CMMI for Services: Guidelines for Superior Service
(November 2009) CMMI for Services (CMMI-SVC) is a comprehensive set of guidelines to help organizations establish and improve processes for delivering services. This book comprises an introduction to the CMMI-SVC model and an authoritative reference for it.

The People CMM: A Framework for Human Capital Management, 2nd Edition
(July 2009) The book is aimed at people responsible for developing and implementing human capital strategies and plans in their organizations, managing or developing the workforce, implementing advanced workforce practices, nurturing teams, and transforming organizational culture. It is especially useful for businesses undergoing critical organizational changes.

CMMI-ACQ: Guidelines for Improving the Acquisition of Products and Services
(January 2009) CMMI-ACQ (Capability Maturity Model Integration for Acquisition) describes best practices for the successful acquisition of products and services. In addition to the entire CMMI-ACQ model, the book includes tips, hints, cross-references, and other author notes to help you understand, apply, and find more information about the content of the acquisition process areas.

CERT C Secure Coding Standard
(October 2008) This book is an essential desktop reference documenting the first official release of The CERT C Secure Coding Standard. The standard itemizes those coding errors that are the root causes of software vulnerabilities in C and prioritizes them by severity, likelihood of exploitation, and remediation costs.

Software Security Engineering: A Guide for Project Managers
(May 2008) With this management guide, you can select from a number of sound practices likely to increase the security and dependability of your software, both during its development and subsequently in its operation.

CMMI and Six Sigma: Partners in Process Improvement
(December 2007) CMMI and Six Sigma: Partners in Process Improvement focuses on the synergistic, rather than competitive, implementation of CMMI and Six Sigma—with synergy translating to "faster, better, cheaper" achievement of mission success.

CMMI for Outsourcing: Guidelines for Software, Systems, and IT Acquisition
(March 2007) This book is a practical introduction to the initial CMMI-ACQ and its use in all phases of technology acquisition.

Perspectives on Free and Open Source Software
(March 2007) Perspectives on Free and Open Source Software brings together leading analysts and researchers to address this question, examining specific aspects of F/OSS in a way that is both scientifically rigorous and highly relevant to real-life managerial and technical concerns.

A Process Research Framework
(December 2006) The SEI's International Process Research Consortium (IPRC) brings together 27 leaders from academia and industry to study the implications of both plausible future scenarios and existing process research.

CMMI: Guidelines for Process Integration and Product Improvement, 2nd edition
(November 2006) This book contains the recently released CMMI for Development (CMMI-DEV), Version 1.2, which describes best practices for the development and maintenance of products and services across their entire lifecycle. By integrating essential bodies of knowledge, CMMI for Development provides a single, comprehensive framework for organizations to assess their development and maintenance processes, implement improvements, and measure progress.

CMMI Survival Guide: Just Enough Process Improvement
(October 2006) With a proper guide to help navigate around unknown dangers, potential pitfalls, and false paths, you too can realize substantial business value from a successful CMMI implementation. This book is such a guide, full of the real-life examples to ease your way, and written in a lighter style to ease your reading.

Ultra-Large-Scale Systems: The Software Challenge of the Future
(June 2006) Ultra-Large-Scale Systems: The Software Challenge of the Future is the product of a 12-month study of ultra-large-scale (ULS) systems software.

TSP: Coaching Development Teams
(April 2006) Most modern software development projects require teams, and good teamwork largely determines a project’s success. The Team Software Process (TSP), created by Watts S. Humphrey, is a set of engineering practices and team concepts that produce effective teams, thereby helping developers deliver high-quality products on time and within budget. TSP bridges Humphrey’s seminal work on the Capability Maturity Model (CMM), an improvement framework for the entire software organization, and his Personal Software Process (PSP), practices designed to improve the work of individual developers.

Secure Coding in C and C++
(September 2005) Secure Coding in C and C++ presents hundreds of examples of secure code, insecure code, and exploits, implemented for Windows and Linux.

