DevOps, CI/CD & DevSecOps

Key concepts

1. 1
   Trunk-based development and continuous delivery
2. 2
   Infrastructure as Code: CloudFormation, AWS CDK, Terraform, Pulumi
3. 3
   Blue/green and canary deployments
4. 4
   Security in the pipeline: SAST, DAST, SCA, IaC scanning
5. 5
   GitOps with Flux/Argo on EKS

Key AWS services

• AWS CodePipeline
• AWS CodeBuild
• AWS CodeDeploy
• AWS CDK
• AWS CloudFormation
• Amazon Inspector

Learn more — curated resources

Hand-picked official docs, foundational papers, and the best community guides for going deeper on this topic.

• AWS DevOps overview
• AWS Cloud Development Kit (CDK)
• DevOps Research and Assessment (DORA)
• AWS DevOps Blog
• AWS Well-Architected DevOps Guidance

Sessions on this topic

8 sessions from the Summit covered this topic. Each is a self-contained mini-lesson.

1. PRT215-SIntermediate

   The Visibility Gap: Turning Observability into DevSecOps Signals

   The Visibility Gap: Turning Observability into DevSecOps Signals (sponsored by Datadog)Security teams and dev teams share the same production environment but operate from different signals. Without runtime context, security monitoring has blind spots with misconfigured infrastructure and threats in flight. This session draws on Fone Dynamics' ISO 27001 journey to show how runtime telemetry, cloud audit logs, and code scanning give DevSecOps and SecOps teams shared context.

2. AIM201Intermediate

   From demo to deployment: solving agentic AI's toughest challenges

   Most AI agent projects stall when moving from prototype to production. This session tackles the top challenges builders face when deploying agentic AI at scale. You'll learn how to answer the fundamental question of whether to build custom agents or leverage pre-built agents for DevOps, security, development, and business productivity use cases. Then you'll discover how to address the critical production challenges of reliability, observability, cost management, security, and evaluation. Drawing from real customer deployments and AWS's portfolio of agentic AI capabilities, you'll gain actionable approaches for building agents that don't just demo well but ship and scale.

3. DEV204Intermediate

   AI-Powered EKS Troubleshooting with AWS DevOps Agent

   Managing EKS clusters means correlating logs, metrics, IAM policies, and network configurations under pressure. The AWS DevOps Agent, announced at re:Invent 2025, changes this workflow fundamentally. In this session, you'll watch a live demonstration where the DevOps Agent autonomously investigates an EKS service failuretracing issues from Pod logs through VPC Security Groups without manual intervention. You'll learn how the agent correlates cross-service dependencies, generates verified remediation plans, and integrates into existing SRE workflows.

4. DEV209Intermediate

   CI/CD Guardrails for Agentic Coding Workflows

   AI coding agents introduce failure modes traditional CI/CD pipelines weren't built to catch — deleted tests, weakened type constraints, silent cross-service regressions. This session examines practical pipeline-level guardrails for agentic workflows running on ECS Fargate and distributed CI environments. You'll learn which failure patterns agents introduce that humans rarely do, which automated checks reliably catch them, and how to structure pipelines that apply appropriate scrutiny to agent-generated code without blocking developer velocity. Leave with concrete, implementable patterns covering test integrity enforcement, type safety validation, and cross-service regression detection — applicable whether you're managing one agent or coordinating many across multiple repositories.

5. AIM301Advanced

   Commbank pioneering AI-driven DevSecOps with AWS DevOps Agent

   CBA is achieving operational excellence by harnessing the power of the AWS DevOps Agent, part of AWS's new Frontier Agents. In this session, discover how CBA is using AI-driven automation to streamline incident response, reduce operational friction, and strengthen resilience across critical systems. We'll discuss CBA's cloud transformation journey and operational challenges, explore the DevOps Agent implementation including architecture, integration, and user journeys, and share results and business impact with real-world metrics. You'll see how automated remediation, and proactive insights are helping teams move faster with greater confidence. Join us to discover how CBA is shaping a future where operations are smarter, safer, and built for scale.

6. SEC302Advanced

   Leap ahead in Cloud Operations with AWS DevOps Agent

   Downtime costs revenue. Alert fatigue burns out your best engineers. Manual incident investigation wastes hours that could be spent building. Every cloud team faces these operational challenges, yet most still rely on tribal knowledge and context-switching across multiple tools to diagnose issues. In this session, we demonstrate how AWS DevOps Agent transforms incident response from hours of manual investigation to minutes of autonomous analysis. Watch as the agent automatically correlates data across your observability tools, identifies root causes, and delivers actionable mitigation plans freeing your team to build instead of firefight.

7. PRT106-SFoundational

   The AI Challenge You Don't Yet Know About - Software Supply Chain

   Most teams have "done DevOps" but still face low platform adoption, rising cloud costs, lagging security, and fragile incident response. This session explores the "After" state: treating your platform as a product, with golden paths, built-in security, AI-driven simplicity, and reliability by defaultusing Harness as the model for a governed, cost-aware, AI-native developer experience.

8. DEV208Intermediate

   Production-Grade Platforms: Real-World IaC Practices on AWS

   Managing infrastructure as code sounds straightforward until you're wrangling hundreds of modules across multiple teams and accounts. In this session, a Platform Engineer and Lead Architect share hard-won lessons from building and scaling IaC platforms at large organisations — covering module composition strategies, state isolation patterns, and CI/CD pipelines that keep deployments safe and reproducible. You'll walk away with practical design patterns you can apply immediately, whether you're laying the foundations of your first landing zone or untangling a sprawling estate that's grown faster than its architecture.

One sharp, contrarian insight per session — the things teams don't think of unprompted.

Related topics