And at 10 00 a. M. Eastern on cspan three, Emergency Management officials testify on wildfire preparedness and response efforts before the Senate Homeland security and Governmental Affairs committee. You can watch our live coverage on the cspan now outboard cspan. Org. Since 1979 in partnership with the cable industry, cspan has provided complete coverage to the halls of congress to the house and Senate Floors to congressional hearings, party briefings and congressional meetings. Cspans give you a front row seat h issues are debated and decided with no commentary. No interruptions and completely unfiltered. Cspan your unfiltered view of government. Tech policy experts testify on softwares role in the evolution of the Defense Department systems before a subcommittee. Also addressin enhance modernization and attract talent. This is just under one hour. H subcommittee will come to order. The chair may authorize to declare recess at any tobjectio. Good morning, everyone. Thank you for attending. We are here to software that the warfront uses and is crucial to conduct operations in the air, sea, on land space and cyberspace. Similar they will be able to leave our pier and they can deliver payload we expect that the system zip code will work when needed. Despite this we see a department that collectively struggles in procuring operating and prioritizing software. Congress do know when something is wrong and what something is right or when something is working o the reports we see the studies repeatedly knowing that the department struggles with software findings that are remarkably consistent from 1980 s to today. We know that some things are fundamentally amiss. I hope today funds the witnesses to describe the problem and contextualize wheresible what is being done to date and what the largest barriers have been for addressing these issues and they truly meaningful manner. The hudson institute. Thank you for being with us today. I will now recognize the Ranking Member for his opening remarks. Thank you, mr. Chair. Looking forward to hearing from you. The department of defense and u. S. Government has been critical in the development of software and technology in this country as a representation of Silicon Valley. I remember that it was our mission to the moon that led to the acquisition of semiconductors. That is what spawned Silicon Valley. By semiconductors, yohave seen of Silicon Valley and the technology. The innovation is happening in enand the private sector, we need to figure out how we continue and stprivate s the dynamic nature of software, how quickly it changes, how we need that innovation to keep us the Strongest Military and country in the world. I am looking forward to your comments and your suggestions. Thank you, mr. Chairman. Witnesses. Now start with the misses lord, you are recognized for five minutes. Thank you very much for chairing this hearing and thank you members of the. In an era of strategic Competition Among technologically advanced powers, software shaped the nature of deterrent and defined National Security advantage. The urgency to empower our defense and apparatus across all domains with both the best existing and emerging technology is critical to not only prefers our freedoms but those of our partners and allies. Transformed our cial sectors. In turn our everyday lives. Now, we must harness and apply this ingenuity and military superiority in the digital age. Given current geopolitical conditions, the stakes could not be hardier. Software development and support of our country support and infrastructure needs to meet the challenge of the moment. To fall short now would not just be a bureaucratic debacle but a source of imminent risk to our ability to deter, fight and win. E abily close the gap between information discovery and Mission Response is a defining differentiator and emerging global competition. Defense and intelligent agencies must develop, acquire, execute and maintain software Mission Needs while also having the agility to quickly respond to future threat environments. The statutory, regulatory and budgetary framework for these agencies are right for streamli maintain the Nations Software advantage. The department of defense, procurement process, is one of the greatest challenges and opportunities to software ch that is. Traditionally employed for major hardware systems. Typically this entails 0osettin rigid requirements, lengthy solicitation processes and ultimately coming years later, to adapt software that is often obsolete upon delivery. Although alternative pathways exist, they are only effective as an acquisition professionals implement them. Funding professional training and development for acquisition professionals to ensurethey have key skills for implementing the full spectrum of acquisition approaches wi le Innovative Technology to be quickly provided for our national d must operationalize policies and procedures to support the modern delivery and practicesuch as agile Lifestyle Software and service delivery, human centered design, and modern chnology stats. Training the Acquisition Workforce is necessary but not suffto modernized development and deployment. Resourcing must be available to provide flexible and leadership must demand that all relevant procedures and processes are employed. My submitted testimony goes into more details on these items. I would like to close by acknowledging three efforts that are producing actionable recommendations that might be useful to the subcommittee. One is the commission on planning, programming and execution. We just last week produced our final report. We talked about recommendations that could be employed. Many would help our software initiatives. Two, the software Defense Coalition that is led by jane lee is producing actionable recommendations for the subcommittee. And finally, the Atlantic