Jump to navigation Jump to content
© Mapbox, © OpenStreetMap

Speaker

Yongkang He

Yongkang He

Founder @KSUG.AI @KubeSmart.AI | Creator @awstronaut @kubestrong

Singapore

Actions

Yongkang He is a Google Developer Expert (GDE), CNCF Kubestronaut, AWS Community Builder, Microsoft MVP, and Alibaba MVP with over 20 years of experience in the IT industry. Based in Singapore, he specializes in Kubernetes, cloud-native technologies, and multi-cloud solutions.

Widely recognized as one of the most certified professionals in the Kubernetes and cloud ecosystem, Yongkang is passionate about open source, community-driven learning, and making the cloud-native journey more affordable by sharing the latest resources, certifications, and event discounts. https://linktr.ee/ksug.ai

He actively contributes automation tools and hands-on learning content to help developers and engineers upskill faster. Check out his projects on GitHub. https://github.com/ksug-ai

Links

Area of Expertise

  • Information & Communications Technology

Topics

  • Kubernetes
  • Multi-Cloud
  • Security
  • CNAPP
  • OpenShift

Sessions

🔒 Securing AI Workloads on K8s with KubeArmor

As organizations deploy more AI and LLM workloads on Kubernetes—the importance of runtime security has never been greater. Since most AI inference and fine-tuning jobs run inside containers, securing your Kubernetes workloads effectively means securing your AI workloads.

In this session, we’ll explore KubeArmor, an open-source runtime security system purpose-built to enforce zero-trust execution and fine-grained policies across Kubernetes environments. You’ll see how KubeArmor can help safeguard not just microservices, but also AI pipelines, model-serving containers, and GPU-powered inference nodes.

Secure your EKS Containers

Container Security, Kubernetes Security, Cloud Security

Secure your containers with Falco

In this session, you will learn how to use Falco to secure your Containers on Kubernetes Cluster. A live demo will be included as part of the session. Falco is a cloud-native security tool. It provides near real-time threat detection for cloud, container, and Kubernetes workloads by leveraging runtime insights.

Platform Engineering: Powering the Next Cloud-Native Evolution

Distributed Platforms: How platform engineering is at the core of the next evolution in a workload-centric cloud native world.
Distributed platforms. Run workloads when it makes more sense
Platform Engineering, Create a scaleable and sustainable platform
Lifecycle, Security and compliance considerations through the whole lifecycle

Next-Gen Agentic Coding with Qoder

The development world is witnessing a seismic shift: the rise of Agentic Coding. Forget simple autocomplete—this is about autonomous AI agents that can plan, execute, and iterate on complex, multi-file software development tasks with minimal human intervention. It’s a race to build the ultimate developer teammate, where every tech giant is entering the fray with their own AI-powered environment, from Google's "antigravity" projects to Amazon's "Kiro."

In this session, we will dive deep into Qoder, Alibaba Cloud's pioneering Agentic Coding Platform. We will explore how Qoder moves beyond traditional coding assistants to offer true project-level understanding and full task automation.

What you will learn:

The Agentic Coding Paradigm: Understand the shift from passive AI assistants to autonomous, goal-oriented AI agents that can reason across your entire codebase.

Qoder's Core Capabilities: A hands-on look at what sets Qoder apart:

Quest Mode: Delegate complex features or refactoring tasks by simply writing the specifications. Qoder autonomously plans, codes, and tests the solution across multiple files.

Enhanced Context Engineering: How Qoder achieves a deep, project-wide understanding—including architecture, dependencies, and even your coding style—to drastically reduce AI "hallucinations."

Knowledge Visibility (Repo Wiki & Action Flow): Learn how Qoder makes the AI's "thinking" transparent and auditable by automatically generating documentation and showing its execution plan.

Practical Workflow Transformation: See real-world demos of using Qoder to accelerate feature delivery, refactor legacy code, and manage complex cross-file modifications within your development lifecycle.

