The CNCF, defense contractors and IT vendors have joined forces with the Department of Defense to establish NIST security standards and best practices for DevSecOps.