Back to all news

GitOps Best Practices

How It Works

• All configuration lives in Git — infrastructure, applications, policies
• Changes go through pull requests — code review, approval, audit trail
• GitOps operator watches the repo — tools like ArgoCD or Flux
• Automatic sync — operator ensures the live environment matches Git
• Self-healing — if someone makes manual changes, the system reverts them

Key Advantages

Benefit	What It Means for You
Faster Deployments	Minutes instead of hours; no manual steps
Complete Audit Trail	Every change tracked: who, what, when, why
Easy Rollbacks	Revert to any previous state with git revert
Reduced Human Error	No more “fat finger” mistakes in production
Enhanced Security	No direct production access needed; all changes reviewed
Disaster Recovery	Rebuild entire environment from Git in minutes
Drift Detection	System alerts when reality doesn’t match desired state

Common Use Cases

• Kubernetes Deployments — manage apps, scaling, and updates across clusters
• Infrastructure as Code — provision cloud resources (VMs, networks, storage)
• Multi-Environment Management — consistent config across dev/staging/prod
• Compliance & Governance — enforce policies, maintain audit trails
• Configuration Management — centralize and version all system configs

Architecture Components

Component	Role	Example Tools
Git Repository	Source of truth for all configs	GitHub, GitLab, Bitbucket
GitOps Operator	Watches Git, applies changes	ArgoCD, Flux, Jenkins X
CI Pipeline	Builds, tests, validates	GitHub Actions, GitLab CI
Target Environment	Where workloads run	Kubernetes, AWS, Azure

GitOps vs Traditional Deployment

Aspect	Traditional	GitOps
Change process	SSH/console access	Git commit + PR
Audit trail	Scattered logs	Full Git history
Rollback	Manual, error-prone	git revert
Environment drift	Undetected	Auto-corrected
Access control	Prod credentials needed	Git permissions only

Implementation Recommendations

Start with:

• One non-critical application or environment
• ArgoCD or Flux as the GitOps operator
• Clear repository structure (separate repos for apps vs infrastructure)

Repository structure example:

├── apps/
│   ├── app-a/
│   └── app-b/
├── infrastructure/
│   ├── networking/
│   └── storage/
└── environments/
    ├── dev/
    ├── staging/
    └── production/

Most Common Mistakes in GitOps Implementation

• Not Using Linting/Code Checks: Failing to use linting or code checks often results in inconsistent quotation marks, indentation, and overall messy code. This makes maintenance difficult and increases the risk of errors.
• Poor Secrets Management: Whether it’s committing secrets directly to the repository or not using an external secrets store, poor secrets management complicates audits and creates potential security risks. It also makes password rotation and automation more difficult.
• “All-in-One” Approach: We often encounter clients who keep all their Ansible playbooks or Terraform manifests in a single file. This makes the code difficult to read, maintain, and scale.
• Insufficient Security for Repository Pushes: Allowing direct pushes to the main branch, merging pull requests without approvals, or not enforcing checks can lead to unauthorized or untested changes being deployed.
• Poor Code Segregation for Different Environments: Improperly designed code segregation for different environments can lead to unintended changes in environments where they were not intended, increasing the risk of misconfigurations.
• Manual Interventions and Ignoring GitOps: Making quick, temporary fixes directly on servers without updating the repository undermines the GitOps approach. These changes are not tracked, leading to configuration drift and inconsistency.

The Bottom Line

GitOps brings the same rigor we apply to application code to infrastructure management. The result: faster, safer, and more reliable deployments with complete visibility and control.

Key takeaway: GitOps reduces deployment risk and operational overhead while improving speed and compliance — benefiting both engineering teams and business stakeholders.

Learn More About Our Approach

GitOps is part of our Techfitting^TM framework, which aligns technology, people, and processes to drive business growth. If you’re looking to implement GitOps or enhance your DevOps practices, explore our DevOps services to see how we can help.

Back to all news

Training Course: Legislation in Payment Services Provision in Slovakia and the EU

Venue, Date, and Time

• Venue: Grow2FIT s.r.o., Nivy Tower, Mlynské Nivy 5, Bratislava
• Date: 29.04.2026
• Time: 09:00 – 15:00 (including a 1-hour lunch break from 11:30 to 12:30)
• Price: 199€ incl. VAT for 1 participant

Part 1: Payment Services Directives and Regulation

• What are PSD1, PSD2, and PSD3?
  Overview of each directive, their scope, and what they regulate.
• What is PSR (Payment Service Regulation)?
  Explanation of PSR, its purpose, and its scope.
• Goals of PSR
  Key objectives of PSR and its impact on the payment services market.
• Key Contributions of PSD2 and the Need for PSD3
  Why PSD3 was developed and its main improvements over PSD2.
• Key Differences Between PSD3 and PSR
  Comparison of PSD3 and PSR, highlighting their unique features and overlaps.
• Impact of PSD3 and PSR on Consumers and Banks
  How these regulations will affect consumers and financial institutions.
• New Rulebooks vs. New Legislation
  How new rulebooks align with legislative changes, with practical examples.

Part 2: Open Banking and FIDA

• Open Banking and API
  What Open Banking means and how APIs facilitate it.
• FIDA: Objectives and Benefits
  Goals of the Financial Data Access (FIDA) framework and its advantages.
• How FIDA Works
  Practical explanation of FIDA’s functionality.

Who Should Attend?

• Compliance officers
• Banking professionals
• Financial consultants
• Legal advisors
• Payment service providers

Course Benefits

• Gain a deep understanding of the regulatory landscape for payment services in the EU and Slovakia.
• Learn about the practical implications of PSD3, PSR, and Open Banking.
• Stay updated on the latest legislative changes and their impact on your organization.

Your Lector

Mária Gardianová
Senior Banking Consultant

Mária brings over 32 years of experience in banking, specializing in domestic and cross-border payment services. She has worked in prominent commercial banks, including Creditanstalt, Hypovereinsbank, HVB Bank, Tatrabanka, and BKS Bank, and played a key role in two major mergers: BACA-HVB and HVB-Unibanka. She also spent 4.5 years at the National Bank of Slovakia as a chief inspector overseeing banking and payment services, as well as AML compliance in payment institutions.

Mária was a long-term member of the Slovak Banking Association (2010–2018) and served as a delegate for the Slovak Republic in Brussels at the SEPA Working Group, contributing to the implementation of IBAN+, SCT, and SDD (2012–2016). Additionally, she represented the National Bank of Slovakia in the EBA SCPS (Standing Committee on Payment Services) from 2019 to 2021. Currently, she works at UniCredit S.p.A., focusing on IT service projects and payment service products across CEE countries within the UniCredit Group.

Training Course Registration