You're invited to join us for Redgate Streamed! Our three day online community event features world class industry speakers, technical content and opportunities to network with your peers. Microsoft Data Platform MVPs, Steve Jones, Kendra Little, Grant Fritchey and Kathi Kellenberger will head up the speaker line-up, joined by members of the Data Platform community.
Frequent deployments can give you greater flexibility in meeting changing business requirements, but if code quality is poor this may cause major headaches for your customers and your whole organization. Steve Jones will share how you can achieve frequent deployments without constantly needing to hotfix your production system.
The role of the DBA is evolving! With automated builds, cloud and DevOps being the new A,B,C,Ds in the day to day management of databases, you need to up-skill and learn about Database Reliability Engineering. Join Microsoft MVP Hamish Watson to discover how Database Reliability Engineering is like DevOps on steroids.
Understanding how data flows into, across components, and out of an application is critical for security and performance. Yet, modern software development is making data flow and data leakage identification increasingly complex. Faster release cycles, leveraging modular architectures/microservices, open source libraries and APIs makes it harder to understand the totality of how critical data is handled. For example, is personally identifiable information or device tokens being logged in Splunk? Are hard-coded credentials being pushed to GitHub? Is a microservice storing decrypted payment card information in S3? Lastly, for organizations with EU resident data, GDPR has significantly expanded the definition of what sensitive information is. Thus, the challenge of managing flows is further exacerbated. This webinar will explain the challenges of mapping critical data flows and how semantic graphing techniques can provide new insights through visualization, as well as, identifying external leakages.
Join Microsoft MVP Grant Fritchey as he discusses database DevOps in Financial Services with our panel of industry experts. They will explore the similarities and differences in their experiences of DevOps, how that looks for Financial Services in today’s landscape, and key industry findings from our 2020 State of Database DevOps report.
While graph databases are primarily known as the backbone of the modern social networks, we have found a much more interesting application for them: program analysis. This talk aims to demonstrate that graph databases and the typical program representations developed in compiler construction are a match made in heaven, allowing large code bases to be mined for vulnerabilities using complex bug descriptions encoded in simple, and not so simple graph database queries. This talk will bring together two well-known but previously unrelated topics: static program analysis and graph databases. After briefly covering the "emerging graph landscape" and why it may be interesting for hackers, a graph representation of programs exposing syntax, control-flow, data-dependencies and type information is presented, designed specifically with bug/backdoors/business logic flaws hunting in mind. Capabilities of the system will then be demonstrated live with Joern, an open source code exploration tool, as we craft queries for RCE exploits, insider attacks, data leak detection.
The California Consumer Privacy Act (CCPA) goes into effect on January 1, 2020. CCPA dramatically increases the types of data that an organization must secure from historically sensitive data (financial accounts, social security numbers, credit cards, etc.) to any personally identifiable data including things as benign as web browsing history. While this act is similar to the EU General Data Protection Regulation (GDPR), there are many differences in the scope of CCPA. For instance, CCPA covers medical data completely differently from GDPR. Furthermore, the scope of CCPA is broad. It applies not only to California-based businesses, but also to any company with data on California residents. CCPA also allows consumers to file a claim without proving actual damage from a data breach, which has historically been hard to prove in data breach lawsuits. At its core CCPA, and all data compliance, is about mapping routes, by understanding sources, sinks and transforms to identify violations. However, in the past this has been an intensely manual process that does not scale to meet regular audit needs. This webinar will introduce a graphical approach to mapping data flows and demonstrating compliance with CCPA and the emerging data privacy law landscape. Is there an easy way to ensure compliance for data managed by your customer facing web applications? Join us for this webinar to learn:
- How to identify critical data in your system
- How to map critical data flows from sources to sinks, across microservices, SDKs, Open source libraries and APIs.
- How to identify and prevent sensitive data leaks
- Why data leakage is increasing in its complexity
- How to address underlying factors driving the challenge
- ShiftLeft overview & demo
Graph databases offer security teams a new and more efficient way to find zero day vulnerabilities. As software development increases its reliance on open source libraries and release cycles get faster and faster application security is becoming more and more difficult. AppSec still has the same charter -- to find vulnerabilities in dev, before they reach prod, but now with more complexity and less time. Graphing source code, and traversing it to identify technical and business logic vulnerabilities, gives AppSec teams a much needed leg up identify zero days and stay ahead of attackers. As numerous famous examples demonstrate, open source libraries are a common attack vector. Hence, AppSec teams must secure 3rd party dependencies just as vigorously as custom code. While much of the emphasis for securing open source libraries (OSS) has been on identifying and eliminating known CVEs, because OSS is widely used, zero-day vulnerabilities are often more likely to be found in popular OSS than custom code. This webinar will cover the following:
- An introduction to the emerging graph landscape and why it matters for AppSec
- How a Fortune 500 company is using graphs to find zero days
- Technical demo of finding technical and business logic vulnerabilities in source code
Hard coded usernames, passwords, tokens and other secrets in the source code are an increasingly common security risk. As microservice architectures and API usage become more common developers increasingly need to exchange credentials and other secrets either internally or externally. At the same time, software release velocity has increased and developers are under more time pressure than ever before. This leads to shortcuts getting taken in many organizations because setting up proper authentication schemes can be cumbersome and time consuming. This webinar will cover:
- Most common types of hard-coded secrets
- Most common scenarios that drive developers to hard-coded secrets
- How-to find secrets in source code
- Automating regression testing for secrets at every pull request
Knowing what’s happening on your servers is vital to ensuring business continuity. In this session Microsoft MVP Grant Fritchey & Redgate’s Jeremiah Peschka show you the best way to set up monitoring on your environment, and how Redgate SQL Monitor provides a powerful and fast way of achieving this.
