Software Factory

Lockheed Martin Software Factory

Software now defines the bulk of mission critical capabilities and in many cases, it delivers the decisive advantage for our customers — from our integrated sensors and weapons systems that give pilots an advantage over potential threat to the ground systems that keep satellites flying.

By utilizing DevSecOps methodology, our team capitalizes on common code whenever possible to rapidly deliver mission capabilities at a lower cost with the same level of quality and mission success our customers have come to expect — meeting U.S. Department of Defense criteria for a software factory including key security requirements.  

Introducing Lockheed Martin’s Software Factory, a leader in DevSecOps-driven software engineering serving the aerospace and defense sectors. The Lockheed Martin Software Factory delivers customized solutions to meet the needs of our diverse customers — from commercial to classified — in order to scale across multiple programs.

Embedding (Development, Security and Operations) DevSecOps in every step of our software development keeps our clients at the cutting edge of cybersecurity. Secure coding is a fundamental principle behind our DevOps philosophy to make sure the best cyber security practices are considered at every step of development. Continuous monitoring in an automated environment means we can deliver and frequently update customized software solutions for our customers in response to rapidly evolving mission needs. 

“Our customers are seeking frequent delivery of high-quality, secure software and we are rising to the challenge. We are using Infrastructure Automation to build systems in minutes, not days. We are using containerization to update systems continuously, not waiting for full system integration and delivery events. The Lockheed Martin Software Factory is transforming our enterprise in DevSecOps and cybersecurity.” – Alan Hohn, Chief Engineer, Lockheed Martin Software Factory

Today’s missions operate on timelines of days and weeks, not months and years. Our customers need software that moves just as fast as their ever-changing missions. We’ve transformed from using the long-lead ‘waterfall’ development framework to an iterative and incremental DevSecOps methodology that lets us deliver the most important features first.

We are focused on architecting software for frequent delivery. Modular open systems architecture has been key to our systems for many years, and we are using new technologies such as container orchestration with Kubernetes to drive modularity through containerized microservice architecture all the way into the deployed system. Not only does this simplify test and deployment, but it also enables a hardware agnostic software solution that moves seamlessly between cloud providers and into embedded environments.

“We transitioned many of our Intelligence Community programs to Agile almost a decade ago. The biggest benefit is we get continual feedback from our customer because they’re directly part of the development cycle. - that lets us deliver the most mission relevant new features or updates much faster.” – Steve Denker, Vice President of Intelligence and Analytic Development, Lockheed Martin Space 

The DevSecsOps Imperative

Enabled by cloud-based apps and automation, Lockheed Martin’s Software Factory delivers cybersecure mission capabilities that help our customers solve today and tomorrow’s toughest challenges. For over 20 years, we’ve been along the journey from agile to DevSecOps and now GitOps, working alongside our clients, turning real-time input into new valuable software capabilities quickly, and reducing downtime and costs.

Delivering software at the speed of relevance is just the start. With our DevSecOps approach, we bring your software capabilities to a new realm of cybersecurity from software build out to testing right through ground operations. This means more secure, faster software done right the first time.

  • Embedded security
  • Pull based system that meets customer needs
  •  Increased quality

In this environment of faster, leaner and more secure — now more than ever — it’s imperative for today’s software applications to be built on up-front, not backed-in or retro-fitted security. Our Software Factory employs a principled and collaborative approach to building security into threat modeling, risk assessment and automation of security tasks.

 “Cyber is at the heart of everything we do. Greater emphasis on software definition also means greater attention to cybersecurity. With the ability to do more complex tasks via our software comes the need to better protect our technology and take a threat-based approach to coding.” – Penny Compton, Vice President, Software Systems, Cyber and Operations, Lockheed Martin Space
Secure coding begins by identifying and addressing security threats and protecting assets from those threats throughout the development process. This is known as a threat-based approach to security. As with any development effort, we keep the user in mind in order to build a system that is right sized for the mission at hand.

“One of the critical pieces for me to succeed with DevSecOps was really to bring the Defense Industrial Base with us. We’re not going to be able to succeed if companies are not able to understand what we’re trying to push and also share widely all the best practices.” 