TSP: Leading a Development Team
(September 2005) In this essential guide to TSP, Humphrey uses his vast industry experience to show leaders precisely how to lead teams of software engineers trained in the Personal Software Process (PSP).

Estimating Software-Intensive Systems: Projects, Products, and Processes
(April 2005) Many software projects fail because their leaders don't know how to estimate, schedule, or measure them accurately. Fortunately, proven tools and techniques exist for every facet of software estimation. Estimating Software-Intensive Systems brings them together in a real-world guidebook that will help software managers, engineers, and customers immediately improve their estimates—and drive continuing improvements over time.

PSP: A Self-Improvement Process for Software Engineers
(March 2005) Secure Coding in C and C++ presents hundreds of examples of secure code, insecure code, and exploits, implemented for Windows and Linux.

CMMI SCAMPI Distilled: Appraisals for Process Improvement
(March 2005) The authors outline the role of appraisals as part of a comprehensive, state-of-the-art approach to process improvement, showing how SCAMPI integrates with quality initiatives, international standards, and other CMMI models and methods.

CMMI Assessments: Motivating Positive Change
(February 2005) The authors begin their book with an expert overview of what assessments entail, when they make sense, how to set achievable goals for them, and how to lead them to success.

Internet Denial of Service: Attack and Defense Mechanisms
(January 2005) Internet Denial of Service sheds light on a complex and fascinating form of computer attack that impacts the confidentiality, integrity, and availability of millions of computers worldwide.

Principles of CASE Tool Integration
(September 2004) Principles of CASE Tool Integration describes a set of concepts, models, and guidelines for understanding CASE (computer-aided software engineering) tool integration and provides in-depth analysis of the CASE tool integration problem.

Human Aspects of Software Engineering
(May 2004) The book is written for software engineering students and professional software developers, and addresses topics such as teamwork, customer - software-engineer relationships, and learning processes in software development.

Software Architecture in Practice (2nd Edition)
(April 2003) This book provides a concise, all-in-one, easily accessible overview of software architecture. Anyone requiring a comprehensive overview of the field of software architecture will benefit from this book. Software Architecture in Practice, 2nd edition, provides a comprehensive overview of the field of software architecture in a single, easy-to-digest package.

Modernizing Legacy Systems: Software Technologies, Engineering Processes, and Business Practices
(February 2003) This book is a much-needed guide, showing how to implement a successful modernization strategy and describing specifically a risk-managed, incremental approach--one that encompasses changes in software technologies, engineering processes, and business practices.

Documenting Software Architectures: Views and Beyond
(October 2002) The SEI has produced an approach for documenting software architectures known as the "Views and Beyond" approach. It allows software architects to produce only the documentation that has a demonstrated community of consumers, while producing high-quality documentation that will serve the project throughout its entire lifecycle.

Managing Information Security Risks: The OCTAVE Approach
(July 2002) The book provides a systematic way to evaluate and manage information security risks, illustrates the implementation of self-directed evaluations, and shows how to tailor evaluation methods to different types of organizations.

Architecture-Centric Software Project Management: A Practical Guide
(January 2002) The book addresses each cornerstone of effective project management -- planning, organizing, implementing, and measuring.

Winning with Software: An Executive Strategy
(December 2001) Based on his own extensive management experience, Watts S. Humphrey, the world-renowned expert on process improvement, shows corporate executives and senior managers how to gain control of a software operation and how to transform that operation into a professional and businesslike engineering function.

Evaluating Software Architectures: Methods and Case Studies
(November 2001) This book is a comprehensive, step-by-step guide to software architecture evaluation, describing specific methods that can quickly and inexpensively mitigate enormous risk in software projects.

Software Product Lines: Practices and Patterns
(August 2001) Building product lines from common assets can yield remarkable improvements in productivity, time to market, product quality, and customer satisfaction. This book provides a framework of specific practices, with detailed case studies, to guide the implementation of product lines in your organization.

Building Systems from Commercial Components
(July 2001) This book describes specific engineering practices needed to integrate preexisting components with preexisting specifications successfully, illustrating the techniques described with case studies and examples.

