In this video, we show you a simple way to work with the STIG. From navigating the individual requirements to crafting a repeatable low-effort process, we pick representative examples and show you exactly how to implement them. You’ll learn effective processes to analyze the STIG, and see how to use common software development tools to automate compliance.

You will learn:
• Differences between v3 and the current v4 version of the DISA-ASD-STIG and its common requirement types
• How to use tools to automate compliance
• When and where static analysis does and does not apply

-----------------------------------------------------------------------------------------------
PRODUCT TOUR | Take a Tour of Parasoft C/C++test
[ Ссылка ]
-----------------------------------------------------------------------------------------------

VIDEO CHAPTERS
0:00 - 0:25 Introductions
0:26 - 1:21 Defense Information Systems Agency Security Technical Implementation Guides
1:22 - 6:42 The Purpose of the DISA-ASD-STIG
6:43 - 7:32 When Does It Apply?
7:33 - 11:42 How to Look at a STIG Requirement
11:43 - 12:40 Severity Categories
12:41 - 16:42 An Approach to Do DISA-STIG
16:43 - 20:33 Static Code Check Through OWASP
20:34 - 47:51 Demo: Parasoft for DISA-STIG Compliance
47:52 - 52:55 Static Analysis Tools Should Have
52:56 - 56:08 Functional Test Automation Tools Should Have
56:09 - 59:45 Summary

_______________________________

TESTING SOLUTIONS FOR GOVERNMENT
Parasoft’s Government division works closely with development and testing organizations in federal, state, and local government agencies, providing strategy-based technologies built to ensure the security, quality, and reliability of applications while mitigating risks and reducing testing costs.

__________________________________________________________

ADDITIONAL RESOURCES

WEBINAR | Zero-Cost Static Analysis for DoD DevSecOps Pipelines
[ Ссылка ]

WHITEPAPER | The Essential Guide to Automated Test Generation for Embedded Systems
[ Ссылка ]

WHITEPAPER | Continuous Integration & Continuous Delivery for Embedded Systems
[ Ссылка ]

DEMO With Q&A | Parasoft C and C++ Software Testing
[ Ссылка ]

CASESTUDY | Aerospace/Defense Company Deploys Parasoft to Support DevSecOps for Major DoD Initiative
[ Ссылка ]

__________________________________________________________

DO YOU HAVE MORE QUESTIONS?
Talk to a Solutions Expert: [ Ссылка ]
Request Product Demo: [ Ссылка ]

Checkout more helpful content:
[ Ссылка ]
[ Ссылка ]

Want to stay connected? Find us on these platforms!
LinkedIn: [ Ссылка ]
Twitter: [ Ссылка ]
Facebook: [ Ссылка ]

___________________________________________________________

ABOUT PARASOFT
Parasoft’s software testing solutions support the entire software development process, from when the developer writes the first line of code all the way through unit and functional testing, to performance and security testing, leveraging simulated test environments along the way. Parasoft's unique analytics platform aggregates data from across all testing practices, providing insights up and down the testing pyramid to enable organizations to succeed in today's most strategic development initiatives, including Agile/DevOps, Continuous Testing, and the complexities of IoT. Parasoft’s automated software testing innovations fuel software development organizations, helping teams reduce the time, cost, and effort of delivering high-quality software to the market.

свернуть