Software-Defined World
Acting Chief Technology Officer Jeff Boleng talks about the challenges of a software-defined world and what the SEI is doing to automate all aspects of the software development lifecycle.
CERT Guide to Coordinated Vulnerability Disclosure Released
The Guide is available as a free download from the CERT Division website.
Multicore and Virtualization: An Introduction
Combinations of multicore processing and virtualization are increasingly being used to build mission-critical, cyber-physical systems.
Real-Time Extraction of Biometric Data from Video
How can biometric data, such as iris scans, gait recognition, and heart-rate monitoring help protect against both cyber and physical attacks?
Secure Coding Standards
The SEI's Bob Schiela explains how CERT Secure Coding Standards can help developers avoid software vulnerabilities before the code is released.
Angel Jordan Spearheaded the Formation of the SEI
Helped establish Carnegie Mellon University as a leading institution in the fields of engineering, computer science, and robotics.
Research and Publications
- Department of Defense Software Factbook In this report, the Software Engineering Institute has analyzed data related to DoD software projects and translated it into information that is frequently sought-after across the DoD. Technical Report - 07/11/2017
- The Hard Choices Game Explained The Hard Choices game is a simulation of the software development cycle meant to communicate the concepts of uncertainty, risk, and technical debt. White Paper - 06/26/2017
- IEEE Computer Society/Software Engineering Institute Watts S. Humphrey Software Process Achievement Award IEEE Computer Society/Software Engineering Institute Watts S. Humphrey Software Process Achievement Award White Paper - 05/15/2017
- Django & Twitter Bootstrap in the Workplace: Build 'em Fast and Furious In this talk, I'll discuss how I used the Django web framework, in conjunction with Twitter Bootstrap, to quickly build complex business applications. Presentation - 05/04/2017
Training
- Assessing Information Security Risk Using the OCTAVE Approach October 3 - 5, 2017 (SEI Arlington, VA)
- Insider Threat Program Manager: Implementation and Operation October 17 - 19, 2017 (SEI Arlington, VA)
- ATAM Evaluator Training October 18 - 19, 2017 (SEI Pittsburgh, PA)
- ELearning Courses Online
NEWS
-
CERT Guide to Coordinated Vulnerability Disclosure Released
Press Release - 08/15/2017 -
Angel Jordan Spearheaded the Formation of the SEI
Article - 08/07/2017 -
Garlan Honored with Nancy Mead Award
Article - 07/14/2017 -
Stempfley Named New Director of CMU Software Engineering Institute CERT Division
Press Release - 06/13/2017
-
Manion and Householder Discuss CERT Guide to Coordinated Vulnerability Disclosure with Cyber Scoop
Media Coverage - 08/17/2017
EVENTS
WEBINARS
- Practical Considerations in Adopting Agile/Lean in Government Settings Suzanne Miller, Eileen Wrubel Webinar - 07/19/2017
- 5 Things You Need to Know About Leading a Successful Large IT Modernization Project Stephany Bellomo, Felix Bachmann, Will Hayes Webinar - 07/07/2017
Blogs
Multicore and Virtualization: An Introduction
08/14/2017 - Donald Firesmith
Real-Time Extraction of Biometric Data from Video
08/07/2017 - Satya Venneti
Using Augmented Reality to Visualize Cyber-Warfare Opportunities
07/31/2017 - Jeffrey MattsonPODCASTS
Ransomware: Best Practices for Prevention and Response
In this podcast, CERT researchers spell out several best practices for prevention and response to a ransomware attack. Podcast - 07/14/2017
Integrating Security in DevOps
In this podcast, Hasan Yasar discusses how Secure DevOps attempts to shift the paradigm for tough security problems from following rules to creatively determining solutions. Podcast - 06/29/2017