The Air Force wants to open its Platform One services to private sector partnerships with the hope of tapping into a consortium of academic and industry organizations to enhance its coding environment.

2020 was a transformative year for public sector IT. Accelerated by necessity, agencies rapidly scaled and secured their digital ecosystems to accommodate a newly remote workforce. Against this backdrop, significant cybersecurity hacks revealed continued vulnerabilities in the federal supply chain and state and local IT infrastructures.

Looking forward there is much work to be done. A new administration, new regulations and continued reliance on the cloud will shape public sector IT through 2021.

Each month DLT’s GovIT podcast series explores a different technology, what it is and how it can help public sector organizations achieve their monetization goals and accomplish their missions. Recently, our host, Tom Temin, sat down with BMC Software's Jon Powers for a Q&A about security operations or SecOps for the public sector. 

Here are some highlights of their discussion.

Q: What is SecOps?

Blog originally posted by Federal News Network here.

Article originally posted to the GovDevSecOpsHub here.

Article originally posted to the GovDevSecOpsHub here.

Federal agencies are developing and releasing software and apps at a rapid speed. This haste comes at a price. Verizon reports that nearly 70% of the data breaches it investigated in 2019 were due to attackers targeting vulnerabilities in public-facing web applications. It also introduces compliance risk.

Cloud native is transforming how the public sector builds and runs applications bringing agility, flexibility, scalability, and decreased downtime and cost. The de facto foundation of cloud native application development is Kubernetes. But getting started with Kubernetes isn’t as simple as it appears. While it’s relatively uncomplicated to spin up a cluster in the cloud, getting from there to production is a bit more daunting.

In my blog earlier this year, I sat down with Ben Chicoski from CloudBees to discuss the importance of their technology in the federal government, the work they’re doing in the SDLC, and the role they play in DLT’s Secure Software Factory. 

Today, I am very excited to share a conversation I recently had with Larry Johnsen, VP of Sales for the Military/Aerospace/Government Solutions verticals at Parasoft.

Many subject matter experts will tell you that DevSecOps is primarily a cultural transformation issue as opposed to a technology problem. While a true statement, the right technologies can help expedite that transformation given a vision of what your agency wants to achieve through automation. For example, can you optimally perform your mission without adopting innovation as a factor when trying to predict the best tools to use in your DevSecOps shop?