Most Active Speaker

Kristina Devochko

Kristina Devochko

Preaching about all things cloud native, Kubernetes, green tech and cats 😼

Oslo, Norway

Kristina Devochko is a platform engineer, tech content creator, speaker and tech community contributor based in Norway. She focuses on all things cloud native, Kubernetes, cloud security and green tech. Kristina is an owner of kristhecodingunicorn.com tech blog, a CNCF Ambassador, Microsoft Azure MVP, CNCF TAG Environmental Sustainability tech lead, Kubernetes Unpacked podcast host, co-organizer of multiple meetup groups and mentor. In her free time Kristina enjoys doing CTF challenges, reading and cuddling with her four cats.

Kristina's great passion is to share her knowledge with others and provide guidance on how to build systems with sustainability, security and cloud native principles at its core. Kristina strongly believes that contributing to making the world a better place by volunteering is important, therefore being a volunteer is a big part of her life. Both when it comes to contributing back to the tech community and non-profit organizations.

Awards

Area of Expertise

  • Information & Communications Technology
  • Environment & Cleantech

Topics

  • .NET
  • C#.Net
  • .NET (Core) development
  • Azure
  • Microsoft Azure
  • Azure DevOps
  • Azure Security
  • Azure Kubernetes Services (AKS)
  • Cloud Security
  • Application Security
  • DevSecOps and GitOps in practice
  • DevSecOps
  • Modern Software Development
  • DevOpsCulture
  • Software Deveopment
  • Cloud & DevOps
  • DevOps
  • Cloud Security Architecture
  • Software Development
  • Web Development
  • DevOps & Automation
  • Software Architecture
  • Microservice Architecture
  • Cloud Architecture
  • Azure Architecture
  • Kubernetes
  • Kubernetes Security
  • Containerization
  • Container Security
  • Azure Container Registry (ACR)
  • Azure Container Instance (ACI)
  • Windows containers
  • Azure container Apps
  • Container and Kubernetes security
  • Docker
  • GitHub
  • GitHub Actions

AKS Survival Pack: what to consider before going all-in with Azure Kubernetes Service

Kubernetes has been a hot and popular technology for a while - everyone wants it, everyone needs it, everyone loves it. Now that cloud providers like Microsoft are offering a managed Kubernetes service it sounds like setting up a new cluster and start deploying applications to it should be Easy Peasy Lemon Squeezy...just a few "Next-Next-Next" clicks in the portal, right? Right?!🙃

Well, reality is more brutal than that. Yes, it's true that Microsoft offers Azure Kubernetes Service as a partially managed offering, but it doesn't mean that Microsoft takes responsibility for everything. Long before you start running your applications on AKS, especially in production, it's extremely important for you to be aware of what you will be responsible for in terms of operating, securing and maintaining AKS clusters - and how these changes will affect the rest of your organization. Especially your dearest developers.

That's when this AKS Survival Pack comes to the rescue! In this session I will share experiences from my own journey of migrating from VM-hosted applications to AKS and containers, what learnings I have taken out of it and what you should consider and plan for BEFORE you start your Azure Kubernetes Service journey.

During this session I'll touch upon considerations related to:
- Culture, mindset and readiness of your organization;
- Readiness and maturity of your application(s);
- Day 2 Operations;
- Security and configuration of AKS clusters;
- Cluster upgrade strategy;
- Developer experience;

During the session I will also show a few examples (based on real-life events), of how changes of minor significance (like missing request and resource limits in a deployment template) can have disastrous consequences in production - and how the probability of such issues happening can be minimized with proper policies, planning...and a sprinkle of automation!😼

Managed Kubernetes Service: Day Zero Survival Pack

Now that cloud providers are offering a managed Kubernetes service it sounds like setting up a new Kubernetes cluster and start deploying applications to it should be really easy...but reality is more brutal than that.

Even though Kubernetes Service can be offered as a partially managed offering it doesn't mean that cloud provider takes responsibility for everything. It's therefore extremely important to be aware of what you will be responsible for in terms of operating, securing and maintaining managed Kubernetes clusters - and how these changes will affect the rest of your organization.

In this session we'll take a look at what you should consider and include in the planning and designing phase (Day Zero) BEFORE going all-in with managed Kubernetes Service.

By looking at some real-life examples we'll also see what the consequences may be if some of the areas are not planned for or are downprioritized.

