The Defense Department needs to educate its workforce on what DevSecOps means for them, the Pentagon’s Katie Arrington says.

The Defense Department won’t see the return on investment DevSecOps systems development practices can provide without cultural and procedural shifts, according to DOD officials.

Katie Arrington, chief information security officer for DoD’s acquisition office, said DoD has more work to do on changing workforce culture within the Pentagon around DevSecOps.  DevSecOps is not just the latest in a long line of buzzwords — from waterfall to agile to DevOps — but a priority, according to Arrington.

“You think about long-term sustainability, if we don’t start to really emphasize DevSecOps as we go forward and build on the good work that has been done, we’ll never see the actual return on investment in the life cycle that we need,” Arrington said at a webinar hosted by AFCEA International’s SIGNAL Magazine recently.

Arrington added the department needs to educate the workforce around what DevSecOps means for them. She wants the workforce to understand that DevSecOps is not something that will replace jobs, but enhance the work they are currently doing.

Keep reading this article at: https://www.nextgov.com/cybersecurity/2020/10/pentagon-still-hammering-out-acquisition-strategies-needed-enable-devsecops-officials-say/169482/