How Risk Management Fits into Agile & DevOps in Government
Software Engineering Institute
DevOps, which breaks down software development silos to encourage free communication and constant collaboration, reinforces many Agile methodologies. Equally important, the Risk Management Framework, provides a clearly defined framework that helps program managers incorporate security and risk management activities into the software and systems development life cycle. In this podcast, Eileen Wrubel, technical lead for the SEI’s Agile-in-Government program leads a roundtable discussion into how Agile, DevOps, and the Risk Management Framework can work together. The panelists include Tim Chick, Will Hayes, and Hasan Yasar.
About the Speaker
Timothy A. Chick is the CERT Applied Systems Group Technical Manager at Carnegie Mellon University’s (CMU) Software Engineering Institute (SEI). He currently leads a team of software and system engineers as they build and operate technical solutions for both internally funded research and customer facing prototypes and delivers trusted, valued, …Read more
Eileen Wrubel leads the Software Solution Division's Transforming Software Acquisition Practice & Policy directorate. She is responsible for coordinating the strategic planning and tactical execution of the SEI's initiatives to power bolder, faster, more adaptive acquisition, modernization, and sustainment of software-enabled capability. Her directorate informs and enables evidence-based evolution of …Read more
Hasan Yasar is the Technical Director of the Continuous Deployment of Capability group in the SSD Division of the Software Engineering Institute, CMU. Hasan leads an engineering group to enable, accelerate, and assure transformation at the speed of relevance by leveraging DevSecOps, Agile, Lean AI/ML, and other emerging technologies to …Read more