Developer Spotlight – Kessel Run Makes Air Force History

Last month, the Air Force Life Cycle Management Center (AFLCMC)’s Detachment 12, which is better known by its Star Wars-inspired operational name – Kessel Run – announced that its Kessel Run All Domain Operations Suite (KRADOS) would be operationally utilized…

Managing the Risks of Open Source Code

Most organizations with in-house development teams maintain their own code bases. Their developers write most of the code for those codebases themselves. However, they may choose to add third-party open source code to their codebases, for several reasons. The most…

AppSec and SLED – Shifting Left to Solve Deep Challenges

This article originally appeared on the Checkmarx Blog. Click HERE to read the original in its entirety. For state governments, local governments, and education agencies – a cohort often referred to as the SLED sector – there has perhaps never…

An Intro to DevOps from Gene Kim – Former Founder of Tripwire

This article originally appeared on the Dynatrace Blog. To read the original in its entirety, click HERE. Today, every organization is a software company, driven by demands for better, more connected digital experiences. To keep up, we’ve seen growing interest…

Value Stream Thinking – The Why Behind DevSecOps

Value stream thinking is not a revolutionary concept. Looking at famous companies like the Ford or Toyota motor companies, it’s easy to see many famous examples of maximizing value and minimizing waste. Each has found success, and each has its…

Developer Spotlight – DevSecOps Helps goTenna Deliver Secure Communications to the Military

DevSecOps is rapidly gaining traction within the federal government and with the IT solution providers and contractors that service both the federal government and military. And for very good reason. Evolving away from traditional forms of application development – such…

Six Ways DevSecOps Makes Application Development More Secure

This article is part of a larger piece that was published on the Dynatrace Blog. To read the original article in its entirety, click HERE. Traditional application security measures are not living up to the challenges presented by dynamic and…

Embracing Security-as-Code and the DevSecOps Transformation

Organizations today are facing a unique challenge, specifically how to balance security with speed. While many may view those two as opposed values, there is a growing campaign to revise and revisit that assumption. As DevOps rises in popularity, this…

Poll: Agency ATOs, DoDIN APL, or FIPS 140-2 – what drives your COTS software decisions?

To foster faster, more secure application development, many government organizations have turned to a new generation of application development platforms and commercial off the shelf (COTS) solutions designed to automate testing, bake security into every aspect of the development lifecycle…

Seven Tips for a Successful DevOps Journey Courtesy of Capital One

While embracing DevOps and DevSecOps is an essential step in expediting application development without sacrificing security, many government agencies have been slow to make the jump, or have faced challenges on their way towards embracing Agile and DevOps approaches to…

 

 

 

We launched GovDevSecOpsHub to focus on the next evolution of application development, DevSecOps, which brings cybersecurity teams and tools into the development process sooner so that applications are more secure and safeguarded against cyber threats.

In  GovDevSecOpsHub we’ll look at the evolution from traditional software and application development to the DevOps model. We’ll talk about the importance of moving from DevOps to DevSecOps. We’ll highlight the technologies and cultural changes necessary to make this shift happen. And we’ll profile government organizations and executives that are the “boots on the ground” as the government pivots towards the DevSecOps model.