Associate Policy Researcher
Sasha Romanosky researches topics in the economics of security and privacy, information policy, applied microeconomics, and law & economics. He is an associate policy researcher at the RAND Corporation. Sasha holds a PhD in Public Policy and Management from Carnegie Mellon University and a BS in Electrical Engineering from the University of Calgary, Canada. He has published in the Journal of Policy Analysis and Management, Journal of Empirical Legal Studies, the Berkeley Technology Law Journal, coauthored two book chapters and has written other works on information security. Sasha was a Microsoft research fellow in the Information Law Institute at New York University, and was a security professional for over 10 years within the financial and e-commerce industries at companies such as Morgan Stanley and eBay. Sasha holds a CISSP certification and is co-author of the Common Vulnerability Scoring System (CVSS), an open standard for scoring computer vulnerabilities.