The past few months have been witness to two massive ransomware attacks that have impacted organizations that are part of our country’s critical infrastructure – the attacks against the Colonial Pipeline Company and JBS, one of the country’s largest meat…
Government AppDev Leaders Explain the Benefits and Risks of APIs and IaC
On Thursday, May 20, the Institute for Critical Infrastructure Technology – a cybersecurity-focused think tank – brought together leaders from across the federal government and military to discuss an incredibly important topic – the benefits and risk factors that new…
What the StackRox Acquisition Means for Red Hat Customers – a Q&A with Michael Epley
Following their January 2021 acquisition of StackRox, the GovDevSecOpsHub sat down with Red Hat’s Chief Architect and Security Strategist for Public Sector, Michael Epley, for an in-depth, three-part interview series about the security challenges that today’s more complicated applications create…
Two New Attack Vectors Creating an AppSec Imperative for Development Teams
As digital transformation initiatives sweep across the government and military, the role of software continues to grow and increase in importance. Today, every government agency and military organization is looking to embrace applications that can make their workforce more effective,…
Meeting Government Compliance and Security Challenges – a Q&A with Michael Epley of Red Hat
In a recent article on the GovDevSecOpsHub, we featured the first of a three-part interview series with Michael Epley, the Chief Architect and Security Strategist for Public Sector at Red Hat. We sat down with Michael following the company’s announcement…
Increasing the AppSec of Complex, Containerized Applications – a Q&A with Michael Epley of Red Hat
In January of this year, Red Hat announced that it was acquiring StackRox, a leading provider of container and Kubernetes security software solutions. The acquisition was expected to add a number of complementary application security capabilities to Red Hat’s already…
Developer Spotlight – DevSecOps Helps goTenna Deliver Secure Communications to the Military
DevSecOps is rapidly gaining traction within the federal government and with the IT solution providers and contractors that service both the federal government and military. And for very good reason. Evolving away from traditional forms of application development – such…
Seven Tips for a Successful DevOps Journey Courtesy of Capital One
While embracing DevOps and DevSecOps is an essential step in expediting application development without sacrificing security, many government agencies have been slow to make the jump, or have faced challenges on their way towards embracing Agile and DevOps approaches to…
How the Air Force and SSA Navigate the (Sometimes Bumpy) Road to DevSecOps
Software and applications have taken on an outsized role in today’s government – helping agencies and military organizations more effectively and efficiently accomplish their missions and service constituents. But to keep pace with innovation, stay ahead of adversaries and keep…
Four Ways to Combat Developer Burnout
There is no lack of high-stress industries and occupations that have to battle against burnout and employee fatigue. They’re problems that face a number of jobs – from hospital staff to airline pilots. But, when you think about occupations that…