The “Source” in “Open Source” Projects is Not Always Code

If someone says “open source” to you today, you will probably fill in the rest of the phrase with “…software.” Someone like me, who works for Red Hat, is bound to do this too, if only out of habit.  Since…

Healthcare Organizations Embrace Open Source to Improve Operations

The healthcare industry focuses much of its innovation, research and development on new patient procedures, medications and treatments that will help people live longer, happier and healthier lives. Often, this focus on advancing and improving patient health results in the…

The Challenges of Open Source Software and How to Solve Them

This article was originally published on the Checkmarx Blog. To read the original article in its entirety, click HERE. Although software is significantly changing our work, home, and personal lives, many don’t realize that today’s software is made up of…

Why Organizations Should Focus on AppSec this Cybersecurity Awareness Month and Beyond

The Cybersecurity and Infrastructure Security Agency (CISA) and the National Cyber Security Alliance (NCSA) sponsor Cybersecurity Awareness Month each October. This annual event is positioned as an opportunity to raise awareness about the importance of cybersecurity for citizens and organizations…

Twelve Factors for Measuring an Open Source Community’s Health

A healthy open source community is one that demonstrates open practices, uses open infrastructure, and cultivates an open culture with the goal of becoming more sustainable. But even for the most seasoned community architects, measuring an open source community’s health…

Three Changes That Can Help Secure the World’s Code

This article was contributed by Erica Anderson of GitHub. It was originally published on the GitHub blog and is available in its entirety HERE. We all play a role in securing the world’s code. No one company can solve things…

Six Reasons Why Agencies Should Shift Security Left

This article was contributed by Jason Green, the Vice President of Public Sector at Sonatype, and was originally published on the Sonatype Blog. To read the original article in its entirety, click HERE. Underpinning all modern technology – software and…

 

 

 

We launched GovDevSecOpsHub to focus on the next evolution of application development, DevSecOps, which brings cybersecurity teams and tools into the development process sooner so that applications are more secure and safeguarded against cyber threats.

In  GovDevSecOpsHub we’ll look at the evolution from traditional software and application development to the DevOps model. We’ll talk about the importance of moving from DevOps to DevSecOps. We’ll highlight the technologies and cultural changes necessary to make this shift happen. And we’ll profile government organizations and executives that are the “boots on the ground” as the government pivots towards the DevSecOps model.