TechTrend's DevSecOps Solution Achieves FedRAMP Ready2>
The Federal GovCloud (FGC) DevSecOps platform is a FedRAMP moderate PaaS designed to enable the U.S. government federal agencies to integrate agile, iterative secure development capabilities across the value stream with the flexibility and resiliency to drive faster delivery across diverse development teams. Federal agencies can now focus on developing applications to support their missions by utilizing a turnkey platform to speed the integration, testing, monitoring and deployment of their secure software to a customer defined land zone’s test and/or production environment.
The Federal GovCloud (FGC) DevSecOps platform is a FedRAMP moderate PaaS designed to enable the U.S. government federal agencies to integrate agile, iterative secure development capabilities across the value stream with the flexibility and resiliency to drive faster delivery across diverse development teams. Federal agencies can now focus on developing applications to support their missions by utilizing a turnkey platform to speed the integration, testing, monitoring and deployment of their secure software to a customer defined land zone’s test and/or production environment.

FedRAMP Ready
Expedites agency ATO approval process

Platform Agnostic
Cloud service provider and landing zone agnostic

Turnkey
End-to-end support to drive security throughout the SDLC
Our DevSecOps PaaS provides an integrated toolchain that can be provisioned quickly for our customers to start leveraging source code management and CI/CD pipeline implementation.
Integrated Toolchain:
We have integrated best of breed tools hosted on Azure Government to enable security throughout the SDLC. It has the flexibility and scalability to accommodate many more DevSecOps tools and custom processes as part of our flexible CI/CD orchestration tool. We are continually adding new widely used tools to the baseline configuration. Our integrated tool chain with enforced secure data flows and encryption of data in flight and at rest ensures that all data is protected throughout the SDLC from initial code check-in through deployment.
Landing Zone Agnostic:
FGC DevSecOps is cloud service provider or landing zone agnostic and supports secure automation driven deployment to various providers including Azure, Amazon Web Services, low-code platforms (e.g., Salesforce), and on-premises.
FedRAMP Ready:
The FGC DevSecOps platform resides on Microsoft Azure Government cloud infrastructure and has been designed to leverage Azure’s FedRAMP compliant services while integrating a suite of tools and technologies that provide the foundational components to support DevSecOps. It complies with the FedRAMP framework and security controls.
Rapid Provisioning:
We can rapidly provision your own DevSecOps PaaS instance within days. There is no setup required and no software to install. Your SCRUM teams will have a secure platform to manage and deploy source codes to the test or production landing zone of their choice.
Built for Government
Government Compliant | Landing Zone Agnostic | Scalable
Challenge
Government agencies require a development environment that enables them to fully optimize their agile teams and quickly deploy secure code.
Solution
Our platform offering enables a fully integrated development pipeline from initial code development to continuous monitoring of deployed code.
Result
Our platform offering enables agencies to build applications more efficiently, securely and cost effectively.
Pricing
Sandbox | Enterprise | |
---|---|---|
Features | Free
Limited to 30 Days |
Contact Us |
Source Code |
✔ |
✔ |
Source Code Management | ✔ | ✔ |
Code Version Control | ✔ | ✔ |
Code Branching | ✔ | ✔ |
Automated CI/CD |
✔ |
✔ |
CI/CD | ✔ | ✔ |
Auto-Scaling | ✔ | ✔ |
High Availability | ✔ | |
CI/CD Pipeline Builds (1 Per 2 Seats) | ✔ | ✔ |
Security |
✔ |
✔ |
FedRAMP Moderate Controls | ✔ | ✔ |
Role Based Access Controls | ✔ | ✔ |
NIST and FIPS Validated | ✔ | ✔ |
Static Code Vulnerability Analysis | ✔ | ✔ |
Geographically Redundant, Disaster Recovery | ✔ | ✔ |
Security Branch Analysis** | ✔ | |
Injection Vulnerability Detection** | ✔ | |
Pull Request Decoration** | ✔ | |
Agile Practices |
✔ |
✔ |
Kanban Board (Issues and Bug Tracking) | ✔ | ✔ |
Team Management | ✔ | ✔ |
Documentation | ✔ | ✔ |
Wiki | ✔ | ✔ |
Milestone Tracking | ✔ | ✔ |
Release Process Compliance |
✔ |
✔ |
508 Testing | ✔ | ✔ |
Release Packaging | ✔ | ✔ |
Support |
✔ |
✔ |
Service Desk Support | ✔ | ✔ |
1 Hour Training Credit (Per 10 Seats) | ✔ |
*Additional builds available
**Support for 21 development languages – Up to 2 Million Lines of Code across all enabled projects
Sandbox
Free
Limited to 30 Days
Max 10 Seats Per Organizations
Source Code
Source Code Management
Code Version Control
Code Branching
Automated CI/CD
CI/CD
Auto-Scaling
CI/CD Pipeline Builds (1 Per 2 Seats)
Security
FedRAMP Moderate Controls
Role Based Access Controls
NIST and FIPS Validated
Static Code Vulnerability
Geographically Redundant, Disaster Recovery
Agile Practices
Kanban Board (Issues and Bug Tracking)
Team Management
Documentation
Wiki
Milestone Tracking
Release Process Compliance
508 Testing
Release Packaging
Support
Service Desk Support
*Additional builds available at $50 per build
**Support for 21 development languages – Up to 2 Million Lines of Code across all enabled projects
Enterprise
Contact Us
Source Code
Source Code Management
Code Version Control
Code Branching
Automated CI/CD
CI/CD
Auto-Scaling
High Availability
CI/CD Pipeline Builds (1 Per 2 Seats)
Security
FedRAMP Moderate Controls
Role Based Access Controls
NIST and FIPS Validated
Static Code Vulnerability
Geographically Redundant, Disaster Recovery
Security Branch Analysis**
Injection Vulnerability Detection**
Pull Request Decoration**
Agile Practices
Kanban Board (Issues and Bug Tracking)
Team Management
Documentation
Wiki
Milestone Tracking
Release Process Compliance
508 Testing
Release Packaging
Support
Service Desk Support
1 Hour Training Credit (Per 10 Seats)
*Additional builds available
**Support for 21 development languages – Up to 2 Million Lines of Code across all enabled projects