DevOps Sauna from Eficode

Send us a textThis episode of the DevOps Sauna gives a recap on all of the speaker talks and topics at The Future of Software in Helsinki.Marc and Darren sit down with Pinja Kujala to discuss all of the fun and exciting talks at The DEVOPS Conference, as well as share their own stories and experiences with each of the speakers and organizations that came.Sign up for The Future of Software in London (March 26, 2025):https://www.thedevopsconference.com/london

Send us a textThis episode recaps all the speaker talks and topics at The DEVOPS Conference 2024 in Copenhagen and Stockholm.Marc and Darren sit down and discuss all of the fun and exciting talks at The DEVOPS Conference, from stories on how value stream management empowers DevOps to how Observability 2.0 is changing the software landscape.Sign up for The Future of Software in London (March 26, 2025):https://www.thedevopsconference.com/londonThis is the mid-pitch from Pinja promoting The Future of Software event in London on March 26, 2025. This is the mid-pitch audio file from Darren Richardson, promoting The Future of Software event in London on March 26, 2025.

Send us a textIn this episode of DevOps Sauna, Marc and Darren discuss the latest stories in DevSecOps, including using AI for automating governance and an increased focus on companies using RAG models to help leverage internal documentation to streamline DevSecOps tasks. Marc and Darren also highlight other developments, including IBM acquiring HashiCorp, updates to Terraform and the IO domain, and the OpenSSH "regression" vulner  For more content related to security, check out this episode on our DevOps Sauna podcast covering GitHub SBOMs, AI tools from Microsoft and GitLab, JetBrains Aqua, recent cyber threats, and more: https://www.eficode.com/devops-podcast/devops-news-innovations-and-cybersecurity-insightsTransform your software development with AI by prioritizing security in the fast-paced development lifecycle. Learn from our page: https://www.eficode.com/transforming-software-development-with-ai-and-devops

Send us a textIn this episode, Darren and Marc are joined by Dan Grøndahl and Emma Dahl-Jeppesen.Emma and Dan advocate for a product-driven approach to platform engineering, with clear boundaries and purpose to prevent team burnout—a shift from traditional, sometimes ambiguous DevOps roles.They humorously explore “10 things we hate about platform engineering,” touching on issues like the build vs. buy dilemma and the risk of rebranding DevOps teams without adopting true platform practices.They also stress the importance of intentional, user-centered approaches, and Marc highlights the challenge of avoiding "leaking abstractions" that overburden developers.With Emma’s “annoyance-driven development” tip, encouraging asking “why” to uncover user needs, the session wraps up with anticipation for deeper discussions at The DevOps Conference: https://www.thedevopsconference.com/?utm_campaign=The%20DEVOPS%20Conference%2022&utm_source=PodcastCheck out our ultimate guide to platform engineering: https://www.eficode.com/platform-engineeringThis is the mid-pitch from Pinja promoting The Future of Software event in London on March 26, 2025.

Send us a textThis episode delves into the key topics surrounding security, SBOMs (Software Bill of Materials), AI, and the seamless integration of security tools into DevOps.Priyanka Syal emphasizes the importance of transparency in both software and training data, especially as AI introduces new challenges around ethics and security. Darren adds that many organizations are still struggling with basic security hygiene and SBOMs, but the advent of AI amplifies the urgency to track dependencies.The discussion highlights that companies, big or small, must embrace security measures proactively. Security, done right, should be woven seamlessly into every phase of development without hindering creativity or innovation.Learn how DevOps supports the use of AI and more from our page on transforming software development with AI and DevOps: https://www.eficode.com/transforming-software-development-with-ai-and-devopsDon't miss The DevOps Conference in Stockholm and Copenhagen in November: https://www.thedevopsconference.com/?utm_campaign=The%20DEVOPS%20Conference%2022&utm_source=PodcastThis is the mid-pitch from Pinja promoting The Future of Software event in London on March 26, 2025.

Send us a textIn this episode, Marc and Darren chat with Charity Majors, co-founder and CTO of Honeycomb. They explore how Charity balances a public role in tech, her thoughts on leadership, and the importance of building diverse, inclusive teams.Charity opens up about her journey with Honeycomb, her personal life, and why she values hiring junior engineers.The conversation also touches on the future of AI in engineering and career paths, including the engineering-manager pendulum.If you'd like to hear Charity speak at The DevOps Conference in Stockholm and Copenhagen in November, there's still time: https://www.thedevopsconference.com/?utm_campaign=The%20DEVOPS%20Conference%2022&utm_source=PodcastThis is the mid-pitch from Pinja promoting The Future of Software event in London on March 26, 2025.