Nicolas Chaillan, Air Force Chief Software Officer

DevSecOps with GitOps is the Future

GitOps allows us to take frequent delivery with DevSecOps to the next level. Git began as a tool for software developers, but GitOps brings more value to software development. Our customers demand not only frequent updates, but also reliable systems with integrated Continuous Delivery pipelines that can seamlessly roll out changes and roll back failures. Our ability to meet these needs requires building self-healing into our systems. Achieving this kind of reliability and self-healing starts with reliable deployment. With DevSecOps practices such as Infrastructure as Code (IaC), we bring automation to deployment, providing both speed and repeatability. IaC also means that deployment automation can be tracked, reviewed, tested, and version controlled, just like the rest of the system software.

Now, with GitOps, we create the complete deployment loop, ensuring that our production system always reflects exactly the right version of the software. We verify that everything needed to build, test, and deploy an application is version controlled in a Git repository—including the version information of the application itself! In this way, GitOps makes configuration management a core part of DevSecOps, increasing the traceability and reliability of software components even in the most complex systems. This means the system is continually working on its own to achieve the desired state as recorded in the Git repository, automatically healing failures and rolling out new features.

The Proof is in Our Results

Software Dojos: Iterative Learning
Our growth-oriented mindset and commitment to continuous learning are key developmental pillars of the Lockheed Martin Software Factory. We have a continuous learning environment in our Software Dojos — or training facilities. With a globally diverse workforce, we strive to provide ways for our employees to upskill and master DecSecOps practices to commit to the most effective software delivery.

After developing initial skills, adoption and adherence of these best practices can grow over time. With common training grounds, our employees continue to leverage the best code across multiple domains.  

Air Space Integration - Multi-Domain Operations / Joint All-Domain Operations 
Multi-Domain Operations (MDO) is about connecting systems and building resilient networks that quickly connect critical data across multiple domains to predict, disrupt and paralyze our adversaries. Our software architects and developers are building supporting architectures with distributed data management and advancing the technologies that will define this next generation battlespace — all while using agile methodology to rapidly iterate.

By using DevSecOps, we can develop a common reference architecture that will eventually support a suite of common mission services, connectivity and interfaces using existing government open, standards-based architecture compliant with OMS and UCI.

Air
At Skunk Works®, software developers are partnering with customers to ensure existing aircraft can remain dominant in the future battlespace. Through a series of technology demonstrations, incremental increases in software capability are rapidly fielded to enable a connected network across air, ground, sea, space and cyber domains. Most recently, the team successfully connected an F-35, U-2 and a multi-domain ground station in a ground-breaking test demonstrating MDO and the secure distribution of sensitive information across multiple platforms.

Rapidly fielded software can save lives. Leveraging a rapid development, test and contracting approach, a joint government and industry team successfully fielded the Automatic Ground Collision Avoidance System onto Air Force F-35As seven years earlier than previously planned. The life-saving system was previously fielded and proven on F-16 aircraft.

 “Lockheed Martin has always upgraded software to make our aircraft safer and more capable. With DevSecOps – a more secure, automated and integrated approach to software development – we are increasing the rate at which we can respond to customer requests. That means pilots can bring more sophisticated capabilities to the field faster.” – Zach Combs, Sr. Manager of Air System DevSecOps, Lockheed Martin Aeronautics

Space
At our Space division, our Mission Solutions group has developed a full suite of software products called the Cognitive Mission System Products. These are Lockheed Martin’s next-generation, cyber-hardened and adaptable satellite ground solution that supports the DoD and Intelligence Community Space Enterprise, including:

  • Horizon (Command & Control)
  • Compass (Mission Planning)
  • TAISR (Tasking/Exploitation)
  •  BEAST (BMC2)
  • Nayru (Sensor Data Processing)

The architecture is based on a “micro-services” design approach — focusing on the deployment of only the necessary components for the mission. Our DevSecOps practices enhance speed and responsiveness while also increasing the quality of the final deliverable. This architecture also enables customers to deploy single components without carrying along large amounts of unneeded software, substantially reducing sustainment costs.  

Lockheed Martin  SmartSat TM is our new, software-defined satellite platform leveraging decades of our experience developing bus, payload and ground software. The common infrastructure concepts that have enabled application portability on the ground now allow for the optimization of mission processing across space and ground. In-orbit updates offer our customers even more flexibility. Learn more about SmartSat TM  here