Overview of Software Engineering Institute (SEI)

• 1 SEI advances software engineering, AI, and cybersecurity, enhancing national defense and industry capabilities.
• 2 Collaborative partnerships with the U.S. government and industry drive real-world software innovations.
• 3 SEI’s global perspective and expertise transcends borders, shaping international and technological advancements.

Financial services provider SEI Investments Company was formerly known as Simulated Environments Inc. and is headquartered in Oaks, Pennsylvania.

Mission and Goals

SEI works with defense and government organizations, industry, and academia to research cutting-edge software solutions and facilitate their transition into practice. It strives to prepare organizations to acquire, develop, operate, and evolve secure, reliable, and effective software systems.

Key Research Focus Areas at the Software Engineering Institute (SEI)

SEI pursues research across various software engineering disciplines. One area is software architecture, where SEI is developing methods for designing complex software systems that are scalable and modular. This research enables dealing with technical debt and modernizing outdated architectures. 

Another priority is DevOps and Agile software development. SEI studies integrated approaches, combining development and IT operations for more rapid, iterative delivery of new capabilities. Enhancing collaboration and automation enables continuous integration and deployment.

Machine learning is also a major focus. SEI is advancing ML algorithms, evaluation techniques, and tools to build robust AI systems. This supports organizations in effectively deploying ML for applications like predictive analytics.

Insider threat detection is a significant cybersecurity research domain. SEI is creating behavioral monitoring solutions to mitigate risks from malicious insiders, which are a leading source of breaches.

Additionally, SEI is examining risks in the software supply chain arising from open-source components and third-party libraries. Guidelines for secure software composition and open-source vetting help strengthen integrity.

SEI focuses on safe and secure design integrating computing, networking, and physical elements for mission-critical cyber-physical systems like avionics and medical devices.

Other areas include improving software acquisition practices, management methodologies, and adopting emerging technologies like blockchain, quantum computing, and augmented reality.

In addition to research, SEI develops prototype solutions, tools, standards, and best practices that can help organizations deploy reliable software faster and at a lower cost.

Cybersecurity Initiatives 

A major part of SEI’s work is focused on cybersecurity research and education. The CERT Division develops tools and training to improve cyber readiness and response capabilities for both government entities and private sector businesses. CERT researchers proactively monitor the landscape for emerging cyber threats and vulnerabilities to create preparedness resources.

SEI’s original and most renowned program is the CERT Coordination Center (CERT/CC). CERT/CC tracks cybersecurity issues and risks globally and coordinates mitigation efforts with departments across the U.S. government as well as international partners. It also performs in-depth studies on software vulnerabilities and internet security risks to provide threat intelligence. 

Additionally, SEI works extensively on CSIRT or computer security incident response team development. It partners with CSIRTs worldwide to build organizational capabilities and skills for detecting and responding to cyberattacks. SEI provides training programs, best practice recommendations, and hosts global conferences for CSIRT professionals to collaborate.

SEI’s Cybersecurity Engineering group focuses on creating proactive solutions, guidelines and frameworks that embed security deeply within software development and system engineering processes rather than leave it as an afterthought. This prevents security issues from materializing rather than reacting to threats.

Insider Threat Research aims to comprehend the patterns of malicious insider cyber risks through applied behavioral science. This enables developing capabilities for early detection of potential breach risks from rogue employees or contractors. 

Lastly, the Software Supply Chain Security team identifies risks introduced through open-source components and third-party libraries integrated into applications. They develop standards for securely producing code and best practices for safely integrating open source into organizations’ software supply chains.

Working with the U.S. Government

A core sponsor and partner for SEI is the United States Department of Defense (DoD). SEI conducts commissioned projects for the DoD and military branches to research and develop advanced software and systems capabilities relevant to national defense. Some examples include:

1. Partnership with the U.S. Air Force on machine learning initiatives for predictive maintenance and data modeling.

2. Working with the U.S. Navy on agile approaches to close capability gaps and get critical technology upgrades deployed faster.

3. Collaborating with the Pentagon’s Central Test and Evaluation Investment Program on frameworks for autonomous systems safety and ethics.

4. Participating in the Technical Experimentation Initiative of Joint Forces Command to exchange R&D knowledge.

Besides the DoD, SEI partners with other government agencies such as the Department of Homeland Security, National Science Foundation, National Security Agency, and more on critical software research aligned with their missions.

Industry Collaboration

In addition to its government work, SEI conducts collaborative R&D with industry partners in the tech sector. It helps companies adopt and implement SEI’s innovative software best practices and solutions within their organizations. Some private sector partnerships include:

1. SEI collaborates with leading tech companies like Google and Microsoft to implement its research into real-world software systems. These partnerships enable innovation in areas like ML for code analysis and vulnerability detection.

2. SEI also helps private sector organizations adopt its software best practices. It has assisted companies like Cognizant, Bank of America, and Merrill Lynch use SEI methods and frameworks to enhance software capabilities, security, architecture, and quality. Through industry collaboration, SEI translates its R&D into tangible impacts.

Partnership with Carnegie Mellon 

SEI’s relationship with Carnegie Mellon University (CMU) enables valuable knowledge exchange. SEI researchers can access CMU’s world-class computer science, software engineering, and cybersecurity academics and talent. CMU benefits from collaborative opportunities for applied research and access to SEI’s expertise. 

SEI’s physical location on CMU’s campus facilitates close interaction between the two powerhouse software engineering institutions. Joint research publications, shared conferences/events, and talent flow through recruitment, internships, and fellowships connect SEI and CMU. The proximity and ties foster an ecosystem for impactful innovations.

Conclusion

SEI has cultivated a global perspective and influence. International partnerships are a strategic priority, with collaborators and clients including the technology innovation divisions of allied defense agencies worldwide. SEI researchers actively participate in international cybersecurity bodies and conferences, ensuring its thought leadership integrates global insights. 

Extensive publications and online course offerings enable SEI to equip professionals across borders with state-of-the-art capabilities. By leveraging software engineering, artificial intelligence, and cybersecurity expertise, SEI fulfills its mission of driving strategic technological advances in government, military, and industry organizations everywhere, giving them a competitive edge. The institute’s global outlook and elite technical knowledge combine to provide an impact that transcends nation-state boundaries.