search menu icon-carat-right cmu-wordmark

Software and Cyber Solutions Symposium 2019: Acquisition, Security, and the Supply Chain

This two-day event explored topics such as building a secure development pipeline, scaling Agile metrics, and understanding software architecture, quality, and security through code analysis.

Software Engineering Institute


When building and acquiring software-reliant systems, the stakes are high and the risks can be daunting. Today’s systems are built with newly developed software, along with legacy, COTS, and open source applications, libraries, and data. Leveraging existing software components can help deliver capability at reduced cost, but what are the risks? How can you know what’s in the software that powers your mission-critical capabilities and how resilient it is to attacks?

The challenges multiply when you consider factors such as the increasing pace of acquisition and the use of multiple providers and teaming arrangements. This symposium included sessions that explored these topics. Besides expert speakers from the Software Engineering Institute, it included keynotes from the acquisition and development communities who provided senior-leader perspectives on these challenges, the status of the practice, and emerging needs.

Collection Items


The Software Dilemma


This talk addresses the significance of software development processes and provide some ideas about how they can affect your acquisition strategy, request for proposal, and contract terms.

Learn More

This content was created for a conference series or symposium and does not necessarily reflect the positions and views of the Software Engineering Institute.