Kristina Devochko
Platform Engineer. Interested in all things tech, cats and motorcycles. Advocate of being nice and kind to each other, animals, nature and planet as a whole.
Oslo, Norway
Actions
Kristina Devochko is a platform engineer, tech content creator, speaker and tech community contributor based in Norway. She focuses on all things cloud native, Kubernetes, cloud security and green tech. Kristina is an owner of kristhecodingunicorn.com tech blog, a CNCF Ambassador, Microsoft Azure MVP, Green Software Champion, CNCF TAG Environmental Sustainability chair, co-organizer of multiple meetup groups and mentor. In her free time Kristina enjoys doing CTF challenges, reading and cuddling with her four cats.
Kristina's great passion is to share her knowledge with others and provide guidance on how to build systems with sustainability, security and cloud native principles at its core. Kristina strongly believes that contributing to making the world a better place by volunteering is important, therefore being a volunteer is a big part of her life. Both when it comes to contributing back to the tech community and non-profit organizations.
Badges
Area of Expertise
Topics
AKS Survival Pack: what to consider before going all-in with Azure Kubernetes Service
Kubernetes has been a hot and popular technology for a while - everyone wants it, everyone needs it, everyone loves it. Now that cloud providers like Microsoft are offering a managed Kubernetes service it sounds like setting up a new cluster and start deploying applications to it should be Easy Peasy Lemon Squeezy...just a few "Next-Next-Next" clicks in the portal, right? Right?!🙃
Well, reality is more brutal than that. Yes, it's true that Microsoft offers Azure Kubernetes Service as a partially managed offering, but it doesn't mean that Microsoft takes responsibility for everything. Long before you start running your applications on AKS, especially in production, it's extremely important for you to be aware of what you will be responsible for in terms of operating, securing and maintaining AKS clusters - and how these changes will affect the rest of your organization. Especially your dearest developers.
That's when this AKS Survival Pack comes to the rescue! In this session I will share experiences from my own journey of migrating from VM-hosted applications to AKS and containers, what learnings I have taken out of it and what you should consider and plan for BEFORE you start your Azure Kubernetes Service journey.
During this session I'll touch upon considerations related to:
- Culture, mindset and readiness of your organization;
- Readiness and maturity of your application(s);
- Day 2 Operations;
- Security and configuration of AKS clusters;
- Cluster upgrade strategy;
- Developer experience;
During the session I will also show a few examples (based on real-life events), of how changes of minor significance (like missing request and resource limits in a deployment template) can have disastrous consequences in production - and how the probability of such issues happening can be minimized with proper policies, planning...and a sprinkle of automation!😼
Managed Kubernetes Service: Day Zero Survival Pack
Now that cloud providers are offering a managed Kubernetes service it sounds like setting up a new Kubernetes cluster and start deploying applications to it should be really easy...but reality is more brutal than that.
Even though Kubernetes Service can be offered as a partially managed offering it doesn't mean that cloud provider takes responsibility for everything. It's therefore extremely important to be aware of what you will be responsible for in terms of operating, securing and maintaining managed Kubernetes clusters - and how these changes will affect the rest of your organization.
In this session we'll take a look at what you should consider and include in the planning and designing phase (Day Zero) BEFORE going all-in with managed Kubernetes Service.
By looking at some real-life examples we'll also see what the consequences may be if some of the areas are not planned for or are downprioritized.
Exploring DevSecOps controls for Kubernetes throughout the value chain
One of many misconceptions that I have experienced (and believed at some point of my dark past) while working with Kubernetes, and specifically with managed Kubernetes services like Azure Kubernetes Service, is that it's secure by default. I hate to break it to you but...in reality it's a trap.
Just like many other services that are offered by cloud providers, managed Kubernetes services also fall under a shared responsibility model where you, as a service consumer, have a high level of responsibility for keeping your Kubernetes clusters and workloads that are running on them, secure.
Fortunately, there are many valuable resources that can help us and guide us on this journey towards more secure Kubernetes clusters. In this session, based on concrete examples, I will show how DevSecOps objectives can be applied to Kubernetes clusters and workloads that are running on those clusters. I will also demonstrate a few of the misconceptions regarding Kubernetes cluster security in action and how those can be mitigated with help of tools like Open Policy Agent, Trivy, and a few others.
Exploring chaos engineering…the FUN way!
In this session we will find out what chaos engineering is, what it's purpose is and how we can use it to test and strengthen resilience and availability of our systems and applications. We'll take a look at how chaos engineering can be applied both to Kubernetes and beyond.
As part of the session we'll take to the test the serious, enterprise-grade chaos engineering tools like Azure Chaos Studio, but also the fun, gamified chaos engineering tools like KubeInvaders, that were created by the open source community.
Sustainable Kubernetes and how YOU can make an impact
Climate change affects us all and it’s impact can be seen throughout all aspects of our life, including software engineering. Reducing carbon footprint and following sustainable software engineering principles is now a part of every software company’s goal, but do you know that YOU, as a developer or a platform engineer, have all the power to contribute to making your technical platform and this world a better, greener place?
Kubernetes is one of the technologies that comes in multiple flavors, but it’s up to YOU to utilize it in a way that will lessen harmful impacts of global warming.
During this session Kristina will shed light on how sustainable software engineering principles can be applied to Kubernetes and it’s workloads, as well as which eye-opening insights she has gained during her Kubernetes journey and what concrete actions you can take with you and apply further in your projects after the conference in order to make your Kubernetes workloads more eco-friendly.
From Day Zero To Production with Azure Container Apps
Once we're thinking about containerization and deploying containerized applications, Kubernetes often comes to mind as the most popular and relevant service that gets this job done. But as with anything in tech industry Kubernetes has its own trade-offs, even if it's a managed Kubernetes service, and for many use cases it may be an overkill. Azure Container Apps may be a more suitable, straightforward alternative and in this session we will take a look at how Azure Container Apps differs from Kubernetes/AKS and when it would make sense to utilize this service, as well as what limitations it currently has.
This will be a hands-on, demo-heavy session where we will take a full journey from having just the application code and application container image on our hands to creating, configuring and deploying the containerized application to a production-like environment with Azure Container Apps. As part of this journey we will focus on some of the best practices to get the application up and running in Azure Container Apps, just as you would do in an enterprise setting. This journey will include implementing infrastructure-as-code with Bicep for Azure Container Apps and related resources, workflow for provisioning the resources with GitHub Actions and configuration details for securing and optimizing Azure Container Apps.
Microsoft Azure Pakistan Community - ( Meetup - Call for Speakers) -2022 User group Sessionize Event Upcoming
Cloud Lunch and Learn Weekly Sessions 25 User group Sessionize Event Upcoming
Festive Tech Calendar 2023 Sessionize Event
MVP-Dagen 2023 Sessionize Event
Azure Back to School 2023 Sessionize Event
NDC Oslo 2023 Sessionize Event
Stockholm TECH Show 2023 Sessionize Event
Azure user group Norway User group Sessionize Event
Azure Spring Clean 2023 Sessionize Event
Swetugg Stockholm 2023 Sessionize Event
Festive Tech Calendar 2022 Sessionize Event
Azure User Group Sweden User group Sessionize Event
Azure Back to School 2022 Sessionize Event
Welsh Azure User Group - Event User group Sessionize Event
Please note that Sessionize is not responsible for the accuracy or validity of the data provided by speakers. If you suspect this profile to be fake or spam, please let us know.
Jump to top