Mitigating Cyber Risk with Secure by Design
• Podcast
Publisher
Software Engineering Institute
Topic or Tag
Listen
Watch
Abstract
Software enables our way of life, but market forces have sidelined security concerns, leaving systems vulnerable to attack. Fixing this problem will require the software industry to develop an initial standard for creating software that is secure by design. These are the findings of a recently released paper coauthored by Greg Touhill, director of the Software Engineering Institute (SEI) CERT Division, which researches cybersecurity for national defense. In this latest SEI podcast, Touhill and Matthew Butkovic, director of Cyber Risk and Resilience at CERT, discuss the paper including its recommendations for making software secure by design.
About the Speaker
Greg Touhill
Gregory J. Touhill is the director of the CERT Division of the Carnegie Mellon University (CMU) Software Engineering Institute. Previously, he served as the first United States government CISO, as deputy assistant secretary in the DHS Office of Cybersecurity and Communications, and president of a cybersecurity start-up.
Touhill is a …
Read more
Matthew J. Butkovic
Matthew Butkovic is the Technical Director of the Cyber Risk and Resilience Assurance Directorate in the CERT Division of the Carnegie Mellon University Software Engineering Institute (CMU SEI).
Matt performs critical infrastructure protection research and develops methods, tools, and techniques for evaluating capabilities and managing risk. This includes addressing the …
Read more