Snyk’s Danny Allan on Making Security Developer-Friendly
Security often feels like a roadblock to developers, but what if it could be seamlessly integrated into the development process? As software delivery becomes increasingly automated and self-service, the traditional approach to security needs a major overhaul.Danny Allan, CTO at Snyk, shares practical insights on transforming security from a bottleneck into an enabler of developer productivity. Drawing from his extensive experience at IBM, VMware, and Veeam, Allan discusses how security teams can shift left effectively without creating friction.Key topics covered:Building successful security champions programs that cultivate curiosity rather than relying solely on senior developersPractical approaches to embedding security controls into development pipelines, from IDE integration to PR checksStrategies for measuring security team success beyond just vulnerability countsThe role of pre-hardened containers and infrastructure-as-code scanning in platform securityHow AI is transforming both code generation and security tooling, including Snyk's approach to vulnerability detectionLove the show? Subscribe, rate, review, & share! http://platformengineeringpod.com/
--------
45:26
vCluster with Lukas Gentele: Rethinking Kubernetes Multi-Tenancy
Are your platform teams constantly saying "no" to requests for new Kubernetes clusters? The traditional approach to Kubernetes multi-tenancy forces organizations to choose between cluster sprawl or restrictive namespaces - neither of which fully meets the needs of modern development teams.Lukas Gentele, CEO and co-founder of Loft Labs, shares how vCluster is transforming the way organizations handle multi-tenancy in Kubernetes. By running virtual Kubernetes control planes inside namespaces, vCluster enables teams to experiment with different versions, operators, and configurations while maintaining efficient resource usage.Key topics covered:How vCluster solves the limitations of namespace-based multi-tenancyRunning multiple Kubernetes versions in the same cluster for testing and gradual upgradesManaging bare metal GPU resources efficiently for AI/ML workloadsBalancing standardization with developer autonomy in platform engineeringUsing virtual clusters for cost-effective testing across multiple Kubernetes versionsWhether you're a platform engineer looking to say "yes" more often or a development team seeking greater autonomy within Kubernetes, this discussion offers practical insights into modern multi-tenancy approaches.Love the show? Subscribe, rate, review, & share! http://platformengineeringpod.com/
--------
40:56
Building Real-World Platforms: Abby Bangser on CNCF, Kratix, & Syntasso
When organizations grow beyond using third-party platforms, they face a critical challenge: how to build internal platforms that enable teams to work efficiently while maintaining security and compliance. Abby Bangser, founding principal engineer at Syntasso, shares insights on creating real-world platforms that strike the right balance between standardization and flexibility.Key InsightsThe shift from external platforms to internal ones often comes from specific business needs, like compliance requirementsSuccessful platform engineering requires finding the right balance between prescriptive standards and flexible customizationPlatforms should offer multiple levels of abstraction - from simplified "paved paths" to advanced customization optionsPlatform teams should watch how users interact with their services to identify emerging patterns and needsLove the show? Subscribe, rate, review, & share! http://platformengineeringpod.com/
--------
53:54
Smart TV Testing Made Simple with Dave Lucia of TV Labs
Testing smart TV applications presents unique challenges that traditional web testing approaches can't solve. Dave Lucia, CTO and co-founder of TV Labs, shares how his team built a platform that virtualizes televisions and set-top boxes to help media companies test their smart TV apps on physical devices.Learn about TV Labs' innovative architecture and how they handle everything from camera-based testing systems to their custom Lua-based DSL for faster test execution. A key highlight is how choosing Elixir as their primary technology has enabled TV Labs to build a robust orchestration system. The language's built-in capabilities for fault tolerance, process isolation, and distributed computing make it particularly well-suited for managing concurrent connections and real-time state across multiple devices.The discussion also explores practical insights about system architecture, including how TV Labs leverages Phoenix presence for real-time device state tracking and achieves microsecond-level performance for message broadcasting.Love the show? Subscribe, rate, review, & share! http://platformengineeringpod.com/
--------
47:50
Trust, Lock-in, And Better Infrastructure Management
Why do 70% of organizations still struggle to adopt infrastructure as code? Sören Martius, CPO and co-founder of Terramate, joins Cory O'Daniel to tackle the challenges of modern infrastructure management and the delicate balance between vendor trust and lock-in.The conversation explores practical solutions for common infrastructure challenges, from managing monolithic state files to orchestrating complex deployments. Martius shares insights on: When to maintain a monolithic state file versus breaking it into smaller unitsHow infrastructure needs evolve as engineering teams grow beyond 100 peopleWhy anti-lock-in features build trust with operations teamsThe role of AI in detecting and remediating infrastructure misconfigurationsFor teams wrestling with infrastructure complexity or evaluating new tools, this discussion offers practical perspectives on building scalable, maintainable infrastructure while avoiding common pitfalls around vendor lock-in and team adoption.Love the show? Subscribe, rate, review, & share! http://platformengineeringpod.com/
Welcome to the Platform Engineering Podcast, a monthly exploration into the fascinating world of platform engineering. This podcast caters to professionals and enthusiasts passionate about the intricacies of platform architecture, cloud operations, and scaling DevOps practices. Whether you're a seasoned expert or just starting in the realm of platform engineering, this is a must-listen show you don’t want to miss.Each episode features in-depth interviews with seasoned platform engineers, cloud specialists, and DevOps teams. Their expertise and knowledge are crucial for thriving in this field. Tune in as they share their experiences, challenges, and successes, offering unique perspectives into the everyday workings and innovations of this domain. Let their intriguing anecdotes provide you with valuable lessons that can immediately enhance your business’s competitive edge. Hosting the podcast is Cory O’Daniel, CEO of Massdriver. A software and operations engineer in Los Angeles, California, Cory has over two decades of experience in building startup brands and managing cloud operations. He created Bonny, an Elixir-based Kubernetes operator framework, and is passionate about AWS cloud, Kubernetes, and platform engineering. Join Cory as he breaks down platform engineering with his expert guests. Learn more at platformengineeringpod.com
Brasil