You are viewing content from a past/completed QCon -


Location: Pacific BC

Day of week: Monday

Industry practitioners and technical product managers from leading vendors demonstrate solutions to some of today's toughest software development challenges in the areas of performance monitoring, Big Data, software delivery, scalability, and more.

Track Host: Nitin Bharti

Managing Editor and Product Manager C4Media

Nitin has helped build several notable online developer communities including, DZone, and The Code Project. He is known for his extensive editorial work in the Enterprise Java, .NET, SOA, and Agile communities. As Managing Editor and Product Manager at C4Media - the producer of and QCon events - Nitin continues to pursue his primary passion: helping spread knowledge and innovation throughout the enterprise software development community.

10:35am - 11:25am

Whose Vulnerability Is It Anyway?

Application security is a top priority today for companies that are developing software.

However, it is also becoming more challenging and complex as release frequency continues to rise, more open source components are adopted, and the requirements for data security are getting stricter.

Thanks to new DevOps practices and tools, development cycles are getting shorter, allowing organizations to meet market demands and deliver a superior customer experience, but is application security keeping up? Is it possible to develop at the speed of business, while also maintaining application security, particularly for open source components? Developers have a key role to play in balancing security with the need for rapid innovation.

In this session, we will present the latest insights leading AppSec and open source security to shift left into early stages, based on research that encompassed a survey of over 650 software developers worldwide. We will also discuss other strategies and tools that can be used to develop both quickly and securely.

Jeff Martin, Director of Product @WhiteSourceSoft

11:50am - 12:40pm

Interview Engineering: The Science of Predictive and Fair Hiring

Have you ever wondered why some teams struggle to hire software engineers and others don’t?

The answer may lie in the interviewing process leading up to the hiring decision.

Before deciding whom to hire, teams conduct multiple interviews, complete write ups, and debate the performance of the candidate. Teams that successfully achieve hiring goals do so by making structural changes to how they interview software engineers and leverage data to run their hiring processes.

Using insights from analysis of tens of thousands of hiring loops, Karat’s Director of Developer Relations Lusen Mendel will share best practices for making hiring decisions that are predictive, fair, and enjoyable.
Attendees will walk away with:

  • Steps for creating structured and measurable interviewing and hiring processes
  • An understanding of how to test and implement highly predictive interview questions
  • A mental model for breaking apart complex interview problems so that candidates can solve more on their own

Lusen Mendel, Director of Developer Relations @karat

1:40pm - 2:30pm

Implementing Modern Identity and Sign in With Apple

From web applications to APIs, desktop to mobile apps, and everything in between there has never been a better or more complex time to write code. When it comes to securing the various types of applications you may be wondering what the right approach is. It may seem that with each new architecture, the rules of security get rewritten. JSON Web Tokens, OpenID Connect, Authentication Flows, Oh My!

In this presentation, we'll look at and demystify common authentication patterns for various types of modern app architectures. We'll put theory to practice by applying the concepts to secure a real world application. We'll utilize the Auth0 universal identity platform and show how we can easily implement Sign in with Apple using social connections.

Ado Kukic, Developer Evangelist Lead @auth0

2:55pm - 3:45pm

Go Green, Stay Green

Almost every company today is a technology company, and they differentiate themselves from their competition on that technology. Time to market can be the key to success, but as software becomes more complex, the ability to deliver code that is reliable is becoming a huge problem.

Despite widely adopted tools and best practices in software defect diagnosis, 50% of software engineers’ time is still spent debugging rather than developing. This causes release schedule delays, projects that never see the light of day, and a reduction in the capacity for innovation.

In this session we’ll step you through the advanced defect diagnosis techniques vital to software engineering teams. We will explore the latest approaches to advanced software defect diagnosis, including software flight recording technology, and how they are essential to achieving maximum productivity, accelerated delivery and improved software quality and reliability.

Greg Law, CTO @undo_io

4:10pm - 5:00pm

User Journey Testing With Gauge and Taiko

Gauge is a test runner that makes it easy to express your tests in the language of your users. Taiko is a browser automation tool that makes it easy to drive your web browser with a friendly Domain-Specific Language (DSL). Together, they make writing User Journey Tests easier than you might have thought possible.

In this talk, Scott Davis (Web Architect and Principal Engineer, ThoughtWorks) gives you a hands-on tour of these two free and open source products created and maintained by ThoughtWorks.

