Schedule

  • The time in the program is for your time zone .

  • The program hasn’t been finally approved yet, so there still might be some changes.

Download schedule
  • K8s

    8
    • Talk

      Cross-Zone Traffic and Native Ways To Manage It in Kubernetes

      Inter-zone traffic can lead to increased cost of ownership and latency. For a long time it was thought that the solution is only possible through the use of Service Mesh. I will tell you how to solve these problems through native Kubernetes mechanisms.

    • Talk

      L2 Announcements in Cilium: Access to Load Balancer in Bare-Metal Kubernetes

      How Cilium’s built-in L2 announcement feature enables native Kubernetes LoadBalancer services in bare-metal clusters without external components or complex setups, leveraging modern eBPF technology. This approach provides reliable external access to services with minimal operational overhead.

    • Talk

      Platforms and Other Adult Toys

      How to build an Internal Developer Platform in an enterprise: from the first pain to a successful pilot. I will show you how to turn Kubernetes from a "container twister" into the basis of an automated platform for developers. Honestly about lessons learned and architecture, seasoned with practical advice.

    • Talk

      Scheduling GPU Workloads in Kubernetes: From Standard Mechanisms to Custom Solutions

      The standard Kubernetes scheduler kube-scheduler was developed with general load balancing principles in mind and is not specialized for the unique characteristics of GPU workloads. I propose examining the full spectrum of possibilities: from built-in K8s scheduling mechanisms to customization of the standard scheduler and specialized schedulers such as Volcano, Apache YuniKorn, and KAI-Scheduler.

  • Infrastructure

    8
    • Talk

      Platforms and Other Adult Toys

      How to build an Internal Developer Platform in an enterprise: from the first pain to a successful pilot. I will show you how to turn Kubernetes from a "container twister" into the basis of an automated platform for developers. Honestly about lessons learned and architecture, seasoned with practical advice.

    • Talk

      Scheduling GPU Workloads in Kubernetes: From Standard Mechanisms to Custom Solutions

      The standard Kubernetes scheduler kube-scheduler was developed with general load balancing principles in mind and is not specialized for the unique characteristics of GPU workloads. I propose examining the full spectrum of possibilities: from built-in K8s scheduling mechanisms to customization of the standard scheduler and specialized schedulers such as Volcano, Apache YuniKorn, and KAI-Scheduler.

    • Talk

      Fault-Tolerant Infrastructure: From Knee-Jerk Solutions to More Expensive Ones

      How to make the system fault-tolerant without Google's budget? We will analyze solutions for each level of architecture from DNS to database in three variants: minimal, optimal and industrial. I will show you, using examples of on-premise and Russian clouds like Yandex, VK, Selectel, what mistakes to avoid and how to save money without losing reliability.

    • Talk

      Implementation of Policy as Code in Apache Kafka

      A talk on a declarative approach to managing access to Kafka, implemented on the basis of Open Policy Agent. We will find out the principle of operation of Open Policy Agent, as well as get answers to the most popular questions regarding this approach and learn about the experience of real-life operation.

  • Security

    7
    • Talk

      Kubernetes Cluster Security Audit Without a Kubernetes Cluster

      Not many people know how to break Kubernetes, much less how to break Kubernetes when it doesn't even exist yet. I'll share my experience of conducting cluster audits at the design stage, when all you have on hand are the Cluster API manifests of future Kubernetes. I'll tell you what types of flaws can be detected at this stage, and which ones can't. I'll dilute all this with interesting moments and automation of the process.

    • Talk

      Rootless Kubernetes. Pros and Cons

      Methods of cluster deployment that allow to significantly reduce the attack surface of an attacker on a Kubernetes cluster. I will focus on the podsec-k8s package, which allows deploying a native Kubernetes cluster of versions 1.26 and higher in rootless mode. I will touch on the second method of reducing the attack surface — SSHless cluster (fork of the Talos@SideroLabs project)

    • Talk

      Break Me Completely: How AI (Does Not) Help with Pentesting

      How to use AI tools to automate various stages of penetration testing — from reconnaissance to exploit development. Which tasks can realistically be delegated to algorithms and where human expertise is still essential. You will learn how AI can become your partner in security.

    • Talk

      Unexploited Vulnerabilities in Kubernetes: How VEX Helps Bring Order to the Noise of CVEs

      Kubernetes is a complex ecosystem with many components and dependencies, and common vulnerabilities (CVEs) that, while not all of them are real threats, are often flagged by scanners as reliable threats, creating an overabundance of false production processes and complicating CI/CD processes. Here's how to make sense of this noise.

