Securing Containerized Applications

It’s not enough to support an application after its release to keep it secure. Security must be top of mind throughout an application’s development. That is core to the model of DevSecOps.

Read more

The Federal Aviation Administration has more than 700 applications that support its mission, from human resources and finance to aircraft safety, and it’s been working to leverage DevSecOps for those applications.

NASA runs on software, as do many federal agencies. Rockets are what they are known for, sure, but controlling them and interpreting data, even handling human resources and finances all require software. Currently, NASA is in development of over 1,000 software features leveraging agile.

Federal agencies – along with most large organizations – are steadily moving to a new generation of technology in the deployment of software applications. Regular run-time code gave way to virtual machines, and now virtual is yielding to containerization managed under frameworks like Kubernetes. This methodology brings a new set of cybersecurity risks IT staffs must mitigate.