Four Best Practices for Secure App Development in AWS

This article was originally featured on the Checkmarx blog. Click HERE to read the original…

Government AppDev Leaders Explain the Benefits and Risks of APIs and IaC

On Thursday, May 20, the Institute for Critical Infrastructure Technology – a cybersecurity-focused think tank…

Managing the Risks of Open Source Code

Most organizations with in-house development teams maintain their own code bases. Their developers write most…

What the StackRox Acquisition Means for Red Hat Customers – a Q&A with Michael Epley

Following their January 2021 acquisition of StackRox, the GovDevSecOpsHub sat down with Red Hat’s Chief…

Meeting Government Compliance and Security Challenges – a Q&A with Michael Epley of Red Hat

In a recent article on the GovDevSecOpsHub, we featured the first of a three-part interview…

Increasing the AppSec of Complex, Containerized Applications – a Q&A with Michael Epley of Red Hat

In January of this year, Red Hat announced that it was acquiring StackRox, a leading…

An Intro to AIOps and its Benefits for Agencies

This article is part of a longer piece on AIOps recently published on the Dynatrace…

The “Source” in “Open Source” Projects is Not Always Code

If someone says “open source” to you today, you will probably fill in the rest…

How the Air Force and SSA Navigate the (Sometimes Bumpy) Road to DevSecOps

Software and applications have taken on an outsized role in today’s government – helping agencies…

 

 

 

We launched GovDevSecOpsHub to focus on the next evolution of application development, DevSecOps, which brings cybersecurity teams and tools into the development process sooner so that applications are more secure and safeguarded against cyber threats.

In  GovDevSecOpsHub we’ll look at the evolution from traditional software and application development to the DevOps model. We’ll talk about the importance of moving from DevOps to DevSecOps. We’ll highlight the technologies and cultural changes necessary to make this shift happen. And we’ll profile government organizations and executives that are the “boots on the ground” as the government pivots towards the DevSecOps model.