Sasha Romanosky researches legal and economic issues regarding data security and consumer privacy. Specifically, he examines the impact of data breaches on firm and consumer behaviors, and the extent to which alternative policy interventions (ex ante regulation, information disclosure, and ex post liability) can play a part in reducing the externalities from data breaches.
Sasha holds a Ph.D. from the Heinz College of Information Systems and Public Policy, Carnegie Mellon University and a B.S. in electrical engineering from the University of Calgary. He was a security professional for over 10 years, predominantly within the financial and e-commerce industries at companies such as Morgan Stanley and eBay.
Sasha holds a CISSP certification and is the co-author of the Common Vulnerability Scoring System (CVSS), an open framework for scoring computer vulnerabilities. He is a member of CyLab and the Usable Security and Privacy laboratory (CUPS) at Carnegie Mellon University.
Read more about him at www.romanosky.net.