Systems Engineering and Software Engineering: Collaborating for the Smart Systems of the Future
Convergence between systems engineering and software engineering is forging new practices for engineering the smart systems of the future.
• By Paul D. Nielsen
In Cyber-Physical Systems
Introducing CERT Kaiju: Malware Analysis Tools for Ghidra
Ghidra provides a compelling environment for reverse engineering tools that are relatively easy to use during malware analysis. Our latest blog post highlights a new suite of tools, known as …
• By Garret Wassermann, Jeffrey Gennari
In Reverse Engineering for Malware Analysis
The Latest Work from the SEI: Coordinated Vulnerability Disclosure, Cybersecurity Research, Cyber Risk and Resilience, and the Importance of Fostering Diversity in Software Engineering
This post highlights the latest work from the SEI in coordinated vulnerability disclosure, cyber risk and resilience management, automation, and the science of cybersecurity.
• By Douglas C. Schmidt
In CERT/CC Vulnerabilities
5 Ways to Start Growing an AI-Ready Workforce
This blog post by Rachel Dzombak and Jay Palat outlines 5 factors that are critical for organizations and leaders to consider as they grow an AI-ready workforce.
• By Rachel Dzombak, Jay Palat
In Artificial Intelligence Engineering
Translating the Risk Management Framework for Nonfederal Organizations
This blog post translates federal-government-specific aspects of the Risk Management Framework into processes for nonfederal organizations.
• By Emily Shawgo, Brian Benestelli
In Enterprise Risk and Resilience Management
Navigating People Concerns when Transitioning from Sustainment to Engineering Software-Reliant Systems
This post explores people issues that must be considered when software teams transition from sustainment to engineering.
• By Thomas Evans, Michael Gagliardi, Joseph Kostial, Nicholas Reimer, Douglas C. Schmidt
In Software Engineering Research and Development
DNS Over HTTPS: 3 Strategies for Enterprise Security Monitoring
DNS over HTTPS (DoH) can impair enterprise network visibility and security by bypassing traditional DNS monitoring and protections. In this post, I'll provide enterprise defenders three strategies for security monitoring …
• By Sean Hutchison
In Cybersecurity Engineering
Safety Assurance Does Not Provide Software Assurance
Safety engineers and software developers for cyber-physical systems have made great strides in producing devices and systems that are reliable, safe, and functional. With the growing threat posed by cyber …
• By Mark Sherman
In Cyber-Physical Systems
Operator-Feedback Sessions in a Government Setting: The Good and Not-So-Good Parts
This post covers good and not-so-good practices and outcomes in operator-feedback sessions in government environments.
• By Michael Szegedy, Timothy Chick
In Agile
Agile Metrics: Assessing Progress to Plans
The role of metrics in a government program’s assessment of progress in an iterative, incremental delivery of a system.
• By Will Hayes, Patrick Place, Keith Korzec
In Agile
Explore Topics
- Agile
- Artificial Intelligence Engineering
- CERT/CC Vulnerabilities
- Cloud Computing
- CSIRT Development
- Cyber Workforce Development
- Cyber-Physical Systems
- Cybersecurity Engineering
- DevSecOps
- Enterprise Risk and Resilience Management
- Insider Threat
- Quantum Computing
- Reverse Engineering for Malware Analysis
- Secure Development
- Situational Awareness
- Software Architecture
- Software Engineering Research and Development
- Technical Debt
Get updates on our latest work.
Sign up to have the latest post sent to your inbox weekly.
Get updates on our latest work.
Each week, our researchers write about the latest in software engineering, cybersecurity and artificial intelligence. Sign up to get the latest post sent to your inbox the day it's published.