Send us a textIn this episode of DevOps Sauna, Marc and Darren are joined by Dan Khurram to discuss a white paper that originated from a collaborative workshop focused on AI scenarios. The workshop, which involved various experts, explores the potential impacts of AI on businesses.The conversation delves into the process behind creating the white paper, the different AI scenarios examined, and the balance between positive and negative impacts of AI.A key focus in the discussion is the "AI for all" scenario, where they explore ethical considerations, governance challenges, and the ways AI could shape business operations and the workforce in the future.Get the white paper here: https://www.eficode.com/ai-driven-product-organizations-of-the-futureDiscover how DevOps supports the use of artificial intelligence and more: https://www.eficode.com/transforming-software-development-with-ai-and-devopsThis is the mid-pitch from Pinja promoting The Future of Software event in London on March 26, 2025.

Send us a textIn this episode of DevOps Sauna, Marc and Darren discuss the recent arrest of Telegram founder Pavel Durov by French authorities over allegations of failing to moderate criminal activities on the platform.They explore the complexities of Telegram's encryption practices, noting that while the platform claims to offer secure communication, its lack of default end-to-end encryption raises concerns.The conversation delves into the broader implications of platform security, comparing Telegram with other messaging apps like WhatsApp and Signal.For more content related to security, check out this episode on our DevOps Sauna podcast covering GitHub SBOMs, AI tools from Microsoft and GitLab, JetBrains Aqua, recent cyber threats, and more: https://www.eficode.com/devops-podcast/devops-news-innovations-and-cybersecurity-insightsTransform your software development with AI by prioritizing security in the fast-paced development lifecycle. Learn from our page: https://www.eficode.com/transforming-software-development-with-ai-and-devops

Send us a textHelen Beal, a renowned expert in DevOps and Value Stream Management (VSM), steps into the sauna with Marc and Darren to discuss the significance of experimentation in production environments and the role of leadership in driving successful DevOps transformations.Helen also explores the evolution and importance of Value Stream Management in modern DevOps practices and shares insights from working with organizations to improve their software delivery processes and how to effectively measure and manage value streams. This episode is a preview of the themes and discussions that will be explored at The DevOps Conference in Stockholm and Copenhagen in November 2024.Book your space to learn from Helen alongside other experts at The DevOps Conference: https://www.thedevopsconference.com/?utm_campaign=The%20DEVOPS%20Conference%2022&utm_source=Podcast Everything you need to know for a successful DevOps transformation can be found here: https://www.eficode.com/devops-transformationThis is the mid-pitch from Pinja promoting The Future of Software event in London on March 26, 2025. This is the mid-pitch audio file from Darren Richardson, promoting The Future of Software event in London on March 26, 2025.

Send us a textMarc and Darren discuss the recent CrowdStrike root cause analysis (RCA) following a significant incident where an update to their Falcon sensor caused around 8 million Windows computers to crash.The incident was traced back to an error in the software update that expected 20 inputs but received 21, leading to widespread blue screen crashes. The importance of thorough testing, including exploratory and canary testing, to catch issues before widespread deployment is covered by Marc and Darren, who also discuss the pressures in security software development. Rapid responses are critical, and this can lead to oversights.One of the key takeaways is the high quality and transparency of CrowdStrike's RCA, which provided a detailed timeline, technical explanations, and a third-party review. Marc and Darren advocate for shifting from traditional "root cause analysis" to a "contributing factors analysis" to avoid placing blame and encourage open communication and learning from mistakes.In this insightful episode, find out why fostering a generative organizational culture that encourages learning and transparency is so important, especially in security-focused development environments.Watch our webinar to see how DevOps practices and tools help you integrate security and compliance into your software development: https://www.eficode.com/events/compliance-and-security-in-the-devops-worldTake our DevSecOps assessment to reveal where you are and how to secure your pipelines, toolchain, and products both now and in the future: https://www.eficode.com/services/devsecops-assessment

Send us a textIn this season finale, Marc and Darren take a reflective journey through the most compelling episodes of late, encapsulating key themes in DevOps, AI, and security while reflecting on the insights shared by notable guests such as Amanda Brock and Cheryl Hung. They revisit key discussions on topics such as the challenges of AI in infrastructure, the importance of psychological safety, and the evolving landscape of open source software.Our hosts also delve into lighter moments, including an April Fool’s satire and lessons from everyday life, tying them back to the broader themes of technology and innovation.This finale not only recaps the season but also sets the stage for the exciting developments ahead in the world of DevOps.What do the virtues of the warrior and DevOps have in common? Find out how Wu De serves as a guiding framework in many situations in life, including DevOps consultancy: https://www.eficode.com/blog/become-a-wu-de-devops-consultantWe created an in-depth overview of AI and DevOps and how you can transform your software development: https://www.eficode.com/transforming-software-development-with-ai-and-devopsThis is the mid-pitch from Pinja promoting The Future of Software event in London on March 26, 2025.

