SEI Digital Library

Elements of Effective Communications for Cybersecurity Teams

February 27, 2025 • Webcast

By
Sharon Mudd

In this webcast, Cybersecurity Operations Researcher Sharon Mudd leverages the National Institute of Standards and Technology Cybersecurity Framework and the Forum of Incident Response and Security Teams CSIRT Services Framework …

Watch

DOD Software Modernization: SEI Impact and Innovation

February 26, 2025 • Podcast

By
Paul Nielsen

As software size, complexity, and interconnectedness continues to grow, modernization has become more important than ever. Paul Nielsen outlines the SEI's work with the DoD on this front in the …

Listen

Operational Resilience Fundamentals: Building Blocks of a Survivable Enterprise

February 12, 2025 • Webcast

By
Matthew J. Butkovic

In this webcast, Greg Crabbe and Matt Butkovic share their experiences in establishing and maintaining operational resilience programs.

Watch

Using LLMs to Adjudicate Static-Analysis Alerts

January 7, 2025 • Conference Paper

By
William Klieber and Lori Flynn

This paper discusses techniques for using large language models to handle static analysis output.

Read

Understanding the Need for Cyber Resilience

January 6, 2025 • Webcast

By
Matthew J. Butkovic

In this webcast, Matthew Butkovic, Greg Crabb, and Ray Umerley explore how to best plan for maintaining operational resilience when a ransomware incident occurs.

Watch

Addressing Today's Software Risks Requires an Assurance-Educated Workforce

January 6, 2025 • Article

By
Carol Woody

The author summarizes gaps in workforce knowledge, skills, and support resources based on recent publications and panel discussions held by the SSCA forum.

Read

Securing Docker Containers: Techniques, Challenges, and Tools

December 17, 2024 • Podcast

By
Maxwell Trdina and Sasank Vishnubhatla

With the increasing prevalence of cloud computing environments, containers are increasingly providing their underlying architecture.

Listen

Security Engineering Framework (SEF): Managing Security and Resilience Risks Across the Systems Lifecycle

December 12, 2024 • Special Report

By
Christopher J. Alberts, Charles M. Wallen, Carol Woody, Michael S. Bandor, and Tom Merendino

The SEF is a collection of software-focused engineering practices for managing security and resilience risks across the systems lifecycle.

Read

An Introduction to Software Cost Estimation

December 6, 2024 • Podcast

By
Anandi Hira

Software cost estimation is an important first step when beginning a project. It addresses budget, staffing, scheduling, and whether the current environment will support the project.

Listen

Dangers of AI for Insider Risk Evaluation (DARE)

November 19, 2024 • White Paper

By
Austin Whisnant

This paper describes the challenges and pitfalls of using artificial intelligence for insider risk analysis and how to thoughtfully and efficiently use AI to find insider threats.

Read

Software Engineering Institute