DevSecOps

DevSecOps — development, security and operations — integrates security into every phase of software development. In government, DevSecOps veers away from the traditional waterfall approach of software development in favor of integrating security practices throughout the software development lifecycle, from initial design to deployment and maintenance. This approach aims to build secure and resilient systems from the start, rather than bolting security on as an afterthought. For government agencies, this means protecting sensitive data, ensuring mission continuity and complying with stringent regulations. By embracing DevSecOps principles, government organizations can improve their cybersecurity posture, reduce risks and better serve citizens.

Software Modernization at DOD

Hear how tech leaders from the Department of the Air Force and the very first software factory, Kessel Run, discuss how software factories are impacting the future of warfare and defense IT at the tactical edge.
May 18, 2023
30m watch
$CyberCast: v\Lessons Learned from the Thunderdome Zero Trust Pilot$
Lessons Learned from the Thunderdome Zero Trust Pilot

The Defense Information Systems Agency reflects on the recently completed zero trust pilot and implications for the armed services.
April 19, 2023
33m listen
- Deep Dives
- Cloud
- DevSecOps
- Report
DevSecOps Enabling Hybrid Cloud

To get the most out of hybrid cloud, federal agencies need to go beyond DevSecOps with configuration management, infrastructure-as-code andsoftware bills of materials (SBOMs).
February 22, 2023
7m read
'We're Doing It Wrong': The Navy's Plan for Better Cybersecurity

CIO Aaron Weis' take on a continuous ATO process includes moving to a currency mindset.
February 15, 2023
7m read
Pentagon 5G Investments Poised to Improve Warfighter Decision-Making

FutureG & 5G initiative is hastening 5G adoption across DOD and investment in NextG technologies.
February 3, 2023
7m read
The Armed Services Wish List for Hybrid Cloud Security

Defense cloud leaders dissect cloud security myths and challenges, with DevSecOps and zero trust as the pillars of a secure hybrid cloud.
December 6, 2022
7m read
- Cloud
- DevSecOps
How DevOps Accelerates, Streamlines IT Services

With legacy systems in place, agencies are starting to use DevOps to ease the shift to new IT systems.
December 2, 2022
7m read
- DevSecOps
OMB Appoints Drew Myklegard as Permanent Deputy Federal CIO

Drew Myklegard moves from acting to permanent deputy federal CIO.
October 26, 2022
7m read
DOD is Protecting 5G Networks with Emerging Security Techniques

Brian Kelley explains how he’s leveraging new models to secure 5G networks.
September 9, 2022
5m read
CISA, DISA are Focusing on Transparency to Secure Supply Chain

SBOMs and transparency are key to resilient cybersecurity models.
September 9, 2022
5m read
Software Factories Say Policy Vital to Implementing DevSecOps Across DOD

Software factories push for culture and policy changes to help put the Defense Department on a faster track to integrating DevSecOps into its infrastructure.
August 19, 2022
5m read
DevSecOps is Making Army, CMS More Agile

Part of agency digital transformations include a focus on upskilling the workforce and adopting new security models.
August 19, 2022
5m read