IaC – A Potential Source of Vulnerabilities, or an Opportunity for More Secure Infrastructure?
Last month, ICIT sponsored an online panel discussion featuring a number of application development and cybersecurity experts from across industry, the federal government, and the Department of Defense. This panel discussion focused on two new security vectors that have arisen as application development practices and technologies have evolved – infrastructure as code (IaC) and APIs.
Six Ways AST Keeps Digital Citizen Services Secure
Article originally posted to the GovDevSecOpsHub here.
When in-person processes became impossible during the pandemic, the extent to which public sector services relied on them became apparent. Town halls, municipal offices, schools, and colleges were forced to close their doors to the public, and the need to provide digital alternatives to citizen services so that constituents could continue to access them became clear.
Four Best Practices for Secure App Development in AWS
Article originally posted to the GovDevSecOpsHub here.
From “Trust but Verify” to “Never Trust” – The Importance of AST in Application Development
In our last article on the GovDevSecOpsHub, we sat down with Peter Archibald, the Regional Sales Manager for DoD and FSI sales at Checkmarx, and Jeff Ingram, a DoD Regional Sales Manager at Checkmarx, to discuss the inclusion of the company’s application security testing (AST) solution in Platform One’s Iron Bank.
Security as Code — Making Application Development Faster and Safer
Right in the middle of the holiday season, as much of the world was preparing to take some deserved time off to celebrate with their families and bid 2020 a less-than-fond farewell, some terrible news broke involving a number of government agencies and large enterprises. A common network management platform that is used widely across the public and private sectors had been victim to a supply chain attack, and the networks and data of a large number of users had been compromised.
Four Ways to Combat Developer Burnout
There is no lack of high-stress industries and occupations that have to battle against burnout and employee fatigue. They’re problems that face a number of jobs – from hospital staff to airline pilots. But, when you think about occupations that deal with fatigue and burnout, application developers may not be top of mind.
However, as the application development process has accelerated, and as dev teams have begun deploying new capabilities, patches, and updates with increased frequency, burnout has become a real problem.
Everyone Into the Platform One Pool!
The Air Force wants to open its Platform One services to private sector partnerships with the hope of tapping into a consortium of academic and industry organizations to enhance its coding environment.
Embracing Digital Government – Six Essentials for Innovation in the Public Sector
Article originally posted to the GovDevSecOpsHub here.