DevSecOps
DevSecOps is a set of software development practices that combines software development (Dev), security (Sec), and information technology operations (Ops) to secure the outcome and shorten the development lifecycle.
DevSecOps
DevSecOps Mission
The DevSecOps Mission is to develop a Continuous Monitoring (CM) approach for all Department of Defense (DoD) mission partners that monitors and provides compliance enforcement of containerized applications which cover all the DevSecOps pillars (Develop, Build, Test, Release & Deploy, and Runtime) for a secure posture with the focus being on automation and integration going forward.
DevSecOps Downloads
| Title | Size | Updated | |
|---|---|---|---|
|
Kubernetes STIG - Ver 1, Rel 1
|
2.41 MB |
26 Apr 2021
|
|
|
Container Platform SRG - Ver 1, Rel 1
|
2.3 MB |
03 Dec 2020
|
|
|
DevSecOps Enterprise Container Hardening Guide 1.1
This document focuses on the Department of Defense (DoD) Enterprise DevSecOps Initiative (DSOP) and was created to detail the Enterprise DevSecOps Container Hardening Process and ensure it meets the DoD Hardened Containers Cybersecurity Requirements.
|
984 KB |
17 Nov 2020
|
|
|
Container Image Creation and Deployment Guide Version 2, Release 0.6
The Container Image and Deployment Guide will provide the technical requirements for container image creation and deployment within a container platform.
|
880 KB |
17 Nov 2020
|
|
|
DoD Enterprise DevSecOps Reference Design v1.0
The main purpose of this document is to provide a logical description of the key design components and processes to provide a repeatable reference design that can be used to instantiate a DoD DevSecOps software factory.
|
— |
09 Nov 2020
|
|
|
Docker Enterprise 2.x Linux/Unix STIG for Ansible - Ver 1, Rel 1
|
489.84 KB |
22 Jun 2020
|
Contact
For questions or comments regarding DevSecOps content or documents, please contact the DISA SD DevSecOps Helpdesk: disa.meade.sd.mbx.devsecops-mailbox@mail.mil