Executive Order 14028 mandates the adoption of the NIST Secure Software Development Framework, emphasizing the Software Bill of Materials (SBOM) as a crucial measure. With cybersecurity evolving, vulnerabilities like Log4Shell and Struts2 highlight the need for cyber readiness. Delve into the next phase of regulatory changes by improving internal strategies around open source software supply chain optimization. This strategy hinges on monitori...

Executive Order 14028 mandates the adoption of the NIST Secure Software Development Framework, emphasizing the Software Bill of Materials (SBOM) as a crucial measure. With cybersecurity evolving, vulnerabilities like Log4Shell and Struts2 highlight the need for cyber readiness. Join Sonatype on March 19 for an event to support the SMB (small and medium-sized) Federal Integrator community as we delve into the next phase of regulatory changes b...

It’s no secret that software supply chain attacks have reached new heights. The Biden Administration’s Executive Order 14028 emphasizes the need for more secure development processes and requires a software bill of materials (SBOM) for all applications. Change is coming, but with proper preparation, your organization's only significant changes will be more security and more productivity.Join Sonatype’s Brian Fox and Red Hat...

Join Sonatype and Carahsoft during the DevSecOps for Public Sector event series to learn more about eliminating security risks across the entire software delivery lifecycle by securing your software supply chain! Register now for Sonatype's session to learn: How to protect your agency's software from increasing supply chain attacks Why security throughout the development and deployment process is more essential than ever How Sonatype's Nexus p...

24 Hours | 180 Speakers | Free Online The world’s largest DevOps conference is set for our 6th annual gathering on October 28th, 2021. View the Tracks: Keynotes VIEW SPEAKERS ▸ CI/CD Continuous Everything VIEW SPEAKERS ▸ Modern Infrastructure VIEW SPEAKERS ▸ DevSecOps VIEW SPEAKERS ▸ Cultural Transformation VIEW SPEAKERS ▸ Site Reliability Engineering VIEW SPEAKERS ▸ Government VIEW SPEAKERS ▸ A...

The DevSecOps Leadership Online Forum for Federal will include talks from high-profile federal agency and integrator leaders sharing details of their DevSecOps program transformation stories and best practices. This exclusive group of senior-level software innovators will share thoughts about the rapidly changing role of security and governance within DevOps and digital transformation. The forum will showcase innovative federal programs and en...

Elevate, a Sonatype user event is a free, live, and online conference available to DevSecOps practitioners and managers interested in understanding how repository managers and automated governance function as part of a DevOps pipeline. Join us all day on June 17, 2021 for our 4th-annual user conference with 30+ sessions and workshops. The Sonatype Nexus platform now offers customers full-spectrum control of the cloud-native software developmen...

As federal agencies begin to implement and adopt innovative, modern technologies that enable DevOps methodologies, it's critical to ensure security and governance are incorporated within the software delivery lifecycle. Join experts from CloudBees and Sonatype online to: Learn about public sector use cases that cover the value of embedding security into DevOps practices Explore best practices around leveraging CloudBees and Sonatype to execute...

The security landscape for the US Government is changing, it's time to shift left. Government agencies are increasingly embracing the concept of DevOps with the DoD paving the way — The walls between IT operations and developers are torn down, wasteful practices ripped out, and collaboration at scale rewarded. Enter open source development practices powering DevOps, and more and more, powering federal software supply chains. These free a...

Sonatype and Carahsoft are excited to bring you a complimentary, hands-on experience with Sonatype Nexus Platform at our interactive virtual workshop, taking place on September 1st. Join us and prepare your teams with the knowledge to navigate the Nexus Platform in order to develop faster and more securely. In this 2-hour virtual session, you will learn: IDE Integration Navigate in your favorite IDE with 2 click remediation Configurable Polici...