Send us a textIn this episode of DevOps Sauna season 4, Darren and Marc delve into key DevOps and security updates, focusing on GitHub's potential new standard for SBOMs and its collaboration with JFrog. They joke about their reliance on ChatGPT, given its recent outage, and discuss the concerning frequency of cyber attacks, referencing significant breaches such as Ticketmaster's.Among the several topics covered in this episode are Microsoft's AI integration in DevOps workflows, GitLab's new AI tools, OpenTofu's recent security-enhanced release, JetBrains' new Aqua IDE for test automation, and GitHub's artifact attestations for supply chain security.With all this talk of security, Marc and Darren address the recent PyTailor malware threat before wrapping up with GDPR and data protection issues in the UK, underscoring the importance of robust security measures.Get the latest on GitLab, GitHub Enterprise Server, Jenkins, Artifactory, Xray, and SonarQube LTS in our Root release blog post: https://www.eficode.com/blog/root-whats-new-june-2024Watch our webinar and learn how to maximize your software development with GitLab's AI-powered DevSecOps platform: https://www.eficode.com/events/gitlab-ai-platform-devsecops-eventThis is the mid-pitch from Pinja promoting The Future of Software event in London on March 26, 2025.

Send us a textDan Plumbley, Eficode's first GitLab champion, joins hosts Marc and Darren for an episode exploring GitLab. The discussion highlights GitLab's holistic approach, incorporating project management, CICD pipelines, and security features within a single platform.Dan covers the integration of open-source tools that provide a seamless user experience with minimal context switching. The introduction of GitLab's AI offering, Duo, is also explored, showcasing its capabilities in code suggestions, security assessments, and refactoring, which enhance code quality and maintainability.The trio touches on GitLab's evolution from an underdog to a leader in the DevOps space, with notable adoption by major global entities.Our webinar will help you maximize your software development with GitLab's AI-powered DevSecOps platform: https://www.eficode.com/events/gitlab-ai-platform-devsecops-eventNo matter your experience with DevOps tooling, we can enhance your experience and capabilities: https://www.eficode.com/root/gitlabThis is the mid-pitch from Pinja promoting The Future of Software event in London on March 26, 2025.

Send us a textIn this episode, Marc's anecdote about resolving a stuck bike axle underscores the importance of having diverse tools and approaches when tackling problems—a principle that extends to security where relying solely on one method can lead to vulnerabilities.Exploring the value of diverse strategies, redundancy, and rapid feedback loops in both mechanical problem-solving and security practices, our hosts emphasize the necessity of layered security, likening it to an onion with multiple defensive layers to deter threats like the Akira ransomware.Darren and Marc advocate for frequent testing across multiple levels to ensure the early detection of issues. They highlight the importance of addressing internal vulnerabilities caused by human error and draw parallels between security practices and mechanical problem-solving methodologies.Whether you're an IT professional, software developer, or anyone interested in improving project security, this discussion offers valuable strategies and perspectives to mitigate risks effectively.Gain a better understanding of how DevOps and cultural practices intertwine: https://www.eficode.com/guides/devops-for-executivesFor DevOps and cultural practices, information on driving successful DevOps transformations, and more, head to our page: https://www.eficode.com/devops-transformationThis is the mid-pitch from Pinja promoting The Future of Software event in London on March 26, 2025.

Send us a textIn this episode, Marc and Darren are joined by Sven Peters, Developer Advocate at Atlassian, discussing enhancing developer joy and productivity. Sven emphasizes that developers often understand their own problems, and management should listen to them. He discusses the increased cognitive load from responsibilities like observability and being on duty for microservices. Introducing "developer joy," Sven describes it as the balance of progress, quality, and value. He stresses reducing wait times and addressing unique team challenges.Sven highlights bridging the gap between developers and product managers through techniques like project kickoffs and feature leads to ensure developers understand the problems they are solving. He also underscores the necessity of contextualizing metrics for assessing productivity. The conversation explores the creative aspect of software development, differentiating it from mechanical processes.AI's impact on development is also covered with predictions into how it will change team dynamics, reduce traditional sprint planning, and alter team roles.Platform engineering is a valuable practice in simplifying development and creating a conducive environment for innovation and enjoyment. Check out our page to learn more: https://www.eficode.com/platform-engineeringAdapt for the future of AI-powered software development using our guide: https://www.eficode.com/guides/devops-trends-2024This is the mid-pitch from Pinja promoting The Future of Software event in London on March 26, 2025. This is the mid-pitch audio file from Darren Richardson, promoting The Future of Software event in London on March 26, 2025.

