AppSec Takes Center Stage in Biden Cybersecurity Executive Order

On May 12, 2021, the Biden White House released an Executive Order focused on cybersecurity that it hopes will make significant strides in addressing one of the largest challenges that many of today’s federal government agencies and military organizations are…

Poll: Agency ATOs, DoDIN APL, or FIPS 140-2 – what drives your COTS software decisions?

To foster faster, more secure application development, many government organizations have turned to a new generation of application development platforms and commercial off the shelf (COTS) solutions designed to automate testing, bake security into every aspect of the development lifecycle…

Better, Faster, Safer – Improving App Development and Security with OpenShift

As software takes on an increasingly essential and mission-critical role in the operations of the U.S. government and Department of Defense (DoD), application developers creating software on behalf of the government are under pressure to develop and deploy new versions,…

How DevSecOps and Automation Can Accelerate ATOs

As federal agencies develop more online services and systems to meet the mission of the U.S. government, their appetite and need to develop and deploy secure software applications rapidly continues to grow. Many agencies are embracing DevSecOps and cloud services…

What the New NIST Guidance Means for Embedding Security into DevOps

The conversation about hardening the software and technology used in the public sector is an age-old one, but it continues to be important. Agencies must be able to trust the technology they use both day-to-day and in critical situations. But…

Six Reasons Why Agencies Should Shift Security Left

This article was contributed by Jason Green, the Vice President of Public Sector at Sonatype, and was originally published on the Sonatype Blog. To read the original article in its entirety, click HERE. Underpinning all modern technology – software and…

 

 

 

We launched GovDevSecOpsHub to focus on the next evolution of application development, DevSecOps, which brings cybersecurity teams and tools into the development process sooner so that applications are more secure and safeguarded against cyber threats.

In  GovDevSecOpsHub we’ll look at the evolution from traditional software and application development to the DevOps model. We’ll talk about the importance of moving from DevOps to DevSecOps. We’ll highlight the technologies and cultural changes necessary to make this shift happen. And we’ll profile government organizations and executives that are the “boots on the ground” as the government pivots towards the DevSecOps model.