What to Look for in a Security Scanning Solution

Pointing out problems is not necessarily a bad thing. But simply pointing out problems without offering solutions provides little value. This is true in many facets of life, but it also applies within the context of software security scanning.  security…

Three Steps for Accelerating the ATO Process

This article originally appeared on the Checkmarx blog. Click HERE to read the original in its entirety. An ATO or Authority to Operate is an authorization process that a software system needs to have before the agency can use it…

Managing the Risks of Open Source Code

Most organizations with in-house development teams maintain their own code bases. Their developers write most of the code for those codebases themselves. However, they may choose to add third-party open source code to their codebases, for several reasons. The most…

AppSec and SLED – Shifting Left to Solve Deep Challenges

This article originally appeared on the Checkmarx Blog. Click HERE to read the original in its entirety. For state governments, local governments, and education agencies – a cohort often referred to as the SLED sector – there has perhaps never…

Healthcare Organizations Embrace Open Source to Improve Operations

The healthcare industry focuses much of its innovation, research and development on new patient procedures, medications and treatments that will help people live longer, happier and healthier lives. Often, this focus on advancing and improving patient health results in the…

Three Kubernetes Challenges Facing Government Development Teams

In a recent series of articles on the GovDevSecOpsHub, we discussed Kubernetes and how it has become an integral part of the application development and deployment process for application development teams that work with or on behalf of the federal…

Four Ways COVID-19 Has Impacted Software Testing and Delivery

We’ve discussed the increased role and importance that applications have in our government on multiple occasions on the GovDevSecOpsHub. The fact is, software and digital services are essential in today’s government agencies and organizations. And they’re only becoming more necessary…

Better, Faster, Safer – Improving App Development and Security with OpenShift

As software takes on an increasingly essential and mission-critical role in the operations of the U.S. government and Department of Defense (DoD), application developers creating software on behalf of the government are under pressure to develop and deploy new versions,…

ASG Study Reveals Largest Organizational SDM Challenges

The role and importance of software in today’s government agencies and organizations has increased dramatically. Digital transformation initiatives across federal, state, and local governments and their agencies have resulted in a new generation of applications that help to increase efficiency…

Why Now is the Time for Continuous Testing

At DLT we have seen many examples of software development processes across many agencies, and unfortunately, most of them suffer from a lack of automated testing.  As a developer at heart, I find this particularly concerning as defect-free code is…

 

 

 

We launched GovDevSecOpsHub to focus on the next evolution of application development, DevSecOps, which brings cybersecurity teams and tools into the development process sooner so that applications are more secure and safeguarded against cyber threats.

In  GovDevSecOpsHub we’ll look at the evolution from traditional software and application development to the DevOps model. We’ll talk about the importance of moving from DevOps to DevSecOps. We’ll highlight the technologies and cultural changes necessary to make this shift happen. And we’ll profile government organizations and executives that are the “boots on the ground” as the government pivots towards the DevSecOps model.