Volunteer for DevSecOps Working Group
Working Group Calendar
Latest Publications
Latest Blog Posts
Publications In Development
CSA Support
• Josh Buker - [email protected]
Co-chairs
• Abdul Sattar
• Roupe Sahans
Hi All, Infrastructure as code (IaC), baselines, and golden images are terms growing in usage across the cloud industry. These terms refer to templates that are used to deploy resources across on-premises and cloud infrastructures. IaC uses code to ...
Interesting read, thanks for sharing Michael! ------------------------------ Josh Buker Research Analyst Cloud Security Alliance ------------------------------
Hi All, Today, NIST is releasing Special Publication (SP) 800-204D, Strategies for the Integration of Software Supply Chain Security in DevSecOps CI/CD Pipelines. Cloud-native applications are made up of multiple loosely coupled components called microservices. ...
Hi all, With the completion of the Six Pillars, we're exploring new ideas to cover within the DevSecOps working group for 2024. To kick things off, we invite you to a collaborative workshop to refine ideas from our previous working group meetings into ...
Hi all, The 6th and final pillar in the Six Pillars of DevSecOps Series is now in public peer review! https://cloudsecurityalliance.org/artifacts/the-six-pillars-of-devsecops-measure-monitor-report-and-action/ Please let me know if you have any ...