Dr. Stuart Shapiro
Principal Information Privacy and Security Engineer, MITRE Corporation

Dr. Stuart Shapiro

Stuart S. Shapiro is a Principal Information Privacy and Security Engineer and a member of the Privacy Community of Practice at the MITRE Corporation, a not-for-profit company performing technical research and consulting primarily for the U.S. government. At MITRE he has supported a wide range of security and privacy activities involving, among others, critical infrastructure protection, policy frameworks, risk and control assessment, and incident response. In particular, he has led multiple research and operational efforts in the areas of  privacy engineering, privacy risk management, and privacy-enhancing technologies (PETs) for several government sponsors. He has written and presented on privacy engineering, privacy risk modeling, and PETs in numerous forums and participates in multiple privacy-relevant standards efforts, including the OASIS PMRM and PbD-SE Technical Committees and the NSTIC Identity Ecosystem Steering Group.

Dr. Shapiro was co-editor of the first edition of U.S. Government Privacy: Essential Policies and Practices for Privacy Professionals (International Association of Privacy Professionals, 2009). Other recent publications include “Privacy By Design:
Moving from Art to Practice” (Communications of the ACM, 2010) and “Situating Anonymization Within a Privacy Risk Model” (IEEE International Systems Conference, 2012). Recent presentations include A Primer on Privacy Engineering (workshop co-presented at the 2013 IAPP Global Summit) and The State and Evolution of Privacy by Design (tutorial at the 2012 ACM Computer and Communications Security Conference). Among his professional affiliations are the International Association of Privacy Professionals (IAPP), the Advisory Board of the Ponemon Institute’s Responsible Information Management Council, and the U.S. Public Policy Council of the Association for Computing Machinery (USACM) where he currently serves as Co-Vice-Chair.