Principal Engineer / Senior Cybersecurity Analyst
Christopher Alberts is a Principal Engineer / Senior Cybersecurity Analyst in the CERT® Division at the Software Engineering Institute, where he leads applied research projects in software assurance and cybersecurity. He is currently leading two projects: (1) Security Engineering Risk Analysis (SERA) and (2) Software Assurance Framework (SAF). The SERA Method defines a systematic approach for analyzing complex security risks in software-reliant systems and systems of systems across the lifecycle and supply chain. The SAF is a compilation of software assurance practices that an organization can use to assess its current capability for acquiring and engineering secure software-reliant systems and chart a course for improvement. Prior to his current projects, Alberts developed the OCTAVE® approach for evaluating information security risks and the Continuous Risk Management method for managing software development project risks. His research interests include risk analysis, measurement, and assessment. Alberts has co-authored two books, Managing Information Security Risks: The OCTAVE Approach (Addison-Wesley 2002) and the Continuous Risk Management Guidebook (Software Engineering Institute 1996). He has also published over 50 technical reports and articles. Alberts has BS and ME degrees in engineering from Carnegie Mellon University. Prior to the SEI, he worked at Carnegie Mellon Research Institute and AT&T Bell Laboratories.