Join us to learn how to transition from simply coding with AI to effectively delegating to an AI partner, maximizing your productivity and focusing on high-level design.

My Kubernetes Journey - the world's 1st kubestronaut

In this session, I’ll take you through my personal journey to becoming the world’s very first Kubestronaut. As the pioneer in this unique program, I’ll share what it took to reach this milestone and the dedication required to stay at the forefront of Kubernetes and cloud-native technology.

The Kubestronaut program is an elite recognition awarded to leaders who commit deeply to their Kubernetes education. To become a Kubestronaut, one must successfully complete the CNCF’s Kubernetes certifications – CKA, CKAD, CKS, KCNA, and KCSA – maintaining a high standard of knowledge and skill. As the first Kubestronaut, I’ll share insights into the rewards and opportunities that come with this title, including exclusive access to CNCF events, special community discounts, and, of course, the iconic Kubestronaut jacket. Join me to learn what it takes to embark on this unique path and how you, too, can set your course for Kubernetes excellence.

Managing LLM Workloads on GPUs with Docker + WASM + GPU

In this talk, I will begin with a brief introduction to WasmEdge, a CNCF Sandbox project, highlighting its seamless integration with existing cloud-native infrastructure such as Kubernetes, Docker, and CRI-O. This integration allows for the deployment, management, and execution of lightweight WebAssembly applications within these environments. My focus will be on how Kubernetes ecosystem tools work with WasmEdge WebAssembly applications.

Next, I will delve into managing LLM (Large Language Model) workloads on GPUs using advanced container tools. We will explore a novel approach that combines Docker, Crun, WasmEdge, and CDI to leverage host GPU devices effectively.

To illustrate the practical application of this new approach, I will present a live demo of running the Llama model using our WASM application.

Locking Down GKE: Secure Your Containers with KubeArmor

As organizations move workloads to Kubernetes on Google Cloud, container security becomes a critical challenge. In this session, we’ll dive into KubeArmor, an open-source runtime security enforcement system designed to safeguard Kubernetes workloads through fine-grained policies and zero-trust execution.

We’ll start with an introduction to KubeArmor—its architecture, core features, and why it’s a must-have for Kubernetes security. Next, you’ll learn how to automate the creation of a GKE cluster, deploy a containerized application, and finally apply KubeArmor policies to lock down your workloads against unauthorized actions.

Whether you’re new to Kubernetes security or looking to strengthen your GKE environment, this session provides a hands-on guide to improving your cloud-native security posture.



Learning Objectives:
1. Understand the fundamentals of KubeArmor and its role in runtime security for Kubernetes.
2. Learn how to automate GKE cluster provisioning and deploy applications efficiently.
3. Implement security policies with KubeArmor to protect containers running on Google Cloud.

Locking Down GKE: Secure Your Containers with KubeArmor

As organizations move workloads to Kubernetes on Google Cloud, container security becomes a critical challenge. In this session, we’ll dive into KubeArmor, an open-source runtime security enforcement system designed to safeguard Kubernetes workloads through fine-grained policies and zero-trust execution.

We’ll start with an introduction to KubeArmor—its architecture, core features, and why it’s a must-have for Kubernetes security. Next, you’ll learn how to automate the creation of a GKE cluster, deploy a containerized application, and finally apply KubeArmor policies to lock down your workloads against unauthorized actions.

Whether you’re new to Kubernetes security or looking to strengthen your GKE environment, this session provides a hands-on guide to improving your cloud-native security posture.



Learning Objectives:
1. Understand the fundamentals of KubeArmor and its role in runtime security for Kubernetes.
2. Learn how to automate GKE cluster provisioning and deploy applications efficiently.
3. Implement security policies with KubeArmor to protect containers running on Google Cloud.

KSUG.AI: Unleashing the Power of Cloud Native, Kubernetes & AI Community

Unveiling the Powerhouse of Knowledge: KSUG.AI - the KubeSmart & AI User Group!

My talk is about to empower the largest Cloud Native, Kubernetes and AI community. Step into the world of KSUG.AI, where passion meets innovation, and connections spark like wildfire. As the brainchild of its founder, the KSUG.AI Singapore meetup blossomed into a global phenomenon, stretching its reach from Australia to Canada and the UK, with the USA next on the horizon.

In just 2.5 electrifying years, our community has swelled to over 27,000 members worldwide, all fueled by the dedication of our volunteers. Join us and be part of the dynamic exchange shaping the future of Multi-Cloud, Cloud Native, Kubernetes & AI!

Integrating WasmEdge with Kubernetes for Managing LLM Workloads on GPUs

In this talk, I will introduce WasmEdge as a CNCF Sandbox project and highlight its seamless integration with existing cloud-native infrastructures such as Kubernetes, Podman, and CRI-O. We'll explore how these tools enable the deployment, management, and execution of lightweight WebAssembly applications.

Moving forward, I'll delve into managing LLM (Large Language Model) workloads on GPUs using advanced container tools. Specifically, we'll discuss a cutting-edge approach that combines Podman, Crun, WasmEdge, and CDI to effectively utilize host GPU devices.

To demonstrate the practical application of this approach, I'll conduct a live demo showcasing the deployment and execution of the Llama model using our WASM application.

Hands-on Workshop on Karpenter: Cost-Efficiency and Reliability

Are you ready to dive into the world of Kubernetes autoscaling with Karpenter? This workshop offers a unique opportunity to learn how to optimise your Kubernetes cluster autoscaling using Karpenter, a cutting-edge tool that enhances cost-efficiency and reliability.

Through hands-on activities, you will gain insights into configuring and managing Karpenter in any Kubernetes environment.

We’ll also guide you through the steps to access the Grafana dashboard, and upload a custom dashboard to visualise metrics collected by Prometheus being able to see the node autoscaling actions.

Effortless Kubernetes Backup, DR, and Migration with Velero

Discover the power of Velero, the go-to Kubernetes backup tool. This session will dive into how Velero works, demonstrating how to enable container backups with automation in just one minute. Walk away with practical insights and access to GitHub-hosted automation code to streamline your backup, disaster recovery, and migration workflows.

Effortless GKE Backups with Velero

Backing up your Kubernetes clusters doesn't have to be complicated. In this session, you'll discover Velero, the leading open-source tool for Kubernetes backup and migration.

We'll start with a quick overview of how Velero works and why it's a must-have for your disaster recovery strategy. Then, we'll demonstrate a super-efficient, automated workflow to set up backups for your Google Kubernetes Engine (GKE) containers. You'll see how to get a GKE cluster running with a single command and enable container backups in under a minute.

You'll walk away with practical knowledge and access to the exact automation code used in the session, hosted on GitHub. This session will give you the tools and insights to simplify your backup, recovery, and cluster migration processes for good.

Effortless GKE Backups with Velero

Backing up your Kubernetes clusters doesn't have to be complicated. In this session, you'll discover Velero, the leading open-source tool for Kubernetes backup and migration.

We'll start with a quick overview of how Velero works and why it's a must-have for your disaster recovery strategy. Then, we'll demonstrate a super-efficient, automated workflow to set up backups for your Google Kubernetes Engine (GKE) containers. You'll see how to get a GKE cluster running with a single command and enable container backups in under a minute.

You'll walk away with practical knowledge and access to the exact automation code used in the session, hosted on GitHub. This session will give you the tools and insights to simplify your backup, recovery, and cluster migration processes for good.

Effortless GKE Backups with Velero

Backing up your Kubernetes clusters doesn't have to be complicated. In this session, you'll discover Velero, the leading open-source tool for Kubernetes backup and migration.

We'll start with a quick overview of how Velero works and why it's a must-have for your disaster recovery strategy. Then, we'll demonstrate a super-efficient, automated workflow to set up backups for your Google Kubernetes Engine (GKE) containers. You'll see how to get a GKE cluster running with a single command and enable container backups in under a minute.