The focus of many application security programs has long been the OWASP Top 10 or SANS Top 25 vulnerabilities. While there are many SAST solutions that can identify these technical vulnerabilities such as SQLi, CSRF or XEE, SAST is not effective in identifying vulnerabilities that require context such as conditions leading to business logic, data leakage or hard-coded secrets. While pattern-matching techniques can be used to identify the symptoms of an injection vulnerability across any code-base, pattern-matching is not sufficient for business logic, data leakage or hard-coded secrets because these issues are unique to each code-base. Manual code review or penetration testing can help, but neither scales to the pace of modern release velocities. This presentation covers:
- Identifying sensitive data variables and mapping their flows across all sources and sinks
- Finding the conditions leading to business logic flaws
- Identifying hard-coded secrets and literals in source code such as usernames, passwords, tokens and API keys
- How-to insert the above security checks into pull requests or builds w/o slowing releases down
We’re excited to announce our new flexible database DevOps workflow! It allows you to combines the state-based development experience implemented in SQL Source Control and Source Control for Oracle with the customizable power of migrations-based deployments. Join this session to find out more.
Join our expert panel, Kendra Little, Kellyn Pot’Vin Gorman and Grant Fritchey, to dig into the key findings from Redgate’s fourth annual State of Database DevOps report and discover how these insights can drive improvements in your own organization and software development processes.
Your business depends on rapidly deploying high-quality changes to databases while minimizing risk to data. Join Microsoft MVP Grant Fritchey to learn how to protect business-critical data and improve software delivery with Redgate’s Compliant Database DevOps solution for Microsoft SQL Server and Azure SQL Database.
Microsoft Data Platform MVPs Kendra Little, Steve Jones, Kathi Kellenberger and Grant Fritchey come together for this festive webinar special. Our band of experts will discuss their highlights and favorite memories from throughout the year, sharing their own personal moments of glory, biggest learnings, and hilarious bloopers.
Are you ready for growth in 2020? Whether that means wider business growth which you and your team will be expected to support, expansion of your SQL Server estate, or even your own professional development. In this session, BMW's Tony Maddonna and Redgate's Kendra Little will discuss the challenges expected in the year ahead and how you can meet them head on.
To enable high performance, database teams should implement a core set of industry best practices. Join Microsoft MVP Kendra Little to discover how this ‘kernel’ of Database DevOps leads to better alignment between database and application teams and increases the throughput of higher quality releases.
PASS President Grant Fritchey is joined by fellow Microsoft MVPs Kendra Little, Steve Jones and Kathi Kellenberger to discuss their highlights and learnings from PASS Summit 2019, the largest Microsoft Data Platform conference.
Richard Macaskill, Redgate Product Manager and experienced SQL Server DBA, will demonstrate different tactics enabled by Redgate’s latest new product — SQL Data Catalog — to build a clear picture of youur SQL Server estate, enabling you to ensure that the correct data is protected in the correct way.
Join John Sterrett, founder of a SQL Server Consulting and Remote DBA Services company to learn the difference between Azure SQL Database, SQL Managed Instances, Elastic Pools, and SQL Virtual Machines.
Kendra Little will show you how to speed up software delivery with reliable, repeatable processes that remove the database bottleneck, with Redgate tools. Learn how you can empower your developers to innovate without sacrificing compliance, and bring DBAs into the SDLC early at critical review points.
Join Microsoft's Principal Cloud Advocate & DevOps Lead Abel Wang and Redgate's Steve Jones to learn what is DevOps, and how does it enable you and your organization to adapt? They will be discussing how you can explain the value of DevOps, the lessons learned from Microsoft's DevOps transformation and tips for advocating for DevOps as part of your 2020 planning.
Join Microsoft MVPs Hamish Watson and Rob Sewell to discover practical solutions on how to bring DevOps to your database. In this fun-filled fast paced hour, you will learn new skills which will bring immediate benefit to you and your organization.
