Government Executive

Speeding Secure Software Development and Attaining ATO

This whitepaper covers how to expedite authority to operate and secure development at scale in the U.S. Government by connecting secure software development and ATO. U.S. government agencies are ...
InfoWorld

CISA publishes security goals for software development process, product design

The US Cybersecurity & Infrastructure Security Agency (CISA) has published IT sector-specific goals (IT SSGs) to protect against cyber threats, including 11 software development process goals and ...
Forbes

How Tech Leaders Can Ensure Security Keeps Up With Innovation

As development teams compress release cycles to ship faster than ever, CISOs and security architects are under pressure to keep pace—not become a bottleneck. The days of treating security as a ...
Bleeping Computer

Enhancing your DevSecOps with Wazuh, the open source XDR platform

DevSecOps, short for Development, Security, and Operations, is a methodology that integrates security practices into software Development Operations (DevOps). It emphasizes that security should be a ...
Bleeping Computer

Why a secure software development life cycle is critical for manufacturers

For all the scary talk about cyberattacks from vendors and industry experts, relatively few attacks are actually devastating. But the Jaguar Land Rover (JLR) attack was. The JLR breach wasn’t some ...
SDxCentral

DevSecOps: Building security into each stage of development

Today’s software development lifecycle is moving faster than ever before as enterprises push out new, artificial intelligence (AI)-powered services and features — and, too often, security comes in at ...
FedScoop

GSA takes new steps to secure the software acquisition process

The General Services Administration (GSA) is now collecting common forms for new software contracts from providers and contractors, in compliance with the 2022 Office of Management and Budget (OMB) ...
Business Wire

New Relic Launches Secure Developer Alliance to Scale Security Observability

SAN FRANCISCO--(BUSINESS WIRE)--RSA CONFERENCE — New Relic, the all-in-one observability platform for every engineer, launched Secure Developer Alliance. Industry leaders including FOSSA, Gigamon, ...
CSOonline

Secure by design vs by default – which software development concept is better?

It’s no surprise that demand for more secure software is rising and these two approaches claim to outline the best way forward. As cybersecurity professionals, we need to know that the software ...
VentureBeat

Five takeaways from Forrester's 2024 state of application security

Application security often gets sacrificed for speed and to meet ever-tightening time-to-market windows for new apps needed to fuel new revenue growth. Increasing the urgency to get apps out early are ...
JD Supra

OMB Rescinds Secure Software Development Mandate in Favor of a Risk-Based Approach

On January 23, 2026, the Office of Management and Budget (OMB) reversed some relatively new requirements for secure software development that had been imposed on federal contractors. This move is ...

Spec-Driven Development Guide : Set Rules Before AI Coding

Spec-Driven Development sets written specs before AI coding; a 4-step flow links requirements, design docs, tests, and QA.