DevSecOps and Security Automation – Making Application Security a Part of Development

In my previous article on the GovDevSecOpsHub, I examined the need for identifying and eliminating application-level cybersecurity vulnerabilities – such as those found in IaC and APIs – and explained why application security is becoming such a difficult challenge for…

The Up-Hill Climb of Modern Application Security

According to the analyst firm Gartner, “Over 70 percent of security vulnerabilities exist at the application layer, not the network layer.” This number was even higher in findings by the National Institute of Standards and Technology (NIST), which found that…

What the StackRox Acquisition Means for Red Hat Customers – a Q&A with Michael Epley

Following their January 2021 acquisition of StackRox, the GovDevSecOpsHub sat down with Red Hat’s Chief Architect and Security Strategist for Public Sector, Michael Epley, for an in-depth, three-part interview series about the security challenges that today’s more complicated applications create…

Two New Attack Vectors Creating an AppSec Imperative for Development Teams

As digital transformation initiatives sweep across the government and military, the role of software continues to grow and increase in importance. Today, every government agency and military organization is looking to embrace applications that can make their workforce more effective,…


Recent News

It’s Time to Evolve from DevOps to DevSecOps

As I discussed in my last piece on the GovDevSecOpsHub, the DevOps approach to software…

DevOps: Why it’s Important and Why it’s Not Enough

Over the past decade we’ve seen a movement away from traditional, siloed software and application…


Enter your email address below to receive all the latest content to your inbox.

Please view our privacy policy and terms of use for more information on how we protect and manage your personal data.

Upcoming Events
  1. The DevOps Orchestration Platform

    June 9 @ 11:00 am - 12:00 pm
Sponsored By
Powered by




We launched GovDevSecOpsHub to focus on the next evolution of application development, DevSecOps, which brings cybersecurity teams and tools into the development process sooner so that applications are more secure and safeguarded against cyber threats.

In  GovDevSecOpsHub we’ll look at the evolution from traditional software and application development to the DevOps model. We’ll talk about the importance of moving from DevOps to DevSecOps. We’ll highlight the technologies and cultural changes necessary to make this shift happen. And we’ll profile government organizations and executives that are the “boots on the ground” as the government pivots towards the DevSecOps model.