Tanzu Talk

See interviews and discussions about cloud native, software modernization, and news in the Tanzu community.

Tanzu Talk: DevSecOps for US Federal agencies (FIPs, STIGs, auditors, AOs, and all that)

Watch on YouTube
6:31 AM PST on Thursday, Jan 21, 2021

Tanzu Talk: DevSecOps for US Federal agencies (FIPs, STIGs, auditors, AOs, and all that)

Tanzu Talk: DevSecOps for US Federal agencies (FIPs, STIGs, auditors, AOs, and all that)

Jan 21 2021

In this episode

When Federal people ask to secure a DevOps app creation and delivery process, what do they mean? Chris Willis joins Coté in this episode to answer that question with a #vmwaretanzu customer example: the Tanzu Build Service, buildpacks, Tanzu Application Service (Pivotal Cloud Foundry), and other components. He covers FIPS encryption requirements, STIGs, working with the authorizing official, and the overall practices and culture-think for securing build pipelines.

Get a free consultation on DevSecOps with Tanzu Labs: https://tanzu.vmware.com/office-hours?utm_source=cote&utm_medium=video&utm_campaign=TanzuTalk&utm_content=FedDevSecOps

Free Forrester paper on container security: https://tanzu.vmware.com/content/analyst-reports/best-practices-for-container-security?utm_source=cote&utm_medium=video&utm_campaign=TanzuTalk&utm_content=FedDevSecOps

Explainer of VMware Tanzu’s DevSecOps Tools: https://tanzu.vmware.com/content/webinars/jan-14-three-essentials-for-delivering-containers-at-scale-a-real-devsecops-approach?utm_source=cote&utm_medium=video&utm_campaign=TanzuTalk&utm_content=FedDevSecOps