Booz Allen Hamilton Principal Jimmy Pham and Chief Technologist Martin Folkoff have clarified misconceptions about how federal agencies use DevSecOps to aid in the development of information technology software and applications.
Pham and Folkoff wrote in a joint article for Nextgov posted Wednesday despite the growing use of DevSecOps, some agencies still believe the concept requires large investment in “super developers,” only focuses on technology or speed and that it leads agencies to lose control of the process.
They said agencies should realize the approach can help organizations to gain control despite automating processes for developing platforms as it reduces human error and increases predictability.
“DevSecOps adds security into the mix, incorporating security tools and processes into every stage of the development lifecycle and providing a methodology for reacting to changes in the environment,” the two executives added.
The method can also work to accelerate how agencies discover and correct system flaws during the development process, according to Pham and Folkoff.
They recommended that federal IT leaders implement DevSecOps at their agencies by aligning performance requirements and acquiring tools that can support all layers of their organizations.