Value Stream Thinking – The Why Behind DevSecOps

Value stream thinking is not a revolutionary concept. Looking at famous companies like the Ford or Toyota motor companies, it’s easy to see many famous examples of maximizing value and minimizing waste. Each has found success, and each has its…

Making Software Audits Easier by Establishing Audit-Ready Pipelines

Software audits play an essential role in ensuring the quality and performance of the applications that government agencies and contractors are developing. Audits are essential for ensuring applications are secure, identifying vulnerabilities that may be – or have already been…

Opinionated Software – What it is and How it Enables DevOps

This article is a selection from a longer post authored by Christian Meléndezis for the CloudBees blog. To read the original in its entirety, click HERE. What is opinionated software? According to Stuart Eccles, CTO at Made by Many, “Opinionated…

How DevSecOps and Automation Can Accelerate ATOs

As federal agencies develop more online services and systems to meet the mission of the U.S. government, their appetite and need to develop and deploy secure software applications rapidly continues to grow. Many agencies are embracing DevSecOps and cloud services…

Study Shows the Impact of COVID-19 on Software Development Teams

Since March of this year, Americans have been living and working through some very trying and unique circumstances. The ongoing COVID-19 pandemic has shuttered offices across the country and led to many Americans working from home, predominantly. This has resulted…

Two Challenges Keeping Development Teams From Testing in Production

In a recent article on the GovDevSecOpsHub, we shared three key benefits that shifting testing to the left delivers to the application and software development process. Those three benefits came courtesy of a recent Cloudbees blog post from Dave Farinelli,…

Three Benefits of Testing in Production

In the past, the application and software development process followed a “waterfall” process. The software was built by the development team before it was then tested and released to the public. Today, with the advent of microservices and organizations looking…

DevSecOps: Speed and Security, Together at Last

Cybersecurity in any organization is a paramount concern. As software developers work at an increasingly fast pace, the potential for security vulnerabilities becomes greater if the traditional model of software development and security remains an afterthought. DevSecOps introduces the cultural…

 

 

 

We launched GovDevSecOpsHub to focus on the next evolution of application development, DevSecOps, which brings cybersecurity teams and tools into the development process sooner so that applications are more secure and safeguarded against cyber threats.

In  GovDevSecOpsHub we’ll look at the evolution from traditional software and application development to the DevOps model. We’ll talk about the importance of moving from DevOps to DevSecOps. We’ll highlight the technologies and cultural changes necessary to make this shift happen. And we’ll profile government organizations and executives that are the “boots on the ground” as the government pivots towards the DevSecOps model.