DevOps in DoD has been constrained by security compliance regulations. If DevOps affords us agility in developing capabilities, what can be done to integrate security into the CI/CD process, allowing us to push code directly to production? This talk steps through the CI/CD infrastructure of a DoD Intelligence element which uses Linux containers, Jenkins, and SCAP, to build a delivery pipeline that realized the true power of DevOps for DoD. All components are based on open source technologies and this talk will outline how to reproduce the system for your own needs.
Slides can also be found on SlideShare: