Trey Herr
Dr. Trey Herr is Senior Director of the Cyber Statecraft Initiative, part of the Atlantic Council Technology Programs and assistant professor of Global Security and Policy at American University’s School of International Service. The CSI team works at the intersection of cybersecurity and geopolitics across conflict, cloud computing, supply chain policy, and more. Previously, Trey was a senior security strategist with Microsoft handling cybersecurity policy as well as a fellow with the Belfer Cybersecurity Project at Harvard Kennedy School and a non-resident fellow with the Hoover Institution at Stanford University. He holds a PhD in Political Science and BS in Musical Theatre and Political Science.
May 2022
Buying down risk: Software provenance and composition
SBoM adoption is picking up pace, aiming to provide better insight into and contractual leverage for software components—increased investment, standardization, and coordination can help fully develop SBoM use.
May 2022
Buying down risk: Cyber poverty line
Many enterprises face systemic challenges to their cybersecurity posture, from resource shortages to suboptimal risk attitudes, all of which weaken an ecosystem only as secure as its weakest links.
May 2022
Buying down risk: Cyber liability
Despite software's ubiquity and omnipresent vulnerability, conventions around liability for software producers are still informal and rarely enforced.