Council commission on Software Defined warfare on which i serve, is again producing actionable recommendations. I urge the committee to ■ thank you, ms. Lord. Are recognized for five minutes. Mr. Luttrell and distgu thank you for inviting me to speak on the topic of software development. From 2016 to 2021, i was a member of the board and co chaired along to this was established in 2018. Our report was called software is ver done. The key findings of our report was that congress and dod had been talking about the importance of software. In many ways, the report was just a rephrasing of the 1987 Defense Task Force on militat[r< software 32 years earlier. Identified itself over previous on chapter three, been there, said that, we know what we need to do. We need to figure out how to actually do it and get to it. Our 2019 report, i believe we are still the most the first is that speed and cycle time are the most important metrics for software. Being able to deploy faster than our adversaries means that we can provide more advanced and be more responsive to end users. And gives us a Tactical Advantage on the battlefield by allowing operation and response inside our adversaries. Second, software is by people and. Dod resource policies are not conducive to attracting and talented developers and acquisition personnel are often put in jobs that do not allow them to make use of their talents. Particularly in the military were job assignments may not recognize the importance. Today and dod, the people with the necessary skills exist but instead of taking advantage of the skills, we often put them in environments where it is difficult for them. Third, software is different than hardware and not all software the same. Thomas and dod have established instructions that govern e development, procurement and sustainment of Defense Systems. Software development is fundamentally different. Software should be developed and continuously improved using much different cycle times and maintenance strategies. Software is never done and tre differently than hardware. I took the opportunity to read reports on the implementation of some of the recommendations for the study we have partnered with. I was pleased to that congress and dod have made progress in implementing many of our recommendations including establishing pathways for software and exploring new procreation categories. These are important steps and they should be continued and accelerated. In addition to these important actions focused on the implemented many actions on primary and secondary recommendations. Some of the most important providing guidance including reciprocity and continuous adls. As of april 2023, guidance for continuous adls has not been processed. Dod reports progress but appears they have let to establish. E a welldefined Software Developer including Service Members will out dod to retain to design, build software systems. Finally, an area that is when we did the study is the role of Artificial Intelligence and military systems. The implications of ai will be profound across all areas of society. The field is changing so rapidly its impossible to predict how ai is working progress. Ai is poised to revolutionize the way we right, test and deploy. Already riding code based on the speed development. Be integral. These developments will democratize development and ways to do it drastically reduced time. At the same time, software is using for military systems is critical to fail so we must find ways to harness those. Dod developments and take advantage of the current u. S. Leadership being development. Congress working with dod plays an essential role in breaking us out of the cycle. Thank you for your attention and i look forward to the session. Thank you, dr. Murray. Dr. Pratt. Five minutes. Thank you foon such an important topic. Im here an individual capacity. I serve in diverse roles offering perspective on technology and threats. Broad technoeconomic shifts and the vibrant ecosystem. As you all know, software is ubiquitous. Powerful implications for economic productivity and government effectiveness for cybersecurity and the character of National Security. These Technology Goal changes are overlaid on the context of our time. Strategic consultation. In the crux of the problem for National Security is this. And a sustained competition and the longterm competition, advantage ultimately depends on the ability for one side to adapt. Yearbyyear mitigating weaknesses and advantage. The kind of questions we ended up with are things like our weapons systems, relevant against a relentless pace of threats. Can we invent new ways of fighting that put the prc on the ÷■eback foot. These are the issues that the department of defense must tackle if it wants to compete. Everyone of these iseson softwa even changing i military units tactic. We need look no further than the battlefields of ukraine to find evidence that units which are able to change the software more quickly see better outcomes. We face victims of software, cursing its bugs and overruns. Or we can harness it for competitive advantage by leveraging american ingenuity, a robust talent base leading technology. That is our question. Can we create a Defense System built for evolution and adaptation . My central message is this and it will echo those of my fellow witnesses here. The process of getting code from a programmer to an operational system is critical. We blur the lines between what is development, building something. And what is operations, using that same thing. A necessary for competition. Is they remain in the minority and they faced daily struggles against organizations and processes built for another era. I call your attention to two axonal items. As weve discussed ■■ where adl how the department decides that software is safe to deploy and use. The second