    • Talk

      Implementation of Policy as Code in Apache Kafka

      A talk on a declarative approach to managing access to Kafka, implemented on the basis of Open Policy Agent. We will find out the principle of operation of Open Policy Agent, as well as get answers to the most popular questions regarding this approach and learn about the experience of real-life operation.

  • ML/AI

    6
    • Talk

      The Perfect 'Sandbox' for ML Models: Setting Up Containerization Without Stress

      Why K8s is the best platform for deploying and testing ML models. We will demonstrate a step-by-step plan for creating high-quality machine learning environments in Kubernetes, which will allow you to automate machine learning for production environment creation and codebase management, and also make efficient use of the GPU.

    • Talk

      How To Get the Most out of GPU and Ray: Our Production ML Infrastructure Pipeline

      A talk on building a scalable ML infrastructure based on Ray and Kubernetes with an emphasis on efficient GPU utilization, distributed task management, and integration with external orchestrators. Using real examples, I'll show you how to build a fault-tolerant production pipeline and avoid typical errors when scaling loads.

    • Talk

      n8n + AI for DevOps processes

      How we’re implementing n8n for self-service automation without involving the Data Science team: from first steps to real use cases, pitfalls, and memes. How we ended up with an on-prem solution that fits seamlessly into our infrastructure and is understandable even beyond the developer crowd.

    • Talk

      Break Me Completely: How AI (Does Not) Help with Pentesting

      How to use AI tools to automate various stages of penetration testing — from reconnaissance to exploit development. Which tasks can realistically be delegated to algorithms and where human expertise is still essential. You will learn how AI can become your partner in security.

  • Platform

    4
    • Talk

      n8n + AI for DevOps processes

      How we’re implementing n8n for self-service automation without involving the Data Science team: from first steps to real use cases, pitfalls, and memes. How we ended up with an on-prem solution that fits seamlessly into our infrastructure and is understandable even beyond the developer crowd.

  • Teams & Culture

    3
    • Talk

      Is There an Economic Effect From the Implementation of Engineering Practices

      Let's figure out whether it is possible to calculate the economic effect of such practices as CI/CD, monitoring, code review, and engineering culture in general. Using Raiffeisen Bank cases as an example, we will try to figure out how much it costs to implement any practice and whether it really saves money for a business.

    • Talk

      How We Created and Developed an Enabling Team

      I'll tell you about our Enabling team, how we created it and are developing it. And also about the prerequisites for the appearance, stages of development, problems and areas of work.

    • Talk

      Engineer: Where Do We Go From Here? Is There Life After the Senior Level?

      Often I see engineers running up grades to grow their skills and paychecks: from junior to middle, then to senior and... what's next? To become a team lead? What's a tech lead? Or maybe there's some kind of engineering track? I'll tell you about it! Not everyone needs to be a team leader (or maybe they do).

  • Observability

    3
    • Talk

      Observability of Distributed Systems

      A talk on ensuring a high level of observability of distributed systems using existing telemetry tools. Using examples, let's look at how to manage the growing cognitive complexity of supporting large systems in terms of monitoring and finding the root causes of degradation.

  • QA

    2
  • SRE

    2
    • Talk

      We Сounted, We Counted, Our Fingers Were Tired

      The graphs are green, the reliability is five nines, and the user is unhappy. Sound familiar? It means that somewhere in your calculations your math failed. I will tell you how we at VK calculated reliability for infrastructure products, highlighting critical user paths.

    • Talk

      Fault-Tolerant Infrastructure: From Knee-Jerk Solutions to More Expensive Ones

      How to make the system fault-tolerant without Google's budget? We will analyze solutions for each level of architecture from DNS to database in three variants: minimal, optimal and industrial. I will show you, using examples of on-premise and Russian clouds like Yandex, VK, Selectel, what mistakes to avoid and how to save money without losing reliability.

  • Culture

    1
    • Talk

      Platforms and Other Adult Toys

      How to build an Internal Developer Platform in an enterprise: from the first pain to a successful pilot. I will show you how to turn Kubernetes from a "container twister" into the basis of an automated platform for developers. Honestly about lessons learned and architecture, seasoned with practical advice.

  • Off Topic

    6

We will add more talks soon.

We are actively adding to the program. Sign up for our newsletter to stay informed.

Subscribe