DigiCert has announced its participation in the National Institute of Standards and Technology (NIST) National Cybersecurity Center of Excellence (NCCoE) project.
The company says that the project is focused on Secure Software Development, Security and Operations (DevSecOps) Practices.
DigiCert joins 13 other technology collaborators to help design and demonstrate integrated solutions that improve security across the software supply chain, including:
As software supply chain attacks continue to rise, organizations need trusted, proven ways to harden their development environments.
Digicert highlights that this project, sponsored by the US Federal government, provides an independent evaluation of how to integrate leading technologies in a way that enhances software integrity and operational security, without favoring any particular vendor.
Tim Hollebeek, Vice President of Industry Standards, DigiCert commented: “Secure software development too often relies on fragmented tools that don’t integrate well or scale across the software lifecycle.
“This project helps demonstrate how trusted technologies can work together to create a more cohesive, risk-based approach to DevSecOps, aligning with NIST’s guidance while offering practical solutions to the market,” Hollebeek concluded.
The NCCoE’s collaborative approach marks the first time these specific technologies have been brought together to form a comprehensive solution for secure software development, operations and monitoring.
The company says that the project stands out for its focus on applied, real-world implementations, going beyond theory to show how to achieve security and compliance goals using current tools and practices.
The public is encouraged to review and comment on the NIST SP 1800-44 Draft, now available online. Stakeholders are also invited to participate in an upcoming virtual event hosted by NIST on 27 August, where project collaborators will discuss insights, implementation guidance and community engagement opportunities, Digicert adds.