DevSecOps

February 1, 2021
 

DevSecOps is being used to implement cyber hardening solutions that secure deployed, operational platforms and industrial control systems (ICS) against cyber threat actors. Work in vulnerability analysis and applied artificial intelligence (Ai) tool development enables streamlined threat mitigation and cyber hardening of Joint All Domain Operations (JADO) platforms and systems of the future. Learn more about how commercial algorithm innovations and government technology stacks are being combined to create rapidly fielded, integrated and accredited solutions here: https://www.alionscience.com/cyberhardening.

 

January 14, 2021
By Maryann Lawlor
U.S. Army soldiers and Defense Department contractors collaborated at Yuma Proving Ground, Arizona, during Project Convergence 20 to initiate testing exercises for new multidomain operations weapons systems. U.S. Army photo by Daniel J. Alkana, 22nd Mobile Public Affairs Detachment

The U.S. Army is focusing on how to change its processes to be faster and more agile. One fundamental shift is in its approach to leveraging commercial solutions as well as those the other services and other organizations such as government laboratories have developed. These nearer-to-prime-time technologies would be available faster than PowerPoint capabilities.

December 3, 2020
By George I. Seffers
Danielle Metz, acting deputy CIO for information enterprise, outlines obstacles the Defense Department faces in implementing rapid technology development and fielding processes.

The U.S. Defense Department is in the process of implementing its software modernization strategy, which starts with the goal of delivering new capability directly into the hands of the warfighter and addresses both the technical and nontechnical obstacles to that vision. Still, the department faces challenges in rapidly developing and fielding technologies, according to Danielle Metz, the department’s acting deputy chief information officer for information enterprise.

December 3, 2020
By George I. Seffers
Defense Information Systems Agency officials are moving toward a secure and agile software development process known as DevSecOps for new contracts. Credit: Andrey Suslov/Shutterstock

The Defense Information Systems Agency (DISA) is moving toward requiring rapid, agile and secure software development processes for new systems.

Brian Hermann, director and program executive officer, Services and Development Directorate within the agency, said he wanted to make it clear that the process known as DevSecOps will be increasingly essential for new contracts. 

October 22, 2020
By Julianne Simpson
Katie Arrington, chief information security officer for Acquisition and Sustainment, U.S. Department of Defense, says there’s no point in developing software if it’s not secure, during a webinar on securing the federal software supply chain.

Anyone moving through the ecosystem of software development and cyber over the last few decades has heard cool words to describe it: Waterfall, Cobalt, Agile, DevOps and now DevSecOps.

DevSecOps may be the latest term but the idea behind it remains constant: Security should be a priority from the start.

August 19, 2020
By Kimberly Underwood
Speaking at a virtual luncheon of AFCEA's Alamo Chapter on August 19, Lt. Col. John Priestly, USAF, program director and material leader, Unified Platform Program; and director, LevelUp CodeWorks Software Factory, San Antonio, shares that he is seeing initial success at the cyber software factory, which is less than a year old.

Less than a year old, the San Antonio-based LevelUp Code Works Software Factory is succeeding in starting to “break the mold” of Defense Department software development. The factory, which had its grand opening last December, is providing key cyber-related products to U.S. military cyber organizations, says Lt. Col. John Priestly, program manager and materiel leader, Unified Platform Program; and director, LevelUp Code Works Software Factory.

August 18, 2020
 

Nalej Corp.,* Arlington, Virginia, and New York, New York, has been awarded a $14,865,391 cost-plus-fixed-fee contract for a System of Systems Technology Integration Tool Chain for Heterogeneous Electronic Systems (STITCHES) Warfighter Applications Team (SWAT) development operations (DevOps) prototype. This contract provides for delivery of DevOps capabilities to the System of Systems Integration Technology and Experimentation (SoSITE) STITCHES platform managing DevOps toolchains in addition to providing a team dedicated to the effort.

July 14, 2020
By Kimberly Underwood
A U.S. Army M270 Multiple Launch Rocket System sits during a demonstration at the Grafenwoehr Training Area in Germany in February. The Army Futures Command is creating a software factory to train warfighters to code on the spot. Credit: U.S. Army photo by Spc. Denice Lopez

The U.S. Army Futures Command is preparing a software center designed to improve the digital competency of warfighters. The so-called software factory, in Austin, Texas, will take soldiers and civilians with a propensity toward software development and sharpen their skills. Warfighters facing near-peer threats and operating in a multidomain environment in the future may not have the ability to reach back to higher echelons for coding solutions or necessarily rely on contractor presence for software. They will need to be able to diagnose software issues of information technology that soldiers will be using the future as well as code specific solutions on the spot to support faster decision making.

February 1, 2020
By George I. Seffers
The amphibious assault ship USS Bataan (LHD 5) departs Naval Base Norfolk. It will be one of two ships to initially carry the Information Warfare Platform to sea. Photographer’s Mate 1st Class Shawn Eklund/U.S. Navy​

Before the end of the fiscal year, the U.S. Navy intends to deliver an early version of the Information Warfare Platform to two ships, the USS Lincoln and USS Bataan before fielding more comprehensive systems to the Theodore Roosevelt Strike Group. The new capability will be enabled in part by artificial intelligence, machine learning and so-called digital twins. It is expected to offer the ability to acquire, test, install and field technologies at a faster, more affordable rate while also enhancing cybersecurity.

June 6, 2019
By Kimberly Underwood
The DevSecOps software platform being deployed by the DOD Enterprise DevSecOps Enterprise Initiative will enable software fixes in minutes and automate testing and security, among other capabilities, says Nicolas Chaillan, chief software officer, U.S. Air Force, co-lead of the Initiative.

The Defense Department is pursuing an aggressive software development program, called the DOD Enterprise DevSecOps Initiative. The effort is focused on bringing automated software tools, services and standards to DOD programs so that warfighters can create, deploy and operate software applications in a secure, flexible and interoperable manner, explained Nicolas Chaillan, chief software officer, U.S. Air Force, co-lead of the DOD Enterprise DevSecOps Initiative. The program is a joint effort of the DOD’s Chief Information Officer, Office of the Undersecretary of Defense for Acquisition and Sustainment and the services, he said.

April 23, 2019
Posted by Kimberly Underwood
Engineers from the 517th Software Engineering Squadron, including (l-r) Carl Stuck and Scott Vigil, project directors; David Jolley, director; and Brent VanDerMeide, flight director, have created a new software development platform. U.S. Air Force photo by Todd Cromer

A new software development system built by the Air Force will help developers get digital tools out to warfighters faster. Engineers at the 517th Software Engineering Squadron at Hill Air Force Base, Utah, created a workflow system and software development methodology to improve the development testing and fielding of new software products.

Nicknamed “The Pipeline,” the new continuous development software platform enables paired programming and test-driven development with automated test and evaluation, Todd Cromar of 75th Air Base Wing Public Affairs reported. It features a development secure operations, known as DevSecOps, a faster, more secure software development methodology, Cromar noted.