Successfully Implementing DEV-SEC-OPS in the Cloud
1 685
20.8
Amazon Web Services775 тыс
Следующее
Опубликовано 2 июля 2018, 18:02
AWS Public Sector Summit 2018 - Washington, D.C.
For federal agencies, accomplishing in just a matter of weeks IT tasks that typically take months or years may seem like a pipe dream. That’s the promise of the DevSecOps methodology. DevSecOps is a way of thinking that encourages software developers to work collaboratively with IT operations and security staff on development, testing and quality assurance to develop and deploy software more quickly and automate deployment of code, security and infrastructure changes.
Commercial Cloud provides a comprehensive platform of tools, technologies and services that can enable federal agencies to realize this promise.
The VA Digital Services Team (DSVA) has been leading the Department of Veterans Affairs on their journey to the cloud for the past 4 years. The initial DSVA cloud deployment was vets.gov and Caseflow on AWS. Vets.gov and Caseflow are real world examples of how modern devsecops techniques be used with existing federal ATO security requirements.
In this talk, AWS and DSVA will present DevSecOps principles, best practices and lessons learned. DSVA will discuss how Vets.gov and Caseflow have implemented these techniques inside the VA. This includes applying continuous integration and continuous deployment (CI/CD) to the software development process where security checks are performed and automated to ensure compliance and ATO conformance with VA's security standards.
Speakers: Jim Jennis, Alan Ning
For federal agencies, accomplishing in just a matter of weeks IT tasks that typically take months or years may seem like a pipe dream. That’s the promise of the DevSecOps methodology. DevSecOps is a way of thinking that encourages software developers to work collaboratively with IT operations and security staff on development, testing and quality assurance to develop and deploy software more quickly and automate deployment of code, security and infrastructure changes.
Commercial Cloud provides a comprehensive platform of tools, technologies and services that can enable federal agencies to realize this promise.
The VA Digital Services Team (DSVA) has been leading the Department of Veterans Affairs on their journey to the cloud for the past 4 years. The initial DSVA cloud deployment was vets.gov and Caseflow on AWS. Vets.gov and Caseflow are real world examples of how modern devsecops techniques be used with existing federal ATO security requirements.
In this talk, AWS and DSVA will present DevSecOps principles, best practices and lessons learned. DSVA will discuss how Vets.gov and Caseflow have implemented these techniques inside the VA. This includes applying continuous integration and continuous deployment (CI/CD) to the software development process where security checks are performed and automated to ensure compliance and ATO conformance with VA's security standards.
Speakers: Jim Jennis, Alan Ning
Свежие видео
3 дня – 6 7540:34
7 дней – 7000:45
11 дней – 1000:46
12 дней – 2 1001:39
151 день – 4 59520:51Случайные видео
283 дня – 2081:40
287 дней – 1 6791:46
298 дней – 8 5975:22
27.10.23 – 7520:20
21.12.11 – 14 78111:36
16 часов – 23424:48
4 дня – 2830:28
4 дня – 22113:42
4 дня – 1 7861:14
5 дней – 015:05
5 дней – 5310:30
6 дней – 145 09613:43
2 дня – 40 99316:28
2 дня – 270 9129:09