Join Jez Humble, a founding member of DORA well known for his groundbreaking research on IT performance, and Redgate’s Microsoft MVP Steve Jones to learn the latest insights from the 2019 Accelerate State of DevOps Report – and what they mean for your organization and career.
Register for our free virtual learning event. The schedule includes educational and entertaining sessions from Microsoft MVP's designed to broaden your skill set, support your ongoing learning, and celebrate the last 20 years in the industry and at Redgate.
Register for this Microsoft hosted webinar to learn how Redgate tools for SQL Server help deliver software quickly. Microsoft MVP Kendra Little will show you reliable, repeatable processes that remove the database bottleneck.
SQL Clone 4 introduces Teams, allowing you to have more control over the instances, images and clones that users have access to, enabling safe self-service and delegation for DevOps and CI. Join us for a demo of the SQL Clone new release, V4, to see Teams in action.
Whether you are launching a revolutionary new initiative or expanding an existing effort, Ike Ellis will draw on his experience as a consultant and leader in software development to give you real-world tips to define, shape, and share your pitch successfully.
How Standard Bank overcame technical and cultural challenges to implement database CI/CD. Redgate’s Grant Fritchey talks to James Grant from Standard Bank about the challenges they faced along the way, how they overcame them, and the benefits they’re now seeing.
Join our expert panel as they discuss the key findings of Redgate’s 2019 State of SQL Server Monitoring survey including estate sizes, migrations issues, tooling and multiple database systems.
Discover how adopting 4 steps will lay your foundations for automation and Compliant Database DevOps. Speeding up and simplifying team-based database development, allowing your IT teams to improve collaboration and free up their time to innovate, add value and focus on more enjoyable work.
As database teams grapple with tightening data protection laws and shortening release cycles, the need to implement robust development processes is greater than ever. Find out how Compliant Database DevOps enables agility while safeguarding your organization in the event of a data breach or regulatory audit.
This case study session will discuss how the IT team at PASS introduced compliant database DevOps in order to be compliant with the GDPR as well as upcoming legislation in the USA like the California Consumer Privacy Act (CCPA).
An expert panel will be discussing what’s happened worldwide since the GDPR came into force one year ago: how global legislation has changed, which companies have been caught out and what’s likely to come up in the year ahead.
Discover how transitioning from shared database development to individual development environments is easier than ever thanks to database virtualization and source control technology.
In this webinar, you’ll learn how to implement a test data provisioning solution that accelerates your development cycles and meets the needs of data privacy regulations such as HIPAA, SOX and the GDPR.
How can you ensure that everyone works efficiently and effectively in distributed teams? This webinar will take you through the key areas to ensuring Database DevOps success with a far located team.
Join online sessions designed to broaden your skillset, support your ongoing learning, and keep you up-to-date with the industry, presented by Steve Jones, Kendra Little, Grant Fritchey and Kathi Kellenberger.
Chris Unwin, Data Privacy and Protection Specialist at Redgate shows you how to spin up fresh database copies for dev and test in seconds, with whatever level of protection you need – masked data, unmasked data, or synthetic data sets. Including:
- Designing masking models up front so dev and test databases are born compliant
- Creating full copies of databases in seconds that take up only 50 - 60 MB of disk space
- Automating database provisioning as part of Compliant Database DevOps
- Establishing a simple, repeatable, transparent, and auditable process
You also learn about customers who’ve revolutionized database development with SQL Provision. Like, KEPRO, a US health provider, who switched to SQL Provision to comply with HIPAA and is now saving 20 hours a week on database admin.
Database DevOps might sound at first like it makes DBAs less relevant and easier to replace, but DevOps is actually a great opportunity to secure and advance your position as a DBA. Join an expert panel as they discuss how you can start your Database DevOps education and advance your career as a DBA.
DevOps and data privacy do not need to oppose each other, however. Rather, they can complement one another. So how can the promise of releasing changes to the database faster and easier be balanced with the need to keep data safe and remain compliant with legislation?
In this demo webinar, Microsoft Data Platform MVP and PASS President, Grant Fritchey will show you the important metrics that you need to track on your Azure SQL Databases.
In this webinar, Redgate’s Anderson Rangel gives a practical demo to highlight the importance of SQL Provision as a part of your Database DevOps story.
In this live webinar panel discussion, Redgate’s Anderson Rangel is joined by Microsoft Data Platform MVPs Hamish Watson and Kendra Little to discuss the benefits of SQL Provision.
DORA’s recognition of the critical importance of the database to DevOps in their Accelerate State of DevOps Report should act as a timely wake-up call to those companies that still see DBAs and developers as operating in separate silos. Join Microsoft Data Platform MVP and SQL Server Central Editor Steve Jones to discover how you can build a common understanding and atmosphere of collaboration.
More and more organizations are turning to DevOps as a way of working together to improve the efficiency and quality of software delivery and start adding more value to the business. But what exactly is DevOps and what does it mean for you and your organization?