V.ISC.2518 - DevOps to DevSecOps, static code analysis, training, capability uplift Deliverable

Summary

This project aims to strengthen Integrity Systems Company's (ISC) technology foundation by upgrading our approach to Development Security and Operations model (DevSecOps), which is a way of developing software that prioritises security from the very beginning. This includes improved ways for writing and monitoring code, along with stronger security and automation capabilities built in by design, ensuring reliability and scalability. Once complete, it will mark a key step towards readiness to support the National Livestock Identification System (NLIS) Uplift and will help ISC deliver more dependable and efficient services to support Australia’s red meat industry.

Objectives

The consultant will complete the following to MLA’s satisfaction:

• perform a gap analysis to assess and complete remaining shared services infrastructure for IaC compliance
• design and implement static code analysis tooling within the CI/CD pipelines
• develop observability and monitoring readiness plans using AWS-native and integrated tooling
• deliver capability uplift training for DevSecOps and infrastructure automation practices.