Peter Souter Conference Talks

Untaggling Strings: Getting CI Visibility for Vox Pupuli Tests

2026 Config Management Camp February 3

CI/CD Testing Vox Pupuli Observability

Exploring continuous integration visibility and testing strategies for the Vox Pupuli community projects, focusing on improving test observability and debugging capabilities.

Event Page →

CI/CD Observability, Metrics and DORA: Shifting Left and Cleaning Up!

2026 Config Management Camp February 3

CI/CD Observability DORA Metrics DevOps

A deep dive into CI/CD observability, DORA metrics implementation, and how to shift left on quality while improving your deployment pipelines and cleaning up technical debt.

Event Page →

CI/CD Observability, Metrics and DORA: Shifting Left and Cleaning Up!

2025 TestCon Europe October 22

CI/CD Observability DORA Metrics Performance Testing

A deep dive into CI/CD observability, DORA metrics implementation, and how to shift left on quality while improving your deployment pipelines and cleaning up technical debt.

Event Page →

InfraCoding: Testing Infrastructure as Code

2020 TestCon Europe October 20

Testing Infrastructure as Code Quality Assurance Automation Terraform

Exploring testing strategies and best practices for Infrastructure as Code, covering unit testing, integration testing, and ensuring quality in automated infrastructure deployments with Terraform.

Event Page → Slides → Video →

Head in the Clouds: Testing Infra as Code

2020 Config Management Camp February 3

Testing Infrastructure as Code Cloud Terraform

Exploring cloud-based testing strategies for Infrastructure as Code, including best practices for testing Terraform and other IaC tools in cloud environments.

Event Page → Slides → Video →

Security in a DevOps World

2019 DevOps.lt November 14

Security DevOps DevSecOps Best Practices

Examining security challenges and solutions in modern DevOps practices, including how to integrate security into the development lifecycle and maintain security in fast-paced environments. Treats security like fire safety - something everyone should know the basics about, with automated security testing.

Event Page → Slides →

Now Witness the Firepower of This Fully Automated and Immutable Vault Cluster

2019 HashiConf US September 9

Vault Automation HashiCorp Infrastructure Consul

Demonstrating how to build and manage a fully automated, immutable HashiCorp Vault cluster with high availability, disaster recovery, and automated operations.

Event Page → Video →

I don't know what I'm Doing: A newbie guide for Golang for DevOps

2019 Config Management Camp February 4

Golang DevOps Programming Learning

A beginner-friendly guide to getting started with Golang from a DevOps perspective, covering common pitfalls, useful patterns, and practical tips for DevOps engineers learning Go.

Event Page → Slides → Video →

Consul Connect - Modern Service Networking with Service Mesh

2018 EPAM SEC September 24

Service Mesh Consul Networking HashiCorp

A service mesh is necessary for organizations adopting microservices and dynamic cloud-native infrastructure. We will look at Connect, a significant new feature in Consul that provides secure service-to-service communication.

Event Page → Slides →

Monitoring Consul and Vault

2018 HashiCorp London User Group May 24

Monitoring Consul Vault HashiCorp

This talk will show how to securely run Vault in the cloud, and be able to access those secrets securely from multiple differing cloud platforms.

Event Page → Slides →

How to Use HashiCorp Vault with Hiera 5 for Secret Management with Puppet

2018 HashiCorp Webinar May 23

Vault Puppet Secrets Management HashiCorp

Peter Souter demonstrates how to use HashiCorp Vault for secrets management while using Puppet as the configuration management software.

Event Page → Video →

Provisioning vs Configuration Management Deployment vs Orchestration - A rose by any other name...

2018 FOSDEM February 3

DevOps Terminology Best Practices

There's a lot of confusion around the differences between the various terms used when talking about configuring systems. In this talk, we're going to boil down the core of each term and talk about the approaches used and where things cross over.

Event Page →

Secret Management in the world of Infrastructure as Code

2017 DevOpsDays Amsterdam June 28

Security Secrets Management Infrastructure as Code DevOps

Config management tools have revolutionized how machines are managed. However, IaC is not a free lunch: having all your infrastructure information in one place can lead to some uncomfortable security pitfalls.

Event Page → Slides → Video →

Keeping Secrets in your Infrastructure as Code

2017 Continuous Lifecycle London May 17

Security Secrets Management Infrastructure as Code

We're going to talk about best practices for keeping your secrets in infrastructure as code, detecting plaintext credentials in your code, how Puppet handles secrets and what to do when credentials get leaked.

Video →

Maintaining Level 8

2017 HumanOps London April 4

Ergonomics Health Operations

Your most important piece of equipment is yourself, so I will be taking us through the basics of good ergonomics at our desks and how I have put this into practice throughout his career.

Event Page → Slides →

Compliance and auditing with Puppet

2017 Config Management Camp February 6

Compliance Puppet Auditing

Puppet is a perfect fit for compliance: you model desired compliant state, continually enforce it and have a full audit path of when changes occur and what lead to the drift.

Event Page → Slides →

Knee deep in the undef: Tales from refactoring old Puppet codebases

2017 Config Management Camp February 6

Puppet Refactoring Best Practices

As Puppet pushes into it's second decade, there are several organisations out there that have been using Puppet for a long time. We'll be talking about how to make sure that your Puppet code is healthy for the next decade.

Event Page → Slides →

Compliance and auditing with Puppet

2017 FOSDEM January 30

Compliance Puppet Auditing Security

Puppet is a perfect fit for compliance: you model desired compliant state, continually enforce it and have a full audit path of when changes occur and what lead to the drift. Discussing best practices for using Puppet for compliance and keeping auditors happy.

Event Page → Slides → Video →

Nice and Secure: Good OpSec Hygiene With Puppet!

2016 PuppetConf October 17

Security Puppet OpSec

Puppet is a great first step to making your environment more secure. We're going to talk about making sure security is part of your workflow, best practise with hardening your Puppet architecture, and secrets management.

Event Page → Slides → Video →

Lock it Down - Securing your Puppet Infrastructure

2016 Config Management Camp February 2

Security Puppet Infrastructure

Puppet is an awesome tool to automate the configuration of your infrastructure, but it's also a potential attack vector. In this talk, we'll discuss some common patterns and changes you can make to harden your Puppet infrastructure.

Event Page → Slides →

Hardening Your Config Management - Security and Attack Vectors in Config Management

2016 FOSDEM January 30

Security Config Management Puppet

Configuration management is a great tool for helping with hardening and securing servers. But with any addition of new technology comes a new attack vector: Who watches the watchers?

Event Page → Slides → Video →

Testing servers like software

2014 Infracoders July 28

Testing Infrastructure as Code Puppet ServerSpec

Exploring how to apply software testing principles to server infrastructure, covering test-driven development for infrastructure code, using tools like ServerSpec, and ensuring quality in automated server configurations.

Event Page → Slides →