Software Architecture in Practice, Third Edition
(September 2012) If you design, develop, or manage large software systems (or plan to do so), you will find "Software Architecture in Practice, Third Edition" to be a valuable resource for getting up to speed on the state of the art.

Model-Based Engineering with AADL: An Introduction to the SAE Architecture Analysis & Design Language
(September 2012) Model-Based Engineering with AADL introduces an architecture-centric approach to discovering software systems problems earlier, when they cost less to solve.

The CERT Guide to Insider Threats: How to Prevent, Detect, and Respond to Information Technology Crimes (Theft, Sabotage, Fraud)
(January 2012) This book describes CERT’s findings in practical terms, offering specific guidance and countermeasures that can be immediately applied by senior officials within any organization.

The CERT Oracle Secure Coding Standard for Java
(September 2011) This book is the first comprehensive compilation of code-level requirements for building secure systems in JAVA. Organized by CERT’s software security experts, it covers every facet of secure software coding with Java 7 SE and Java 6 SE.

CMMI for Development: Guidelines for Process Integration and Product Improvement, Third Edition
(March 2011) This book is the definitive reference for CMMI-DEV Version 1.3. It describes best practices for the development and maintenance of products and services across their lifecycle.

CMMI for Acquisition: Guidelines for Improving the Acquisition of Products and Services, Second Edition
(March 2011) CMMI for Acquisition, Second Edition is the definitive reference for CMMI-ACQ Version 1.3. This book describes best practices for the successful acquisition of products and services.

CMMI for Services: Guidelines for Superior Service, Second Edition
(March 2011) This book serves as an introduction to the CMMI-SVC model and contains a comprehensive set of guidelines to help organizations establish and improve their delivering services.

Leadership, Teamwork, and Trust: Building a Competitive Software Capability
(December 2010) This book discusses the importance of knowledge work to the success of modern organizations and explains the necessary steps for reshaping the way in which software development is conducted.

CERT Resilience Management Model: A Maturity Model for Managing Operational Resilience
(November 2010) This book presents best practices for managing the security and survivability of people, information, technology, and facilities. It integrates these into a unified CMM that encompasses security, business continuity, and IT operations.

Documenting Software Architectures: Views and Beyond, Second Edition
(September 2010) This book provides the most complete and current guidance on how to capture a software architecture in a commonly understandable form.

Integrating CMMI and Agile Development: Case Studies and Proven Techniques for Faster Performance Improvement
(July 2010) This book offers a start-to-finish blueprint for melding the CMMI and Agile process improvement methodologies. It presents six detailed case studies, along with essential real-world lessons, big-picture insights, and mistakes to avoid.

Reflections on Management: How to Manage Your Software Projects, Your Teams, Your Boss, and Yourself
(March 2010) This book brings together Watts S. Humphrey's most influential essays and articles, sharing insights that are essential for anyone who must achieve quality results in software management.

The People CMM: A Framework for Human Capital Management, 2nd Edition
(July 2009) This book is a framework for human capital management, providing proven tools for addressing strategic workforce and critical people issues.

CERT C Secure Coding Standard
(October 2008) This book documents the first official release of the CERT C Secure Coding Standard, which itemizes those coding errors that are the root causes of software vulnerabilities in C.

Software Security Engineering: A Guide for Project Managers
(May 2008) With this book, you can select from a number of sound practices likely to increase the security and dependability of your software, both during its development and its operation.

CMMI and Six Sigma: Partners in Process Improvement
(December 2007) This book focuses on a "faster, better, cheaper" implementation of CMMI and Six Sigma. Book topics range from formation of a value proposition to specific implementation tactics.

CMMI for Outsourcing: Guidelines for Software, Systems, and IT Acquisition
(March 2007) This book is a practical introduction to the CMMI-ACQ. It covers the entire acquisition project lifecycle, offering insider experiences, tips, tricks, and pitfalls to avoid.

Perspectives on Free and Open Source Software
(March 2007) This book examines specific aspects of F/OSS in a way that is both scientifically rigorous and highly relevant to real-world managerial and technical concerns.

A Process Research Framework
(December 2006) This book brings 27 leaders from academia and industry together to study the implications of both plausible future scenarios and existing process research.

CMMI Survival Guide: Just Enough Process Improvement
(October 2006) This book is a guide to making the most out of a successful CMMI implementation, with real examples provided to help you navigate around potential pitfalls and other dangers.

Ultra-Large-Scale Systems: The Software Challenge of the Future
(June 2006) Ultra-Large-Scale Systems: The Software Challenge of the Future is the product of a 12-month study of ultra-large-scale (ULS) systems software.

TSP: Coaching Development Teams
(April 2006) Whether you are considering the Team Software Process (TSP) or are actively implementing it, this book provides invaluable examples, guidelines, and suggestions you need to get started as a team coach.

Secure Coding in C and C++
(September 2005) This book identified a number of root causes for exploited software vulnerabilities and encourages programmers to adopt security best practices that can help prevent current and future attacks on vulnerable systems.

TSP: Leading a Development Team
(September 2005) In this guide to the Team Software Process (TSP), Watts Humphrey shows software developers how to lead teams of software engineers trained in the Personal Software Process (PSP).

Estimating Software-Intensive Systems: Projects, Products, and Processes
(April 2005) This book helps software managers, engineers, and customers immediately improve their assessments of software projects in order to make them more successful.

PSP: A Self-Improvement Process for Software Engineers
(March 2005) PSP: A Self-Improvement Process for Software Engineers presents a disciplined process for software engineers and anyone else involved in software development.

