Menu
NZTA open sources security tool for use by other agencies

NZTA open sources security tool for use by other agencies

The Security Development Lifecycle Tool aims to deliver "security by design"

Open source software tool will help embed security in government tech projects.

Open source software tool will help embed security in government tech projects.

Credit: Pstedrak | Dreamstime.com

The New Zealand Transport Agency is open sourcing a security assurance tool it is developing with Wellington company Catalyst.

Catalyst has been working with NZTA to open source the tool that automates aspects of the security assurance process and embeds security requirements earlier in the product development life-cycle.

The Security Development Lifecycle Tool (SDLT), aligns with common government security classifications and risk assessment practices to deliver "security by design" across the agency's tech teams.

NZTA opted to open source the tool so other government agencies can similarly reduce their compliance overheads and focus on core delivery.

The source code is available on NZTA's GitHub repository.

The SDLT uses a series of questions to determine the complexity of the end product and will generate additional questionnaires such as privacy impact assessments or cloud risk assessments to help teams assess and record their security requirements.

It handles information gathering, task creation, workflow-management and business approvals. The tool also integrates with workflow management systems such as Jira and provides an audit trail that ensures security assurance has been built into project delivery. 

It can be used to deliver or procure proof-of-concept products, software-as-a-service (SaaS) applications and to scope feature revisions or bug fixes.

The SDLT will enable NZTA to simplify the security assurance process, reduce spending on unnecessary third-party assessments and cut the product approval and delivery process from weeks to days.

Catalyst said it can install, host and support the SDLT for use by other organisations.


Follow Us

Join the newsletter!

Or

Sign up to gain exclusive access to email subscriptions, event invitations, competitions, giveaways, and much more.

Membership is free, and your security and privacy remain protected. View our privacy policy before signing up.

Error: Please check your email address.

Tags governmentopen sourceDevelopmentNew Zealand Transport AgencyNZTAsecurity by designsecurity development lifecycle tool

Featured

Slideshows

Reseller News Platinum Club celebrates leading partners in 2019

Reseller News Platinum Club celebrates leading partners in 2019

The leading players of the New Zealand channel came together to celebrate a year of achievement at the annual Reseller News Platinum Club lunch in Auckland. Following the Reseller News Innovation Awards, Platinum Club provides a platform to showcase the top performing partners and start-ups of the past 12 months.

Reseller News Platinum Club celebrates leading partners in 2019
Reseller News hosts alumnae breakfast for Women in ICT Awards

Reseller News hosts alumnae breakfast for Women in ICT Awards

Reseller News hosted its second annual alumnae breakfast for the Women in ICT Awards in New Zealand, designed to showcase the leading female leaders in the industry. Held at The Cordis in Auckland, attendees came together to hear inspiring keynotes and panel discussions, alongside high-level networking among peers. Photos by Gino Demeer.

Reseller News hosts alumnae breakfast for Women in ICT Awards
Reseller News Innovation Awards 2019: meet the winners

Reseller News Innovation Awards 2019: meet the winners

Reseller News honoured the standout players of the New Zealand channel in front of more than 480 technology leaders in Auckland on 23 October, recognising the achievements of top partners, emerging entrants and innovative start-ups.

Reseller News Innovation Awards 2019: meet the winners
Show Comments