The Role of the Cloud and FedRAMP in Driving DevSecOps Adoption

It’s arguable that few technologies have had as revolutionary an impact on the government and…

Why a new approach to encryption is essential for today’s government applications

Over the past decade, the role of software in the federal government has evolved from…

Embracing DevSecOps AND Separation of Duties? It is Possible…

I have heard that implementing DevSecOps along with Separation of Duties (SoD) security principles is…

Why Organizations Should Focus on AppSec this Cybersecurity Awareness Month and Beyond

The Cybersecurity and Infrastructure Security Agency (CISA) and the National Cyber Security Alliance (NCSA) sponsor…

Securing containers across the SDLC reduces opportunity for threat actors

Containers – or packages of bundled applications and all of the necessary dependencies, libraries and…

Why AppSec Training is Essential for Government Agencies Today

Software and applications are playing an increasingly essential role across the federal government. Software applications…

Joyce Hunter of ICIT discusses building a better federal cyber workforce

On October 14 and October 15, 2020, top cybersecurity experts will be coming together for…

Two Challenges Keeping Development Teams From Testing in Production

In a recent article on the GovDevSecOpsHub, we shared three key benefits that shifting testing…

Three-Step Threat Modeling Process for More Secure Services

This article was originally written by Robert Reichel for the GitHub blog. To see the…

What the New NIST Guidance Means for Embedding Security into DevOps

The conversation about hardening the software and technology used in the public sector is an…

 

 

 

We launched GovDevSecOpsHub to focus on the next evolution of application development, DevSecOps, which brings cybersecurity teams and tools into the development process sooner so that applications are more secure and safeguarded against cyber threats.

In  GovDevSecOpsHub we’ll look at the evolution from traditional software and application development to the DevOps model. We’ll talk about the importance of moving from DevOps to DevSecOps. We’ll highlight the technologies and cultural changes necessary to make this shift happen. And we’ll profile government organizations and executives that are the “boots on the ground” as the government pivots towards the DevSecOps model.