Managing Software Acquisition: Open Systems and COTS Products
(July 2001) This book presents fundamental principles and best practices for successful acquisition and utilization of open systems and COTS products.

CMMI Distilled: A Practical Introduction to Integrated Process Improvement
(June 2001) This book provides a concise introduction to the CMMI product suite, highlighting the benefits of integrated process improvement, explaining key features of the new, integrated approach to process improvement, and suggesting how to choose appropriate CMMI models and model representations for your organization.

CERT Guide To System and Network Security Practices
(June 2001) This book makes CERT practices and implementations available in book form, and offers step-by-step guidance for protecting your systems and networks against malicious and inadvertent compromise.

CMM in Practice: Processes for Executing Software Projects at Infosys
(November 1999) The Capability Maturity Model (CMM) is a widely adopted set of guidelines for evaluating and improving an organization's software development processes. The CMM is a general framework, however, and provides no specific guidance for implementation; instead, each organization must relate CMM characteristics to its own processes. As a consequence, the need has emerged for comprehensive accounts of successful CMM implementations, as well as for detailed descriptions of how software projects are executed in those cases. Such real-world examples can serve as a valuable resource for managers and developers responsible for setting up the CMM and carrying out their own projects.

CMM in Practice comprises such a resource. Examining the various stages in the life cycle of a typical software project at Infosys Technologies, the book describes the technical and management processes used to initiate, plan, and execute the project. To enhance the discussion, an actual Infosys project is used as a running example throughout the book.

Introduction to the Team Software Process
(September 1999) This book, particularly useful for engineers and students trained in the Personal Software Process (PSP), introduces TSP and the concrete steps needed to improve software teamwork.

Measuring the Software Process: Statistical Process Control for Software Process Improvement
(July 1999) This book shows how to use measurement to manage and improve software processes within your organization.

Cleanroom Software Engineering: Technology and Process
(March 1999) This book provides an introduction and in-depth description of the Cleanroom approach to high-quality software development.

Software Process Improvement: Practical Guidelines for Business Success
(February 1998) This book will help you manage and control the quality of your organization's software products by showing you how to develop a preventive culture of disciplined and continuous process improvement.

Managing Risk: Methods for Software Development
(February 1998) Written for busy professionals charged with delivering high-quality products on time and within budget, this comprehensive guide describes a success formula for managing software risk. The book follows a five-part risk-management roadmap designed to take you from crisis to control of your software project.

Introduction to the Personal Software Process
(December 1996) This workbook provides a hands-on introduction to the basic discipline of software engineering, as expressed in the author's well-known Personal Software Process (PSP).

Managing Technical People: Innovation, Teamwork, and the Software Process
(November 1996) Drawing on the author's extensive experience as a senior manager of software development at IBM, this book describes proven techniques for managing technical professionals.

Continuous Risk Management Guidebook
(January 1996) The Continuous Risk Management Guidebook describes the underlying principles, concepts, and functions of risk management and provides guidance on how to implement it as a continuous practice in your projects and organization.

Discipline for Software Engineering: The Complete PSP Book
(January 1995) This book scales down to a personal level the successful methods developed by the author to help managers and organizations evaluate and improve their software capabilities—methods comprising the Personal Software Process (PSP).

A Practitioner's Handbook for Real-Time Analysis: Guide to Rate Monotonic Analysis for Real-Time Systems
(August 1993) A Practitioner's Handbook for Real-Time Analysis: Guide to Rate Monotonic Analysis for Real-Time Systems contains a collection of quantitative methods that enable real-time systems developers to understand, analyze, and predict the timing behavior of many real-time systems.

Software Design Methods for Concurrent and Real-Time Systems
(August 1993) This book provides a basic understanding of concepts and issues in concurrent system design, while surveying and comparing a range of applicable design methods.

Developing Software for the User Interface
(May 1991) This book provides the information needed to design and build user interface software.

Managing the Software Process
(January 1989) This landmark book introduces the author's methods, now commonly practiced in industry, for improving software development and maintenance processes.