Software and applications are pervasive across today’s government. Applications are essential for the mission-critical work of the military and civilian agencies. They’re increasing transparency and efficiency of government programs and application processes, and they’re even integrated into today’s military weapons systems and platforms.
However, the increased importance and integration of applications and software into the very fabric of government agencies and missions isn’t the only change that we’ve witnessed over the past few years. The process of developing those applications has also shifted and evolved, as well. The days of siloed development and operations departments within government agencies is fading fast. The rise of Agile software development and DevOps has shattered the silos and smashed the walls between these organizations, bringing them together so that application development and deployment is more streamlined and effective.
But what about security? In today’s harsh threat landscape, it’s essential that cybersecurity get baked into everything that a government agency or military organization does and implements. But is that really possible if cybersecurity personnel aren’t involved in the development process — testing applications and microservices — as they’re being developed?
We launched GovDevSecOpsHub to focus on the next evolution of application development, DevSecOps, which brings cybersecurity teams and tools into the development process sooner so that applications are more secure and safeguarded against cyber threats.
In GovDevSecOpsHub we’ll look at the evolution from traditional software and application development to the DevOps model. We’ll talk about the importance of moving from DevOps to DevSecOps. We’ll highlight the technologies and cultural changes necessary to make this shift happen. And we’ll profile government organizations and executives that are the “boots on the ground” as the government pivots towards the DevSecOps model.