The Air Force has revolutionized software development and security accreditation practices with the rollout of DevSecOps and Continuous Authority to Operate (cATO). This shift from waterfall-style development to a fast-paced, security focused approach under DevSecOps has spawned a software development ecosystem within the service that has enabled rapid delivery of secure capabilities. Dark Wolf Solutions partnered with the Air Force to develop the concept of cATO and has worked directly with Air Force Software Factories to implement DevSecOps industry best practices in preparation for achieving a cATO. During this talk, we will talk about different types of ATO innovation, discuss the successes Dark Wolf has seen from this approach, and explain how this model is repeatable and scalable for other federal organizations.
Tom Marlow is a Managing Director at Dark Wolf Solutions and leads its Cybersecurity Practice. He possesses over 20 years of leadership, cybersecurity, and management consulting experience. At Dark Wolf, Tom oversees a portfolio of cybersecurity engagements that include penetration testing, cybersecurity consulting, and DevSecOps projects for DoD and commercial customers.