Register and join us!
What shall we talk about
From the zoo to the lunapark, or how we implemented Gitlab for the whole bank
Sergey Kupriyanov, Raiffeisenbank
About the speaker: Sergey is the product owner of the backend tools team, part of the acceleration team. The team develops and implements developer tools within Raiffeisenbank. Sergey came to the bank as a tester, worked in the finance team. Now he is engaged in infrastructure projects, DevOps, CI / CD processes.
About the talk: It would seem that quite recently we got rid of the zoo of tools and switched to the Atlassian and Bamboo stack, in particular, but the happiness turned out to be short-lived - our requests increased, and we were faced with the need to choose a new Ci / Cd tool.
In the report, we will tell you why Bamboo did not fit, whether its choice was a mistake or not, what criteria we set when choosing a new tool (and money is only one of them), and also how to correctly approach changing tools in a large organization, nothing forget and, most importantly, try to take into account the views of stakeholders.
The art of the tightrope walker - business and art
Andrey Yumashev, Liters
About the speaker: CTO for information support in Liters. More than 15 years in IT, the last few years - an evangelist of DevOps philosophy, a specialist in building communications and processes in the IT part of the business.
About the report: We always know what to do. What is being done is an exceptional art. It is difficult to drive it into the framework of metrics and reports. I'll tell you how to correctly maintain a balance between business values โโand technical debt, and what it is all about. And how to impose metrics on activities and build smooth and flexible processes that are understandable to the company's management.
Modern approach to secure development in large IT companies
Vladimir Pazukhin, Ernst & Young (EY)
About speaker: Vladimir is a manager of Ernst & Young, since 2013 he has been involved in cybersecurity projects and specializes in application security testing, source code security analysis, information system risk analysis and cybersecurity process improvement. Area of โโinterest: integrating information security controls and tests into DevOps processes, analyzing vulnerabilities in modern online services and mobile applications, and automating the identification of such vulnerabilities.
About the report:With the dramatically accelerated development cycle, traditional application security controls are no longer working. At the same time, the larger the company, the higher the cost of an error in the code, which can lead to cyber fraud or leakage of confidential information. Therefore, progressive companies incorporate various processes and tools for code security control into the development cycle with minimal impact on release time. This report provides an overview of such processes and tools, as well as several examples of their use by global IT companies.
>>> Let's start the meetup at 18:00 MSK.
Register to receive a link to the broadcast : the letter will come to your mail.
See you online!