Amplifying Your Privacy Program: Strategies for Success

Dan Costa is a technical manager in the CERT Division of the Carnegie Mellon Software Engineering Institute. Dan leads the research and engineering efforts of the CERT National Insider Threat Center, where he and his team conduct empirical research and develop solutions that enable organizations to effectively manage insider risks. Dan has extensive experience in evaluating insider threat programs, assessing organizations’ vulnerabilities to specific insider threats, and building insider programs for numerous government and industry organizations. Dan has over 12 years of professional experience in cybersecurity and software engineering, and is a Certified Information Systems Security Professional, an IEEE Certified Professional Software Engineering Master, and a member of the Board of Directors for Goodwill of Southwestern Pennsylvania.

Carrie Gardner is a member of the technical staff at Carnegie Mellon University’s Software Engineering Institute. Carrie researches, develops, and transitions evidence-based solutions to mitigate cyber risks. She principally focuses on insider threat risk management and applies a cross-domain lens of psychology, policy, and information science to assess and address the multidimensional risk posed by insiders. She is particularly known for her work in applying analytic techniques (e.g., machine learning) to measure and contextualize insider threat intelligence. Carrie enjoys both teaching and learning, and is back in school yet again, working toward her Master of Business Administration at Carnegie Mellon University’s Tepper School of Business.