item, towns. Attackingtopic i will introduce an analogy. In many ways, making software resembles moldinwet clay. Forming it into some finished piece. When an Engineering Team works with source code, they can quickly adjusted, make fixes. Once the code is compiled, built, shipped, it becomes fixed and brittle. The code only works on one particular type of processor. What we find is modern software so complex, you need to feed the results back to the Engineering Team. Unfortunately, our 312 process makes this quite difficult. On the second topic, technical talent come a software is a complex and technical subject matter. Details matter. We hear this quick big headline sometimes. One simple trick can solve dod software. One Software Factory to rule them all. Its all about agile. Those are all great tools. Those are useful things. But navigating that complexity requires judgment and organic technical talent on the part of the department. The dod needs leaders driven by mission. It doesnt need armies nlof coders. They can attract this talent if given the right tools using things like appointments and giving these people autonomy to make a mission impact. Thank you. Thank you, dr. Patt. I will move it to questioning. Authority coming all three had on that. I hate to say it, it seems, you guys shouldnt leave. Im going to talk to guys if you want to hang out. Yuck. Totally cool. Sit back down. E authority i dont it seems like its the improper medium innovation. Software is updated every half second of every second of every minute of every day. It moves so fluidly. For the past 40 years, the authority seems to be bogging the system down. Im asking three subject matter experts. Well start with you mr. Patt, or ms. Lord, we will start with you. Ladies first. What is the fixed . I dont want to rert that we will never read. What is the fix to fix this problem . This is the way we lean in front of our adversaries. The system is failing itself. The challenge is the need for speed. I believe there are two things that we need to do. One, moved to continuous adls. Theres been a lo a lot discussed. Continuous atos are not yet implemented. This would be a very good thing to ask a dod leadership. Secondly, we are repeatedly across even programs, military services, agencies, not allowing reciprocal rights for the same software is being reauthorized again and again. Those are the two key things that i think you should push on. Absolutely not looking at discrete, repetitive, approvals. Right now come in fact, there is only a requirement to approve 12 systems a year, which given the fact that most of our systems went on hardware, software and data is frightening. Dr. Murray. I completely agree. We think about continuous ato in particular. We need to be able to stay, this Software Needs to benot giving them the code they need to do. How do we get to the point where we are an industry, right . If a zero day comes out, some attack on my cell phone, there will be an update in the next dafigured out, its going to satisfies our own. We need to find what that is. I think you should be asking on every program, what is the cycle time is going to the software. How much is that is the ato ■ ■ es if that ato, if that more than a day, theres a problem, right . There needs to be a continuous ato where we automaticay ied . This is important code. We need to be able to get out there quickly. Dr. Patt. I agree with those comments. The ato is about the risk of using the software. The schedule along with mission risk. If its buying body armor, you can separate these issues. Is it safe to use this on a mission. Does this help support the mission. These lines say that one of the places where you see progress in the department is where they try to put thesriskthe navy, there are Program Offices and Program Managers which both own the risk of use of the software on the Operational Network and the development of software. When you move those things together, you tend to get e org have been able to use continuous ato is. I would expect that same characteristic to carry us forward. As dr. Murray said, we often focus on adls. We rgof not updating the software, of not deploying new features. We become too focused on compliance, checking the boxes of, you know, did we meet the boxes we said we did would . We forget the underlying problems. The most important thing is the cycle time that we keep coming back to. You can keep updating and mitigating problems. If i may have oni think we need to differentiate in the department betweeation. We are never going to eliminate all risk. These tradeoffs are what take human judgment calls. What dr. Patt is talking about. I think its very important for congress to recognize those individuals in the department who are leaning forward and demonstrating, embracing authorities, policies, procedures. I would say who was, has done that admirably. Thank you, ms. Lord. For all the young men and women, they are talking to you. You are the next generation that will keep this country ahead across the globe. I highly recommend you play this takeback because we are counting on you. Do you understand . Outstanding. Your recognized for five minutes. 9a in my district, when you have a software challenge, they dont just go out and buy new software. In fact that the last thing they do. Theyha figure things out. Ive heard that they just buy new sowato check off the box that they have complied. This is innovating in the way that the private ■sector does could you comment on how we change that culture other than getting tim cook to run these things . I think it comes down to investing in the human capital. If individuals are not trained to be smart buyers and we cannot attract contemporary coders and so forth, we cannot change that culture. Right now, we have a huge issue. This is mentioned in our final report with modernizing a lot g