Podcast Episodes
Back to SearchIdentifying the Architectural Roots of Vulnerabilities
In our studies of many large-scale software systems, we have observed that defective files seldom exist alone. They are usually architecturally conne…
10 years, 2 months ago
Build Security In Maturity Model (BSIMM) – Practices from Seventy Eight Organizations
The Building Security In Maturity Model (BSIMM) is the result of a multi-year study of real-world software security initiatives. It is built directly…
10 years, 2 months ago
An Interview with Grady Booch
Grady Booch recently delivered a presentation as part of the SEI's CTO Distinguished Speaker Series where he discussed his perspectives on the bigges…
10 years, 3 months ago
Structuring the Chief Information Security Officer Organization
Chief Information Security Officers (CISOs) are increasingly finding that the tried-and-true, traditional information security strategies and functio…
10 years, 3 months ago
How Cyber Insurance Is Driving Risk and Technology Management
Every day another story arises about a significant breach at a major company or Government agency. Increasingly, cybersecurity is being viewed as a r…
10 years, 5 months ago
A Field Study of Technical Debt
In their haste to deliver software capabilities, developers sometimes engage in less-than-optimal coding practices. If not addressed, these shortcuts…
10 years, 6 months ago
How the University of Pittsburgh Is Using the NIST Cybersecurity Framework
In this podcast, Sean Sweeney, Information Security Officer (ISO) for the University of Pittsburgh (Pitt), discusses their use of the NIST (National …
10 years, 6 months ago
A Software Assurance Curriculum for Future Engineers
Modern society is deeply and irreversibly dependent on software systems of remarkable scope and complexity in areas that are essential for preserving…
10 years, 6 months ago
Four Types of Shift Left Testing
One of the most important and widely discussed trends within the software testing community is shift left testing, which simply means beginning testi…
10 years, 7 months ago
Toward Speed and Simplicity: Creating a Software Library for Graph Analytics
High performance computing is now central to the federal government and industry as evidenced by the shift from single-core and multi-core or homogen…
10 years, 7 months ago