Engineering for Cyber

Abstract

In June of 2020 a generally successful DoD program completed an 8 week "Hardening the Software Factory" effort in order to address accumulated technical debt and to address insufficient security and operations practices due to the narrow focus on speed of delivery. These things occur, even in small relatively successful programs, when technical debt and insufficient security and operational practices are in place due to lack of knowledge, experience, and reference material to fully design and execute an integrated DevSecOps strategy in which all stakeholder needs, including cybersecurity, are addressed. While playing Whac-A-Mole is inevitable, instead of missing the holes, or constantly hitting the same hole, the key is to fill in the holes.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Feb 25, 2022
Accession Number
AD1161240

Entities

People

  • Tim Chick

Organizations

  • Carnegie Mellon University

Tags

DTIC Thesaurus Topics

  • Application Software
  • Artificial Intelligence
  • Best Practices
  • Copyrights
  • Cyberattacks
  • Cybersecurity
  • Data Processing
  • Department Of Defense
  • Digital Engineering
  • Emerging Technology
  • Engineering
  • Flow
  • Governments
  • Guarantees
  • Materials
  • Model Based Systems Engineering
  • Pipelines
  • Software Assurance
  • Software Development
  • Systems Engineering
  • Technical Debt
  • Vulnerability

Fields of Study

  • Computer science

Readers

  • Economics
  • Enterprise Information Systems Architecture and Joint Command Capability Interoperability Support.
  • Software Engineering

Technology Areas

  • Cyber