GovDevSecOpsHub Editors
64 Articles0 Comments

Poll: Agency ATOs, DoDIN APL, or FIPS 140-2 – what drives your COTS software decisions?

To foster faster, more secure application development, many government organizations have turned to a new generation of application development platforms and commercial off the shelf (COTS) solutions designed to automate testing, bake security into every aspect of the development lifecycle…

Three steps for expediting software delivery

In application development, and especially in DevSecOps environments, there is increased pressure for development teams to deliver applications more quickly. However, meeting the challenge of increasing productivity and accelerating development often comes at the cost of security. To ensure that…

Healthcare Organizations Embrace Open Source to Improve Operations

The healthcare industry focuses much of its innovation, research and development on new patient procedures, medications and treatments that will help people live longer, happier and healthier lives. Often, this focus on advancing and improving patient health results in the…

Move it left, all the way left – Application Security as strategy creates advantages

Security vulnerabilities in code are often seen as failures of the application development process since bugs that increase risk can make code undeployable. In contrast, security checks that slow application development directly oppose deployment velocity. There definitely is a quandary…

Three Kubernetes Challenges Facing Government Development Teams

In a recent series of articles on the GovDevSecOpsHub, we discussed Kubernetes and how it has become an integral part of the application development and deployment process for application development teams that work with or on behalf of the federal…

Four Keys to Fighting Cluster Sprawl in Kubernetes Environments

In recent articles on the GovDevSecOpsHub, we discussed the realities of cluster sprawl and the impact of cluster sprawl on our agencies. Ultimately, we established that cluster sprawl is a very real problem facing the government that can slow the…

Cluster sprawl is the speed trap on the Kubernetes innovation highway

In our last article on the GovDevSecOpsHub, we discussed the basics of Kubernetes deployments and how the widespread embrace of Kubernetes has created a new challenge that industry experts call, “cluster sprawl.” Governmental agencies have begun to shed the stigma…

Are there hidden risks on the Kubernetes transformation highway?

DevSecOps environments are touted as the best methodology for effectively delivering secure applications. But some of the same tools that have opened the door to the efficient, rapid delivery and deployment of new applications that is the hallmark of DevSecOps…

Four Ways COVID-19 Has Impacted Software Testing and Delivery

We’ve discussed the increased role and importance that applications have in our government on multiple occasions on the GovDevSecOpsHub. The fact is, software and digital services are essential in today’s government agencies and organizations. And they’re only becoming more necessary…

5 Reasons to Prioritize Software Security

The pace of digital transformation has reached a speed never before seen, forcing organizations into an “adapt or die” situation. Software is at the center of it all, placing increased pressure on DevOps leaders, AppSec managers, and developers to develop…

 

 

 

We launched GovDevSecOpsHub to focus on the next evolution of application development, DevSecOps, which brings cybersecurity teams and tools into the development process sooner so that applications are more secure and safeguarded against cyber threats.

In  GovDevSecOpsHub we’ll look at the evolution from traditional software and application development to the DevOps model. We’ll talk about the importance of moving from DevOps to DevSecOps. We’ll highlight the technologies and cultural changes necessary to make this shift happen. And we’ll profile government organizations and executives that are the “boots on the ground” as the government pivots towards the DevSecOps model.