CMMI SCAMPI Distilled: Appraisals for Process Improvement
(March 2005) This book outlines the role of appraisals as part of a comprehensive approach to process improvement, demonstrating how SCAMPI integrates with other models and methods.

CMMI Assessments: Motivating Positive Change
(February 2005) The authors begin their book with an expert overview of what assessments entail, when they make sense, how to set achievable goals for them, and how to lead them to success.

Internet Denial of Service: Attack and Defense Mechanisms
(January 2005) Internet Denial of Service sheds light on a complex form of computer attack that impacts the confidentiality, integrity, and availability of millions of computers worldwide.

Principles of CASE Tool Integration
(September 2004) Principles of CASE Tool Integration describes concepts, models, and guidelines for understanding CASE tool integration and analyzes in-depth the CASE tool integration problem.

Human Aspects of Software Engineering
(May 2004) This book details software engineering from the perspective of those involved in the software development process: individuals, teams, customers, and the organization.

Software Architecture in Practice (2nd Edition)
(April 2003) This book provides an easily accessible overview of software architecture. Anyone requiring a comprehensive overview of the software architecture field will benefit from this book.

Modernizing Legacy Systems: Software Technologies, Engineering Processes, and Business Practices
(February 2003) This book shows how to implement a successful modernization strategy that incrementally encompass changes in software technologies, engineering processes, and business practices.

Managing Information Security Risks: The OCTAVE Approach
(July 2002) This book provides organizations with a systematic way to evaluate and manage their information security risks through the use of the OCTAVE approach.

Architecture-Centric Software Project Management: A Practical Guide
(January 2002) The book addresses each cornerstone of effective project management -- planning, organizing, implementing, and measuring.

Winning with Software: An Executive Strategy
(December 2001) Watts S. Humphrey shows corporate executives and senior managers how to gain control of a software operation and to transform it into a professional businesslike function.

Evaluating Software Architectures: Methods and Case Studies
(November 2001) This book is a comprehensive guide to software architecture evaluation, describing specific methods that can quickly and inexpensively mitigate enormous risk in software projects.

Software Product Lines: Practices and Patterns
(August 2001) This book provides a framework of specific practices, with detailed case studies, to guide the implementation of product lines in your organization.

Building Systems from Commercial Components
(July 2001) This book describes specific engineering practices needed to integrate preexisting components with preexisting specifications successfully, illustrating the techniques described with case studies and examples.

Managing Software Acquisition: Open Systems and COTS Products
(July 2001) This book presents fundamental principles and best practices for successful acquisition and utilization of open systems and commercial off-the-shelf (COTS) products.

CMMI Distilled: A Practical Introduction to Integrated Process Improvement
(June 2001) This book provides a concise introduction to the CMMI product suite, with discussions of the process improvement method, along with advice for choosing the appropriate CMMI models for your organization.

CERT Guide To System and Network Security Practices
(June 2001) This book puts CERT practices and implementations in book form, and offers step-by-step guidance for protecting systems and networks against malicious and inadvertent compromise.

CMM in Practice: Processes for Executing Software Projects at Infosys
(November 1999) This book examines the various stages in the life cycle of a real-world software project in order to aid managers and developers with executing their own projects through CMM.

Introduction to the Team Software Process
(September 1999) This book, particularly useful for engineers and students trained in the Personal Software Process (PSP), introduces TSP and the concrete steps needed to improve software teamwork.

Measuring the Software Process: Statistical Process Control for Software Process Improvement
(July 1999) This book shows how to use measurement to manage and improve software processes within an organization in order to achieve both business and technical goals.

Cleanroom Software Engineering: Technology and Process
(March 1999) This book provides an in-depth description of the Cleanroom approach to high-quality software development, and discusses how Cleanroom is compatible with the Capability Maturity Model (CMM).

Software Process Improvement: Practical Guidelines for Business Success
(February 1998) This book shows you how to develop a preventive culture of disciplined software process improvement within an organization in order to control the quality of its software products.

Managing Risk: Methods for Software Development
(February 1998) This comprehensive guide describes a success formula for managing software risk, enabling you to take from crisis to control of your software project.

Introduction to the Personal Software Process
(December 1996) This workbook provides a hands-on introduction to the basic discipline of software engineering, as expressed in the author's well-known Personal Software Process (PSP).

Managing Technical People: Innovation, Teamwork, and the Software Process
(November 1996) Drawing on the author's extensive experience as a senior manager of software development at IBM, this book describes proven techniques for managing technical professionals.

Continuous Risk Management Guidebook
(January 1996) This book describes the underlying principles, concepts, and functions of risk management and provides guidance on how to implement it as a continuous practice in your projects and organization.

Discipline for Software Engineering: The Complete PSP Book
(January 1995) This book is intended to help managers and organizations evaluate and improve their software capabilities’ methods using the Personal Software Process (PSP).

Software Design Methods for Concurrent and Real-Time Systems
(August 1993) This book provides a basic understanding of concepts and issues in concurrent system design, while surveying and comparing a range of applicable design methods.

A Practitioner's Handbook for Real-Time Analysis: Guide to Rate Monotonic Analysis for Real-Time Systems
(August 1993) This book contains a collection of quantitative methods that enable real-time systems developers to understand, analyze, and predict the timing behavior of many real-time systems.

Developing Software for the User Interface
(May 1991) This book provides the information needed to design and build user interface (UI) software. The book’s goal is to facilitate the development of less costly and more effective UI.

Managing the Software Process
(January 1989) This landmark book introduces the author's methods, now commonly practiced in industry, for improving software development and maintenance processes.