Exploring DevSecOps controls for Kubernetes throughout the value chain

One of many misconceptions that I have experienced (and believed at some point of my dark past) while working with Kubernetes, and specifically with managed Kubernetes services like Azure Kubernetes Service, is that it's secure by default. I hate to break it to you but...in reality it's a trap.

Just like many other services that are offered by cloud providers, managed Kubernetes services also fall under a shared responsibility model where you, as a service consumer, have a high level of responsibility for keeping your Kubernetes clusters and workloads that are running on them, secure.

Fortunately, there are many valuable resources that can help us and guide us on this journey towards more secure Kubernetes clusters. In this session, based on concrete examples, I will show how DevSecOps objectives can be applied to Kubernetes clusters and workloads that are running on those clusters. I will also demonstrate a few of the misconceptions regarding Kubernetes cluster security in action and how those can be mitigated with help of tools like Open Policy Agent, Trivy, and a few others.

Exploring chaos engineering…the FUN way!

In this session we will find out what chaos engineering is, what it's purpose is and how we can use it to test and strengthen resilience and availability of our systems and applications. We'll take a look at how chaos engineering can be applied both to Kubernetes and beyond.

As part of the session we'll take to the test the serious, enterprise-grade chaos engineering tools like Azure Chaos Studio, but also the fun, gamified chaos engineering tools like KubeInvaders, that were created by the open source community.

Sustainable Kubernetes and how YOU can make an impact

Climate change affects us all and it’s impact can be seen throughout all aspects of our life, including software engineering. Reducing carbon footprint and following sustainable software engineering principles is now a part of every software company’s goal, but do you know that YOU, as a developer or a platform engineer, have all the power to contribute to making your technical platform and this world a better, greener place?

Kubernetes is one of the technologies that comes in multiple flavors, but it’s up to YOU to utilize it in a way that will lessen harmful impacts of global warming.

During this session Kristina will shed light on how sustainable software engineering principles can be applied to Kubernetes and it’s workloads, as well as which eye-opening insights she has gained during her Kubernetes journey and what concrete actions you can take with you and apply further in your projects after the conference in order to make your Kubernetes workloads more eco-friendly.

From Day Zero To Production with Azure Container Apps

Once we're thinking about containerization and deploying containerized applications, Kubernetes often comes to mind as the most popular and relevant service that gets this job done. But as with anything in tech industry Kubernetes has its own trade-offs, even if it's a managed Kubernetes service, and for many use cases it may be an overkill. Azure Container Apps may be a more suitable, straightforward alternative and in this session we will take a look at how Azure Container Apps differs from Kubernetes/AKS and when it would make sense to utilize this service, as well as what limitations it currently has.

This will be a hands-on, demo-heavy session where we will take a full journey from having just the application code and application container image on our hands to creating, configuring and deploying the containerized application to a production-like environment with Azure Container Apps. As part of this journey we will focus on some of the best practices to get the application up and running in Azure Container Apps, just as you would do in an enterprise setting. This journey will include implementing infrastructure-as-code with Bicep for Azure Container Apps and related resources, workflow for provisioning the resources with GitHub Actions and configuration details for securing and optimizing Azure Container Apps.

Microsoft Azure Pakistan Community - ( Meetup - Call for Speakers) -2022 User group Sessionize Event Upcoming

Not scheduled yet.

Cloud Lunch and Learn Weekly Sessions 24 User group Sessionize Event Upcoming

Not scheduled yet.

Festive Tech Calendar 2023 Sessionize Event

December 2023

MVP-Dagen 2023 Sessionize Event

October 2023 Oslo, Norway

Azure Back to School 2023 Sessionize Event

September 2023

NDC Oslo 2023 Sessionize Event

May 2023 Oslo, Norway

Stockholm TECH Show 2023 Sessionize Event

May 2023 Stockholm, Sweden

Azure user group Norway User group Sessionize Event

March 2023 Oslo, Norway

Azure Spring Clean 2023 Sessionize Event

March 2023

Swetugg Stockholm 2023 Sessionize Event

February 2023 Stockholm, Sweden

Festive Tech Calendar 2022 Sessionize Event

December 2022

Azure User Group Sweden User group Sessionize Event

September 2022

Azure Back to School 2022 Sessionize Event

September 2022

Welsh Azure User Group - Event User group Sessionize Event

February 2022

Kristina Devochko

Preaching about all things cloud native, Kubernetes, green tech and cats 😼

Oslo, Norway