search menu icon-carat-right cmu-wordmark

Richard A. Caralli

Software Engineering Institute

Richard Caralli is the Technical Director of the Cyber Enterprise and Workforce Management Directorate in the CERT® Program at Carnegie Mellon University's Software Engineering Institute. He is responsible for managing a research portfolio focused on improving the security and resilience of organizational assets, including people, information, technology, facilities, and infrastructures. Previously, Caralli was the lead architect of the CERT® Resilience Management Model, a process improvement-focused maturity model for managing operational resilience. Caralli has spent over 10 years developing and delivering various information security risk assessment, analysis, and management technologies for customers in the federal government and the private sector. Caralli is an adjunct instructor in CMU's Heinz College CIO Institute and the Information Networking Institute, lecturing in information security risk management and the economics of information security. Prior to joining CERT in 2001, Caralli was the manager for IT Audit at Consolidated Natural Gas (now Dominion Resources) and the project manager of CNG's global Y2K project.

Publications by Richard A. Caralli