Nataliya Shevchenko
Software Engineering Institute
Nataliya Shevchenko is a senior member of the technical staff within the CERT Division of the Carnegie Mellon University Software Engineering Institute (CMU SEI). She specializes in system engineering, model-based system engineering (MBSE), and threat-modeling methods. She has a breadth of experience across the software development lifecycle for more than 20 years.
Prior to joining the CMU SEI, Shevchenko worked in the teleconferencing, freight and rail, and financial services critical infrastructures. She holds MS degrees in Software Engineering from CMU, and both BS and MS degrees in Mathematics from Donetsk State University in Ukraine.
Publications by Nataliya Shevchenko
-
Using Model-Based Systems Engineering (MBSE) to Assure a DevSecOps Pipeline is Sufficiently Secure
May 23, 2023 • Technical Report
Timothy A. ChickScott PavettiNataliya Shevchenko
This report describes how analysts can use a model-based systems engineering (MBSE) approach to detect and mitigate cybersecurity risks to a DevSecOps pipeline.
read -
Benefits and Challenges of Model-Based Systems Engineering
July 22, 2021 • Podcast
Nataliya ShevchenkoMary Popeck
Nataliya [Natasha] Shevchenko and Mary Popeck discuss the use of model-based systems engineering (MBSE), which, in contrast to document-centric engineering, puts models at the center of system design.
learn more -
Modeling DevSecOps to Reduce the Time-to-Deploy and Increase Resiliency
March 10, 2021 • Webinar
Joseph D. YankelAaron K. ReffettNataliya Shevchenko
In this webcast, we discuss why an authoritative reference, or Platform Independent Model, is needed to design an integrated DevDevSecOps strategy.
watch -
Threat Modeling for Cyber-Physical System-of-Systems: Methods Evaluation
September 25, 2018 • White Paper
Nataliya ShevchenkoBrent FryeCarol Woody, PhD
This paper compares threat modeling methods for cyber-physical systems and recommends which methods (and combinations of methods) to use.
read -
Threat Modeling: A Summary of Available Methods
August 09, 2018 • White Paper
Nataliya ShevchenkoTimothy A. ChickPaige O'Riordan
This paper discusses twelve threat modeling methods from a variety of sources that target different parts of the development process.
read