The National Background Investigative System Directorate (NBIS) within the Department of Defense (DoD) has established integrated environments on Amazon Web Services’ GovCloud and installed DevSecOps tools to facilitate collaboration among developers, security teams, testers and engineers as part of its DevSecOps implementation effort.
NBIS’ program management office also demonstrated Agile software delivery processes for its Position Designator Tool code through its first tabletop exercise for its DevSecOps pipeline in January, the Defense Information Systems Agency (DISA) said Thursday.
The directorate also plans to subject its investigative management tools and electronic applications to a tabletop exercise.
“The DevSecOps premise is that everyone in the software development life cycle is responsible for security, and we are thrilled to bring this best practice into DoD’s realm,” said Heidi Cotter, NBIS program manager. “Our team has worked diligently over the past year to setup, test and document processes that have laid the foundation of DevSecOps implementation for this program and others at DISA and DoD.”
NBIS secured from DISA’s risk management executive an interim testing authorization during the DevSecOps testing phase and is now seeking full authorization to operate the program this month.
