As Editor-in-chief of DevOps.com and Container Journal, Alan Shimel is attuned to the world of technology. Alan has founded and helped several technology ventures, including StillSecure, where he guided the company in bringing innovative and effective networking and security solutions to the marketplace. Shimel is an often-cited personality in the security and technology community and is a sought-after speaker at industry and government conferences and events. In addition to his writing on DevOps.com and Network World, his commentary about the state of technology is followed closely by many industry insiders via his blog and podcast, "Ashimmy, After All These Years" (www.ashimmy.com). Alan has helped build several successful technology companies by combining a strong business background with a deep knowledge of technology. His legal background, long experience in the field, and New York street smarts combine to form a unique personality.
CNCF and Docker: The Next Phase of Cloud Native Supply Chain Evolution
The CNCF–Docker partnership strengthens cloud native supply chain security with verified namespaces, SBOMs, and signed images. Trust becomes the new baseline ...
The Cloud-Native Frontier is at the Edge
The future of cloud-native is hybrid and edge. Learn how WebAssembly (WASM) complements containers to power next-gen workloads with speed, security and agility ...
OpenTofu and the New Era of Infrastructure as Code
Terraform’s license shift sparked OpenTofu’s rise. Alan explores how IaC now thrives with both HashiCorp’s Terraform and CNCF’s OpenTofu shaping the future ...
Supply Chain Security: Cloud Native’s Weakest Link?
For years, the conversation in security revolved around networks, firewalls, and endpoints. The perimeter was king. But in the cloud-native era, the old perimeter has dissolved into microservices, APIs, and pipelines. What’s ...
Runtime Visibility: The Missing Layer in Cloud-Native Security
Cloud-native security can’t rely on old perimeter defenses. With workloads spinning up in seconds, runtime visibility is now the missing layer leaders must prioritize. Learn why observability is security, how tools like ...
Security Tool Sprawl: The New Breach Vector for Cloud Native
“More is better” has always been a dangerous assumption in tech. In security, it’s downright reckless. Across the cloud-native ecosystem, organizations are drowning in their own defenses: dozens of overlapping tools, agents, ...
eBPF: The Silent Power Behind Cloud Native’s Next Phase
eBPF is quietly reshaping cloud native computing, powering service meshes, observability, networking, and security directly in the Linux kernel. By reducing sidecar overhead, enabling zero-instrumentation telemetry, and enhancing runtime protection, eBPF is ...
Shimmy’s Early Look: Can’t-Miss Sessions at KubeCon + CloudNativeCon North America 2025
CNCF turns 10 as KubeCon + CloudNativeCon North America 2025 heads to Atlanta this November. With 300+ sessions on Kubernetes, AI, platform engineering, security, and observability, the event showcases the next decade ...
Fitting Square Kubernetes Into the Round AI-Native Apps
Kubernetes tamed cloud-native workloads, but AI-native apps push its limits. Can it evolve for GPU-first, data-intensive AI — or is it time for new control planes? ...
From Observability to Actionability: Why Metrics Alone Aren’t Enough
Observability has plateaued. The next step is actionable observability—using AI, automation, and SLOs to turn telemetry into reliable outcomes ...
