Achieving Continuous ATO through Security

Tuesday, December 8 at 11:00 AM EST

Sign Up:

(*) denotes required form field(s)

Our registration process uses cookies, by submitting this registration form you agree to our cookie policy.

  Register

Overview

In the federal space today, security is a top priority. The challenge is injecting security practices into the ATO (Authority to Operate) process in a way that aligns with the appropriate risk threshold. Rather than taking months to achieve ATO status, today's fast-moving business context and automated DevSecOps pipelines necessitates a faster approach.

Continuous ATO is an attempt at trying to build security into the software lifecycle from the beginning rather than trying to add it at the end, accepting ongoing security risk. This requires a software factory which includes security requirements as a first order citizen and balances that with the need for speed and automation. Having reusable, pre-authorized components allows DevSecOps teams to build with assurance and speed that product delivery is meeting the risk needs of the organization. In this webinar, we will discuss how to build a continuous ATO process, including tool categories and architecture concepts.

Join us to learn:

  1. How to build a continuous ATO pipeline using tools
  2. How to continually balance speed and risk
  3. A roadmap for achieving continuous ATO

Presenters

Presenter
Hasan Yasar
Technical Director of Continuous Deployment of Capability
Software Engineering Institute, CMU
View Biography
Presenter
Altaz Valani
Director of Insights Research
Security Compass
View Biography
Presenter
Kimberly Underwood
Senior Editor
SIGNAL Magazine
View Biography