One in Six Developers in Healthcare Report Open Source Breaches | Press Release

blog-logo Sonatype Blog

NIST: Adopt a Secure Software Development Framework (SSDF) to Mitigate Risk of Software Vulnerabilities

NIST recommends a SSDF framework to assess open source component cybersecurity risks, including an SBOM and automated security controls in the SDLC.
Read More...

Six Memorable Sessions with Government DevSecOp Leaders: What We Learned

By Jason Green on May 07, 2020 Cybersecurity
Chris Roberts, Ron Ross, Katie Arrington, Nicolas Chaillan, and Lauren Knausenberger join Sonatype leadership to discuss security trends in the government.
Read More...

Federal DevSecOps Leaders: It's Time to Join The Conversation

The DevSecOps Government Leadership Forum, typically hosted in Washington, D.C., will be hosted online so government leaders everywhere can participate.
Read More...

Department of Defense DevSecOps Journey

By Sylvia Fronczak on March 30, 2020 government
The DevSecOps stack is open source and open to the public. Everything is infrastructure as code and can run on any environment, leveraging Kubernetes.
Read More...

Top 6 Reasons the Time is Now for DevSecOps in the Federal Government

By Jason Green on March 25, 2020 Cybersecurity
By playing better offense at the beginning of the digital supply chain, federal agencies can better protect themselves and the American citizenry.
Read More...

Improving DevSecOps at the GSA

By Derek Weeks on September 05, 2019 government
The General Service Administration shares how it adopted devops practices interagency in this presentation, Getting There: The Journey to Government DevOps.
Read More...

Josh Corman on Keeping up with Hackers [CNBC VIDEO]

By Derek Weeks on August 11, 2015 blackhat

Josh Corman had a busy week at BlackHat last week. During the chaos, CNBC news caught up with him to talk about recent cyber attacks and what can be expected in the future.

Read More...