GovDevSecOpsHub Editors
GovDevSecOpsHub Editors
40 Articles0 Comments

Shift-Left SRE: Building Self-Healing into your Cloud Delivery Pipeline

By leveraging modern monitoring tools, you can execute specific remediation actions in a much smarter and efficient way. This best practice brief covers 4 ways to move to a more “self-healing” pipeline: Sample remediation, or self-healing use cases How to…

Building Resiliency into the DevOps Cloud

While cloud, containers, and microservices lead the way for the efficient scaling of DevOps in the cloud, vast complexity, dependencies, manual operations, and a lack of real-time information increase business risk. Problem triage time and MTTR exceed acceptable levels Lack…

Whitepaper: Build Security Into Your DevOps Strategy

Security is the number one concern of public sector organizations. Many struggle to integrate security into their existing development practices. This paper investigates the processes and automation needed to improve software security while maintaining — and improving — quality. As…

Making Government More Nimble: A Roadmap to Drive Innovation in the Public Sector

Creating a modern foundation for digital government will require government IT organizations to adopt a DevSecOps approach, which involves automating their technology infrastructures and workflows to improve collaboration between developer and operations teams and to accelerate the development-to-production life cycle.…

Sonatype Survey Links Developer Job Satisfaction with Mature DevOps Practices

The findings of Sonatype’s 2020 DevSecOps Community Survey Government Edition offer another compelling reason why fully embracing DevSecOps best practices makes good business sense. The report, which surveyed over 5,000 developers, DevOps, and IT and information security professionals from around…

Sonatype Government DevSecOps Community Survey

The government-specific findings from Sonatype’s seventh annual DevSecOps Community Survey pull back the curtain on successful DevSecOps practices and secure coding, and highlight trends in different verticals, including government. Within the public sector, respondents showed the highest rates of DevSecOps…

DevSecOps: Speed and Security, Together at Last

Cybersecurity in any organization is a paramount concern. As software developers work at an increasingly fast pace, the potential for security vulnerabilities becomes greater if the traditional model of software development and security remains an afterthought. DevSecOps introduces the cultural…

The Methodology and Tools for Testing in Regulated Environments

Just as in the corporate world, speed of release is a critical driver in regulated environments. DevOps creates the environment in which teams can build, test, and release software faster and more reliably. But in the quest for speed, security…

DevSecOps for Government Agencies, the GitHub Way

The key to the government’s ability to innovate at speed is access to secure, high-quality software. But the path to production, including strict compliance standards for security, governance, and accreditation, can add months—or years—to delivery cycles. Even after moving to…

The Government Agency’s Guide to DevSecOps

DevOps is here to stay. But security architects have long understood what DevOps leaders are just discovering—security, not only shipping, is a shared responsibility. Today, operations teams use collaboration, automation, and containers to speed up software delivery. While these DevOps…

 

 

 

We launched GovDevSecOpsHub to focus on the next evolution of application development, DevSecOps, which brings cybersecurity teams and tools into the development process sooner so that applications are more secure and safeguarded against cyber threats.

In  GovDevSecOpsHub we’ll look at the evolution from traditional software and application development to the DevOps model. We’ll talk about the importance of moving from DevOps to DevSecOps. We’ll highlight the technologies and cultural changes necessary to make this shift happen. And we’ll profile government organizations and executives that are the “boots on the ground” as the government pivots towards the DevSecOps model.