If you are familiar with Selenium, WebDriver, or Cucumber, they are all projects that ThoughtWorkers founded and open-sourced over 15 years ago. Gauge and Taiko are next-generation, modern incarnations that are truly standing on the shoulders of giants. Come see how easy it is to write User Journey tests with a light, modern, fast, stable technology stack.

Scott Davis, Web Architect @thoughtworks

5:25pm - 6:15pm

Monitoring Microservices With BPF

Anyone responsible for increasingly complex, distributed applications, knows that observability is critical to keeping applications happy and healthy. Once your team embraces a microservice design that exceeds a handful of services, seemingly easy questions like what part of your system is misbehaving can become complex debugging exercises. And harder questions like whether the problem exists in your application or infrastructure can stop your team in its tracks.

This talk will explain how you can use BPF (Berkeley Packet Filter) to peek inside the Linux network stack to understand how containers are behaving. Without adding any instrumentation to the application, BPF makes it possible to capture service dependencies, rate/error/latency metrics, and network health.

We will show you how to navigate the different Linux subsystems with your own BPF programs to trace the voyage of connections and correlate them with container metadata from Docker or Kubernetes. Finally, we’ll look at how this data can be used to diagnose hard-to-measure, production issues like DNS failures quickly and easily.

Jonathan Perry, CEO and Co-Founder

Last Year's Tracks

  • Monday, 16 November

  • Social Responsibility: Implications of Building Modern Software

    Software has an ever increasing impact on individuals and society. Understanding these implications helps build software that works for all users

  • Non-Technical Skills for Technical Folks

    To be an effective engineer, requires more than great coding skills. Learn the subtle arts of the tech lead, including empathy, communication, and organization.

  • Clientside: From WASM to Browser Applications

    Dive into some of the technologies that can be leveraged to ultimately deliver a more impactful interaction between the user and client.

  • Languages of Infra

    More than just Infrastructure as a Service, today we have libraries, languages, and platforms that help us define our infra. Languages of Infra explore languages and libraries being used today to build modern cloud native architectures.

  • Mechanical Sympathy: The Software/Hardware Divide

    Understanding the Hardware Makes You a Better Developer

  • Paths to Production: Deployment Pipelines as a Competitive Advantage

    Deployment pipelines allow us to push to production at ever increasing volume. Paths to production looks at how some of software's most well known shops continuous deliver code.

  • Tuesday, 17 November

  • Java, The Platform

    Mobile, Micro, Modular: The platform continues to evolve and change. Discover how the platform continues to drive us forward.

  • Security for Engineers

    How to build secure, yet usable, systems from the engineer's perspective.

  • Modern Data Engineering

    The innovations necessary to build towards a fully automated decentralized data warehouse.

  • Machine Learning for the Software Engineer

    AI and machine learning are more approachable than ever. Discover how ML, deep learning, and other modern approaches are being used in practice by Software Engineers.

  • Inclusion & Diversity in Tech

    The road map to an inclusive and diverse tech organization. *Diversity & Inclusion defined as the inclusion of all individuals in an within tech, regardless of gender, religion, ethnicity, race, age, sexual orientation, and physical or mental fitness.

  • Architectures You've Always Wondered About

    How do they do it? In QCon's marquee Architectures track, we learn what it takes to operate at large scale from well-known names in our industry. You will take away hard-earned architectural lessons on scalability, reliability, throughput, and performance.

  • Wednesday, 18 November

  • Architecting for Confidence: Building Resilient Systems

    Your system will fail. Build systems with the confidence to know when they do and you won’t.

  • Remotely Productive: Remote Teams & Software

    More and more companies are moving to remote work. How do you build, work on, and lead teams remotely?

  • Operating Microservices

    Building and operating distributed systems is hard, and microservices are no different. Learn strategies for not just building a service but operating them at scale.

  • Distributed Systems for Developers

    Computer science in practice. An applied track that fuses together the human side of computer science with the technical choices that are made along the way

  • The Future of APIs

    Web-based API continue to evolve. The track provides the what, how, and why of future APIs, including GraphQL, Backend for Frontend, gRPC, & ReST

  • Resurgence of Functional Programming

    What was once a paradigm shift in how we thought of programming languages is now main stream in nearly all modern languages. Hear how software shops are infusing concepts like pure functions and immutablity into their architectures and design choices.

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.