Hello, Guest!
  • Saturday, April 20, 2024

CloudBees’ Prakash Sethuraman: Agencies Should Pursue Automation, Continuous ATOs to Ensure Security in App Development

Prakash Sethuraman, chief information security officer at CloudBees, said federal agencies looking to address the complexity of software security and compliance should advance the adoption of automation and continuous authorizations to operate.

“In the world of microservices, public cloud-native applications and high-frequency releases, ATOs that periodically assess the suitability of a process are no longer valid,” Sethuraman wrote.

He noted that agencies seeking to deliver continuous ATOs should pursue compliance in real time for software supply chains.

“Deployments of software to production should be automatically prevented if the required criteria are not met,” Sethuraman said.

“When security and compliance are transparent and continuous, the DevSecOps ecosystem creates a safety net that operates in real time to prevent security missteps and ultimately helps boost the productivity and creativity of development teams,” he added.

Sethuraman cited the three questions ATO users should answer to address cybersecurity challenges facing software developers and discussed the need for agencies to ensure security as they go for speed when it comes to app development.

Video of the Day

Related Articles

RealmOne Acquires Software Development, Operations Support Provider Torin Consulting M&A Activity

RealmOne Acquires Software Development, Operations Support Provider Torin Consulting

RealmOne, an Enlightenment Capital-backed technology services contractor, has moved to expand its technological capabilities in support of the Department of Defense and Intelligence Community customers with its acquisition of Torin Consulting. Reston, Virginia-based Torin has been providing analytical and operational services, software development, cybersecurity, network engineering and DevOps platforms for IC and other federal government

Tyto Athene Acquires Microtel to Expand Space System Capabilities; Dennis Kelly Quoted M&A Activity

Tyto Athene Acquires Microtel to Expand Space System Capabilities; Dennis Kelly Quoted

Tyto Athene, a portfolio company of Washington, D.C.-based private investment firm Arlington Capital Partners, has closed its purchase of software development firm Microtel for an undisclosed sum as part of a push to broaden its customer relationships and space system capabilities. Microtel is a systems engineering firm that develops mission-critical flight software used to operate

ManTech Books Army Force Structure Support Services IDIQ Contract Awards

ManTech Books Army Force Structure Support Services IDIQ

ManTech‘s Advanced Systems subsidiary has secured a five-year, $43.9 million indefinite-delivery/indefinite-quantity contract to provide force structure support services to the U.S. Army. The contractor will develop, modify, maintain and operate multiple model and simulation tools and associated databases to help the service branch analyze multidomain campaigns to support its annual planning, budgeting and execution process,