You'll walk away with practical knowledge and access to the exact automation code used in the session, hosted on GitHub. This session will give you the tools and insights to simplify your backup, recovery, and cluster migration processes for good.

Container's DR on EKS made easy

Implementing Disaster Recover for your containers can be very challenging.

Beyond the Cluster: Scaling a Global Cloud-Native & AI Community to 180,000+

While Kubernetes provides the infrastructure, communities provide the soul. This session explores the journey of KSUG.AI (KubeSmart & AI User Group), which began as a single meetup in Singapore in August 2022 and exploded into a global network of 180,000+ passionate learners by 2025.

We will delve into the strategies used to bridge the gap between Cloud-Native and Generative AI, focusing on how to build hubs that foster genuine knowledge exchange, networking, and collaboration. Drawing from a "KubeSmart" philosophy—prioritizing community impact and real-world ROI over vanity metrics—the speaker will share a blueprint for scaling volunteer-led organizations.

Whether you are an engineer looking to lift others up or a leader trying to build a local chapter, this talk offers a hands-on guide to growing a resilient, impact-driven ecosystem.

AI Image Generator on Kubernetes

"Let’s explore how AI can help us simplify our work. In this hands-on workshop, I’ll demonstrate how to build an 🎨 AI Image Generator powered by Stable Diffusion on Kubernetes. Together, we’ll deploy a Python app that generates AI images from text prompts — running on CPU or GPU nodes inside a Kubernetes cluster.

🚀 What you’ll see in action:

Generate AI images from text prompts

Run workloads on Kubernetes (CPU or GPU nodes)

Scale seamlessly with Kubernetes deployments

Compare performance: GPU (NVIDIA T4 ~30 seconds per image) vs CPU (15+ minutes per image)

By the end, you’ll walk away with practical know-how to set up your own AI playground on Kubernetes, blending AI creativity with cloud-native scalability."

1 CMD ~20 mins to Automate an EKS Cluster

EKS Cluster Automation

Locking Down GKE: Secure Your Containers with KubeArmor

As organizations move workloads to Kubernetes on Google Cloud, container security becomes a critical challenge. In this session, we’ll dive into KubeArmor, an open-source runtime security enforcement system designed to safeguard Kubernetes workloads through fine-grained policies and zero-trust execution.

We’ll start with an introduction to KubeArmor—its architecture, core features, and why it’s a must-have for Kubernetes security. Next, you’ll learn how to automate the creation of a GKE cluster, deploy a containerized application, and finally apply KubeArmor policies to lock down your workloads against unauthorized actions.

Whether you’re new to Kubernetes security or looking to strengthen your GKE environment, this session provides a hands-on guide to improving your cloud-native security posture.



Learning Objectives:
1. Understand the fundamentals of KubeArmor and its role in runtime security for Kubernetes.
2. Learn how to automate GKE cluster provisioning and deploy applications efficiently.
3. Implement security policies with KubeArmor to protect containers running on Google Cloud.

Events

KSUG.AI Australia #55 - Melbourne Meetup @AWS - 14 Jan 2025 User group Sessionize Event

January 2026 Melbourne, Australia

Devfest Brisbane 2025 Sessionize Event

October 2025 Brisbane, Australia

KubeCon + CloudNativeCon + Open Source Summit + AI_Dev China 2024 Sessionize Event

August 2024 Hong Kong

Global Azure Bootcamp Singapore Sessionize Event

May 2023

AWS Community Day Singapore 2023 Sessionize Event

January 2023 Singapore

Yongkang He

Founder @KSUG.AI @KubeSmart.AI | Creator @awstronaut @kubestrong

Singapore

Links

Actions

Please note that Sessionize is not responsible for the accuracy or validity of the data provided by speakers. If you suspect this profile to be fake or spam, please let us know.

Jump to top