From Kubernetes to Security: Infrastructure and Ops Trends to Watch in 2021
February 01, 2021

Mike Loukides
O'Reilly Media

Developers today are faced with the hard reality that modernizing systems is more than simply moving technology to a new location. Rather, they are expected to be intimately familiar with a host of new-generation technologies while simultaneously managing existing legacy systems as they migrate to an infrastructure that is more responsive, predictive, and scalable. Looking ahead to 2021, let's review the trends surrounding the most challenging, yet promising, topics in infrastructure and operations: Kubernetes, site reliability engineering, security, and more.

Kubernetes Complexity

To say that Kubernetes is the leading container orchestration platform is an understatement. It's the only container orchestration platform that counts. However, to say that Kubernetes is complex is also an understatement. The learning curve is both steep and long.

How will developers address Kubernetes' complexity? We are starting to see some simpler alternatives for specific use cases.

For example, K3S for edge computing, which effectively tackles the compute layer by orchestrating the infrastructure and workloads running at the edge. 

Will that trend continue? Or will Kubernetes be subsumed into cloud providers' management consoles in a way that simplifies the options available to developers? While this has yet to be revealed, an important trend for the next year will be attempts to simplify cloud orchestration.

Site Reliability and Observability

Look out for a heavy focus on system observability and its benefits

The sea change in workplace dynamics brought about by COVID-19 has had a parallel effect on the world of site reliability engineering. Companies for whom an online presence was an afterthought are now finding it essential to survival.

They're also finding it necessary to keep their online presence available at all times. Because of this, there will likely be an increase in the demand for site reliability engineers (SREs) — and thus an emphasis on the tools that SREs need.

Look out for a heavy focus on system observability and its benefits: high-speed, actionable data allowing engineers to understand, prevent, and mitigate outages. Although it's only part of the story, there will be a growing interest in OpenTelemetry, a vendor-neutral standard for collecting system data that promises an array of more refined and calibrated open-source tools for observability in the years ahead. 

Cyber Resilience

Claiming that cyber threats will increase — and that attacks will become more dangerous — hardly qualifies as a prediction or a trend. The sophisticated cyberattacks that compromised the US Treasury, Commerce, and Homeland Security departments are, sadly, hardly surprising. What's more important is how organizations respond to those threats.

In the past, most companies have taken a reactive approach to security: address breaches as they happen and, if nothing happens, they've spent too much time on security. That approach has failed time and time again. Companies must begin to take a dynamic, holistic approach that strengthens their security posture.

Steps towards resilience include having a robust Identity and Access Management policy by implementing zero trust, multi-factor authentication (MFA), and password-less authentication. There will be an increased use of AI and machine learning (ML) by both good and bad actors. Bad actors will use AI to find and exploit new vulnerabilities, while security teams will use AI and ML tools to detect and block attacks, as well as automating routine tasks.

Multi-Cloud and Hybrid Clouds

The cloud is a capability, not a destination

It's too easy to think of "the cloud" as a place: a single virtual location, with a single provider. As IBM has said frequently, the cloud is a capability, not a destination. By the time most companies start thinking seriously about a "cloud strategy," they already have pilot projects in multiple clouds. 

Mergers and acquisitions complicate the situation even more, as does data that has to remain on-premise for regulatory or security reasons. What counts isn't moving applications to a specific provider, but rather having a uniform interface that enables capabilities regardless of physical location. 2021 will be the year that companies adopt multi- and hybrid clouds, removing the operational and developmental barriers between their own, on-premise IT and cloud providers. This year, we will discover what it really means to be "cloud-native."

While application development will no doubt continue to evolve, monitoring for these trends will help DevOps teams focus on the most critical topics facing infrastructure and operations today — allowing them to make the right technical and business decisions that will prepare them and their companies for a successful future.

Mike Loukides is VP of Emerging Tech at O'Reilly Media
Share this

Industry News

October 06, 2022

Platform.sh announced it has partnered with MongoDB.

October 06, 2022

Veracode announced the enhancement of its Continuous Software Security Platform to include container security.

This early access program for Veracode Container Security is now underway for existing customers.

The new Veracode Container Security offering, designed to meet the needs of cloud-native software engineering teams, addresses vulnerability scanning, secure configuration, and secrets management requirements for container images.

October 06, 2022

Mirantis announced that Mirantis Container Runtime – latest generation of the Docker Enterprise Engine, the secure container runtime that forms the foundation of Mirantis Container Cloud and Mirantis Kubernetes Engine and is used at the heart of many other Kubernetes deployments – is now available in the Microsoft Azure Marketplace.

October 05, 2022

Perforce Software announced enhanced support for automated testing with the release of Helix ALM 2022.2.

October 05, 2022

Parasoft announced the latest releases of its API and microservices testing tools, including SOAtest, Virtualize, CTP, and Selenic.

October 05, 2022

Vaadin announced the release of four Acceleration Kits designed to make it faster and easier to build and modernize Java applications for enterprise use.

October 04, 2022

Pegasystems announced the latest release of Robot Studio, the robotic process automation (RPA) low-code authoring environment for Pega's intelligent automation platform.

October 04, 2022

EvolveWare announced the Agile Business Rules Extraction (Agile BRE) solution on its Intellisys platform.

October 04, 2022

Mabl announced new features that empower quality professionals to easily validate APIs as part of their integrated end-to-end tests.

October 03, 2022

Spectro Cloud announced a major new release of its Palette Edge platform.

October 03, 2022

Arcion announced agentless change data capture (CDC) for all of its supported databases and applications.

September 29, 2022

CloudBees announced the acquisition of ReleaseIQ to expand the company’s DevSecOps capabilities, empowering customers with a low-code, end-to-end release orchestration and visibility solution.

September 29, 2022

SmartBear continues expanding its commitment to the Atlassian Marketplace, adding Bugsnag for Jira and SwaggerHub Integration for Confluence.

Bugsnag developers monitoring application stability and documenting in Jira no longer need to interrupt their workflow to access the app. Developers working in SwaggerHub can use the macro to push API definitions and changes directly to other teams and business stakeholders that work within Confluence. By increasing the presence of SmartBear tools on the Atlassian Marketplace, the company continues meeting developers where they are.

September 29, 2022

Ox Security exited stealth today with $34M in funding led by Evolution Equity Partners, Team8, and M12, Microsoft's venture fund, with participation from Rain Capital.

September 29, 2022

cnvrg.io announced that the new Intel Developer Cloud is now available via the cnvrg.io Metacloud platform, providing a fully integrated software and hardware solution.