DigiCert joins NIST's DevSecOps initiative

DigiCert, a premier global leader in digital trust, has announced its active role in the National Institute of Standards and Technology's (NIST) ambitious project at the National Cybersecurity Center of Excellence (NCCoE). This initiative is laser-focused on enhancing critical Secure Software Development, Security, and Operations (DevSecOps) practices.

Joining 13 esteemed technology partners such as Google, Microsoft, and IBM, DigiCert is poised to collaborate on designing integrated solutions aimed at refining security across the software supply chain.

With an uptick in attacks on software supply chains, the urgency for robust, effective measures to secure development environments becomes paramount. With sponsorship from the U.S. Federal Government, this project allows independent evaluations of how leading technologies can be harmoniously integrated. The goal is to strengthen software integrity and operational security without advocating for a particular brand.

Tim Hollebeek, the Vice President of Industry Standards at DigiCert, highlighted the fragmented nature of existing tools. This project represents a transformative step towards a cohesive, risk-based DevSecOps approach, aligning with NIST's guidance while proposing practical market solutions.

The initiative is notable for its collaborative nature, marking a first by assembling these specific technologies to create a comprehensive solution for secure software development, operations, and monitoring. Prioritising practical, real-world applications, it bridges the gap from theory to tangible, effective security and compliance strategies.