile teams that churn over backlog to get to production. We have merged development and operations to improve efficiencies in delivery. The next major step is integrating the ever changing world of Security into the pipeline to mitigate risks while delivering at a high throughput. This talk will discuss was to improve your team's culture around security and focus on ways to make it a first class citizen for your team instead of an afterthought.
Understanding Java Cryptography
Cryptography is one of those areas in software development that invokes immediate reactions in engineers. You either absolutely love the complexities of the math involved and the nuances of the algorithms, or you prefer to just ignore this entire segment of software development. Cryptography may be a complex mathematical concept, but leveraging the crypto libraries isn't complex once you have seen them in action and understand the use cases.
In this talk we will start our discussion with cryptography and first rule of crypto. We will then look at the most utilized aspects of the java crypto library and discuss proper use of the specific APIs. We will discuss use cases when you want to leverage a specific API, some of the options contained within, and some of the potential gotchas that could render your system less secure.
By the time you leave this talk, you should have a basic understanding of the java crypto packages and basic uses cases.
Secure Secret Storage with Hashicorp Vault
HashiCorp Vault is a premier OSS offering for providing a enterprise offering of secret storage for your system. We will look at the tool itself, its structure, and how to leverage it in your system. We will also look at some use cases that aim to make your systems more secure while complying with both OWASP recommendations on credential management as well as complying with appropriate auditing bodies.
Introduction to Spring
A deep dive into the core Spring Framework and some of the most popular projects. We will focus on configuring the application context, the bean lifecycle, data access, web applications, ReSTful web services, and the new hotness of Spring Boot.
Focuses include
Configuration of the Application Context
Bean Lifecycle
Data Access with Spring
Transaction Management for Relational Databases
Web Applications with Spring
ReSTful web services with Spring
Spring Boot
Testing with Spring
Spring Security
Cloud Native 12 Factory Application Development
Today's modern systems have global reach, and as such public, private, and hybrid clouds are the place to deploy your applications. The issue with many of these solutions, however, is that many parts of application development that work on big iron servers are no longer in play. Limited if any file systems, distributed backing resources, and complex team locations and structures need a newer way of doing things. 12 factor applications, or cloud native applications attempt to bring agile development and cloud resources into coherence.
This presentation will focus on the twelve distinct components, workflows, and techniques for cloud based application development. It will be language agnostic, and instead focus on the principles behind the actual development.
Please note that Sessionize is not responsible for the accuracy or validity of the data provided by speakers. If you suspect this profile to be fake or spam, please let us know.
Jump to top