DevSecOps

Existing Work to Leverage

NIST will leverage existing guidance, practices, and recommendations that may be applicable to DevSecOps. They have been and are being developed by NIST and other US government (USG) agencies, standards development organizations (SDOs), industry, and academia. NIST will also develop mappings to existing informative references to ensure the relationships among frameworks, guidance, practices, and recommendations are clear.

Potential work that can be leveraged includes:

NIST Frameworks

NIST Technology Projects

NIST Technology Guidelines

Government, Industry, and Academia Guidance and Practices

Created October 21, 2020, Updated January 26, 2021