The computer science professor offers tips to agencies using static analysis tools.

The government "would have to be very targeted with some specific goals in mind rather than try and open it up for all hacking activity," she said.

"We're witnessing the greatest information technology revolution and evolution in our history," said Ross, a fellow at the National Institute of Standards and Technology.

His advice to CISOs: “Standing up a good [software assurance] program is one of those things that will take an organization a long way to having a…