Send us a textIn this episode, Marc and Darren are joined by colleagues Henri and Kalle to discuss the proactive role of DevOps in integrating AI into organizations. They emphasize the importance of robust security measures to manage risks and highlight the benefits and challenges of using AI, particularly large language models (LLMs), for apps like customer support and content creation.They address the complexities of data integration and governance and the need for automated solutions to handle the scalability of AI. Its role in improving human-computer interaction and the importance of maintaining data accuracy and security are also discussed. Marc emphasizes clear data governance practices similar to GDPR, advocating for transparency through an AI bill of materials. Henri and Kalle discuss the necessity of advanced DevOps practices, including specification-driven development and CI/CD pipelines for efficient IT processes.The conversation covers integrating requirements early into development value streams and maintaining rigorous verification and validation, particularly in secure environments, underscoring the proactive role of DevOps safety nets in enhancing software engineering.Extend your learning with our blog post on the four guiding principles of a healthy DevOps culture: https://www.eficode.com/blog/the-four-guiding-principles-of-a-healthy-devops-cultureTransform your software development with AI and DevOps using the information on our page: https://www.eficode.com/transforming-software-development-with-ai-and-devopsThis is the mid-pitch from Pinja promoting The Future of Software event in London on March 26, 2025. This is the mid-pitch audio file from Darren Richardson, promoting The Future of Software event in London on March 26, 2025.

Send us a textDarren and Marc discuss the EU AI Act, the world's first regulation on artificial intelligence development. The Act, aimed at controlling and putting guardrails on AI development, is seen as a step towards addressing potential risks associated with AI, such as manipulation, bias, and exploitation. While acknowledging the Act's spirit of protecting against AI misuse, they express concerns about its potential impact on innovation, particularly for small and medium-sized enterprises (SMEs) in the AI space. They anticipate challenges in interpretation and enforcement, as well as potential lawsuits shaping the Act's implementation and effectiveness. Additionally, they ponder how the Act might affect marketing practices, emphasizing the need for transparency in AI systems and their interactions with people. The discussion also touches on the complexities of regulating AI and the implications for various industries and use cases.Learn more about AI in software development on our page: https://www.eficode.com/transforming-software-development-with-ai-and-devopsGet the key DevOps and machine learning trends for your software development processes from our guide: https://www.eficode.com/transforming-software-development-with-ai-and-devopsThis is the mid-pitch from Pinja promoting The Future of Software event in London on March 26, 2025.

Send us a textIn this episode of DevOps Sauna, Marc and Darren are joined by Eficode UX and Accessibility Lead Annika, who emphasizes the importance of considering accessibility requirements and various user needs from the outset of any project. She shares her journey into accessibility work, highlighting its significance and intersection with user experience (UX). Annika discusses the technical aspects of accessibility, the importance of meeting minimum standards, and the necessity of manual testing alongside automated tools. The conversation delves into the impact of accessibility on users with impairments, the prevalence of accessibility needs, and upcoming legislation mandating accessibility in various sectors. Eficode's efforts in promoting accessibility are mentioned, along with practical tips to improve accessibility in your digital services.Join in the conversation at The DEVOPS Conference in Copenhagen and Stockholm and experience a fantastic group of speakers: www.thedevopsconference.com/?utm_campai…rce=PodcastLearn about our monthly Unicorn Stable sessions—open to all employees with an idea to pitch—and the innovations that have come from it.This is the mid-pitch from Pinja promoting The Future of Software event in London on March 26, 2025.

Send us a textMarc and Darren discuss various topics, including the implications of edge computing on DevOps, the emergence of AI-generated code, controversies surrounding open-source licenses, the rise of start-ups focused on automating DevOps tasks, the widespread use of AI among developers, and the need for responsible innovation with Generative AI. They also touch on challenges in DevOps leadership and the importance of fostering a supportive environment for talent. Ultimately, while there are complexities and challenges in these areas, there's also optimism about the potential for positive change and innovation.Join in the conversation at The DEVOPS Conference in Copenhagen and Stockholm and experience a fantastic group of speakers: www.thedevopsconference.com/?utm_campai…rce=PodcastPrepare for the future of AI-powered software development with our DevOps Trends 2024 guide.This is the mid-pitch from Pinja promoting The Future of Software event in London on March 26, 2025.

Send us a textIn this episode, Marc and Darren host Cheryl Hung, Senior Director of Infrastructure Ecosystem at Arm and founder of Cloud Native London. They discuss Arm's expanding role beyond mobile devices into data centers and infrastructure, highlighting increased software support for Arm processors. The conversation touches on trends like GitOps, WebAssembly (Wasm), and the shifting landscape of open-source licensing models. Cheryl also encourages community engagement and sharing knowledge through meetups and speaking opportunities. Overall, the episode offers insights into the evolving tech landscape and the importance of collaboration and open discourse.Join in the conversation at The DEVOPS Conference in Copenhagen and Stockholm and experience a fantastic group of speakers: www.thedevopsconference.com/?utm_campai…rce=PodcastIf you’re interested in getting new ideas for products with rapid time-to-market, check out our blog post.This is the mid-pitch from Pinja promoting The Future of Software event in London on March 26, 2025.