Shifting Application Security Left Requires Changing Both Culture and Tools

In late August, the Advanced Technology Academic Research Center (ATARC) sponsored a Webinar in conjunction with Checkmarx and Invicti entitled, “Shifting Security Left with DevSecOps.” This virtual panel discussion featured prominent application development leaders and experts from both the government…

Five Factors to Look for in an Application Security Solution

This article was originally published on the Checkmarx blog. To read the original in its entirety, click HERE. The process of writing code (and the code itself) has changed dramatically: functionality and end-goals for code execution are lightyears ahead of…

Colleges and Universities – the Next Big Target for Ransomware Attacks

The past few months have been witness to two massive ransomware attacks that have impacted organizations that are part of our country’s critical infrastructure – the attacks against the Colonial Pipeline Company and JBS, one of the country’s largest meat…

AppSec Takes Center Stage in Biden Cybersecurity Executive Order

On May 12, 2021, the Biden White House released an Executive Order focused on cybersecurity that it hopes will make significant strides in addressing one of the largest challenges that many of today’s federal government agencies and military organizations are…

DevSecOps and Security Automation – Making Application Security a Part of Development

In my previous article on the GovDevSecOpsHub, I examined the need for identifying and eliminating application-level cybersecurity vulnerabilities – such as those found in IaC and APIs – and explained why application security is becoming such a difficult challenge for…

Two New Attack Vectors Creating an AppSec Imperative for Development Teams

As digital transformation initiatives sweep across the government and military, the role of software continues to grow and increase in importance. Today, every government agency and military organization is looking to embrace applications that can make their workforce more effective,…

Four Ways to Combat Developer Burnout

There is no lack of high-stress industries and occupations that have to battle against burnout and employee fatigue. They’re problems that face a number of jobs – from hospital staff to airline pilots. But, when you think about occupations that…

 

 

 

We launched GovDevSecOpsHub to focus on the next evolution of application development, DevSecOps, which brings cybersecurity teams and tools into the development process sooner so that applications are more secure and safeguarded against cyber threats.

In  GovDevSecOpsHub we’ll look at the evolution from traditional software and application development to the DevOps model. We’ll talk about the importance of moving from DevOps to DevSecOps. We’ll highlight the technologies and cultural changes necessary to make this shift happen. And we’ll profile government organizations and executives that are the “boots on the ground” as the government pivots towards the DevSecOps model.