search menu icon-carat-right cmu-wordmark

Grace A. Lewis

Principal Researcher

Grace A. Lewis is the lead for the SEI Tactical and AI-enabled Systems initiative and the principal investigator for the research project titled "Characterizing and Detecting Mismatch in ML-Enabled Systems. Integrating ML/AI components into applications is severely limited not only by the fragility of these components and their algorithms, but also because of mismatches between components of ML-enabled systems. For example, if an ML model is trained on data that is different from data in the operational environment, field performance of the ML component will be dramatically reduced. Separate from software engineering considerations, the expertise needed to field an ML/AI component within a system frequently comes from outside software engineering. As a result, assumptions and even descriptive language used by practitioners from these different disciplines can exacerbate other challenges to integrating ML/AI components into larger systems. We are investigating classes of mismatches in ML/AI systems integration, to identify the implicit assumptions made by practitioners in different fields (data scientists, software engineers, operations staff) and find ways to communicate the appropriate information explicitly. To enable ML/AI components to be fielded in a meaningful way, we will need to understand the mismatches that exist and develop practices to mitigate the impacts of these mismatches

She is also a member of the following research projects related to IoT Security:

High-Assurance Software-Defined IoT Security
is creating an IoT security platform that operates, with high assurance, in a resilient and trustworthy manner even in the presence of a powerful and realistic attacker who can compromise IoT devices, control nodes, and other intermediaries. The software-defined IoT security platform is composed of (i) a high-assurance control node that monitors security-relevant events and alters the "security postures" of IoT devices to enforce specific policies; (ii) trusted data nodes that execute these security postures for each IoT device using "micro-middleboxes."
Authentication and Authorization of IoT Devices in Tactical Environments
is evaluating, adapting, and implementing an IETF proposal for authentication and authorization in constrained environments (ACE) such that it is resilient to high-priority threats of tactical environments (e.g., node impersonation and capture) that are currently not addressed in ACE. The SEI-ACE implementation is available on GitHub.

Grace also led the work in Tactical Computing and Communications (TCC) that developed tactical cloudlets. The tactical cloudlet software is available as KD-Cloudlet on GitHub.

Grace's current areas of expertise and interest include software engineering for AI/ML systems, IoT security, edge computing, software architecture (in particular the development of software architecture practices for systems that integrate emerging technologies), and software engineering in society.

Professional Background

Grace Lewis is a Principal Researcher at the Software Engineering Institute at Carnegie Mellon University.

Before joining the SEI, Grace was Chief of Systems Development for Icesi University, where she served as project manager and technical lead for the university-wide administrative systems. Other work experience includes Design and Development Engineer for the Electronics Division of Carvajal S.A. where she developed software for communication between PCs and electronic devices and embedded software on devices microcontrollers.

At the SEI she has worked in the areas of Commercial-of-the-Shelf (COTS) Based Systems, Legacy System Modernization, Systems of Systems Engineering, Service-Oriented Architecture (SOA), and Cloud Computing, where she has a vast number of publications.

Grace has teaching experience at the graduate and undergraduate level. She serves various roles in the IEEE Computer Society, including member of the Board of Governors for the 2020-2022 period. Grace also supports multiple activities related to promoting STEM and diversity in computer science and software engineering.

Grace hold a BSc in Software Systems Engineering from Icesi University in Cali, Colombia; a Post-Graduate Specialization in Business Administration from Icesi University; a Master of Software Engineering from Carnegie Mellon University in Pittsburgh, PA USA; and a PhD in Computer Science from Vrije Universiteit Amsterdam, Netherlands.



Grace Alexandra Lewis. Software Architecture Strategies for Cyber-Foraging Systems. June 2016. ISBN: 978-94-6295-483-0

Selected External Publications

SEI Publications


Additional Publications by Grace A. Lewis


Tactical and AI-Enabled Systems (TAS)

Characterizing and Detecting Mismatch in ML-Enabled Systems

High-Assurance Software-Defined IoT Security


  • PhD, Computer Science, Vrije Universiteit Amsterdam
  • MS, Software Engineering, Carnegie Mellon University
  • Post-Graduate Specialization, Business Administration, Icesi University
  • BS, Software Systems Engineering, Icesi University

Professional Memberships

  • IEEE Computer Society, Board of Governors (2020-2022)
  • IEEE Computer Society Technical & Conference Activities Board (T&C) Executive Committee, Treasurer
  • IEEE Technical Council on Software Engineering, Executive Vice Chair and Member-at-Large (2018 - 2020)
  • IEEE Senior Member
  • ABET Program Evaluator - Computing Accreditation Commission

Current Professional Activities

Conference Organization

Steering Committee Member
MobileSoft - IEEE/ACM International Conference on Mobile Software Engineering and Systems
Program Committee Co-Chair
ICSA 2021 - IEEE International Conference on Software Architecture - March 2021 - Stuttgart, Germany
Technical Briefings Co-Chair
ICSE 2021 - 43rd IEEE/ACM International Conference on Software Engineering - May 2021 - Madrid, Spain
Finance Chair
ICSE 2022 - 44th IEEE/ACM International Conference on Software Engineering - May 2022 - Pittsburgh, PA USA

Current Program Committees

ECSA 2020
14th European Conference on Software Architecture - September 14-18, 2020 - L'Aquila, Italy
ASE 2020
35th IEEE/ACM International Conference on Automated Software Engineering - September 21-25, 2020 - Melbourne, Australia
MobileSoft 2020
7th IEEE/ACM International Conference on Mobile Software Engineering and Systems - October 8-11, 2020 - Seoul, South Korea
ICSA 2020
IEEE International Conference on Software Architecture - November 2-6, 2020 - Salvador, Brazil
ICSA 2020 - Early Career Researchers Forum
IEEE International Conference on Software Architecture - November 2-6, 2020 - Salvador, Brazil
ESEC/FSE 2020 - Student Research Competition
ACM Joint European Software Engineering Conference and Symposium on the Foundations of Software Engineering - Student Research Competition - November 8-13, 2020 - Sacramento, CA USA
ICDCS 2020
40th IEEE International Conference on Distributed Computing Systems - Edge Computing track - December 2-4, 2020 - Singapore