DevSecOps: Best Practices for Managing and Delivering DevSecOps
What is DevSecOps? DevSecOps is a combination of processes, tools and people, which combine with enterprise values across the disciplines of Development, Security and Operations. DevSecOps form a unique culture to enable more efficient delivery and management of secure software. DevSecOps is able to bring more value to the enterprise, more quickly, through its iterative feedback process.
With the advent of Cybersecurity Maturity Model Certification (CMMC) weaving into all aspects of Government software development, it is important to understand how DevSecOps can help agencies and programs become agile and compliant. The waterfall process, the most common traditional development process, focuses on extensive requirements documentation and development up front. This can set goals for the development of features and capabilities for the first release of a product that do not all have significant impact or provide wide-reaching value across the user base. On the other hand, DevSecOps brings several advantages to the table for agencies and programs, including shorter time to value, faster iteration to field new capabilities and moving risk left. The most valuable advantage is shortened time to value, whether that value be measured as innovation, reliability, or reduced rollout lead time.
- Moderator: Bob Carter, Vice President Public Sector, Apptio
- Michelle Dufty, Senior Vice President, Sonatype
- Mike Howard, CTO, Norseman Services
This webinar is made possible by our sponsor, Apptio. Thank you!