The threat environment facing the United States is growing more complex and interconnected. Executive Order 14186 identifies the threat of attack by ballistic, hypersonic, and cruise missiles, along with other advanced aerial ...

The Cybersecurity Maturity Model Certification (CMMC) 2.0 marks a clear shift from box-checking to modernization. Compliance is, of course, important. However, this evolution highlights the need to revise our approach to how ...

La grande cybermalveillance: French government’s employment agency loses control of citizens’ data after biggest breach in Gallic history ...

3TB Email FAIL: Personal info of tens of thousands leaks. Microsoft cloud email server was missing a password ...

The U.S. Marshals Service (USMS) has been hacked (again). Scrotes stole sensitive stuff (supposedly) ...

Code vulnerabilities are growing in frequency and impact. As software is increasingly made up of parts from many different vendors, often referred to as the software supply chain, it can be hard ...

Historically, the advent of Agile development increased the ability of software developers to create apps that met real-time objectives. Then, the rise of DevOps pushed for coordinated efforts between developers and operations ...

The U.S. General Services Administration has a number of roles in the U.S. government. For instance, the GSA is the world’s largest landlord. It administers all of the civilian federal government buildings ...

Software development within the federal government often begins with an alignment to the Authorizations to Operate (ATO) and related, required security processes. Sometimes, these are an impediment to DevSecOps. So how can ...

Discussions of DevOps in government are always popular because it is a tough subject. Few have successfully cracked the code, and, even if they have, it is a slow, uphill climb with ...