Alessandro Palma
Postdoctoral Researcher
SAPIENZA University of Rome
I am a postdoctoral researcher at Sapienza University of Rome, Italy. My research interests include automated and quantifiable cyber risk assessment, both from a technical perspective, researching attack modeling and graphs, and from a process perspective, providing decision support for security operations and how they can be integrated into autonomic cybersecurity (e.g., self-protecting systems).
I got a Ph.D. with Laude in Engineering in Computer Science at Sapienza University of Rome, Italy, where I also received my MSc in Engineering in Computer Science. In 2022 I worked as a research fellow with CINI Cyber Security National Laboratory on Open Source INTelligence (OSINT) topics.
During my Ph.D., I was a visiting scholar at Télécom SudParis - Institut Polytechnique de Paris.
CONTACTS
Email: palma@diag.uniroma1.it
Dipartimento di Ingegneria Informatica, Automatica e Gestionale "Antonio Ruberti" (DIAG)
Sapienza Università di Roma
Via Ariosto 25, 00185, Roma (Italy)
Room: B112
NEWS
On January 21, 2025, I received my Ph.D. in Engineering in Computer Science with Laude with the thesis entitled "Lowering the Boundaries of Information Security Governance: a Multi-Perspective Quantitative Viewpoint" 🎓
The paper "SPARQ: A QoS-Aware Framework for Mitigating Cyber Risk in Self-Protecting IoT Systems" with Houssam Hajj Hassan and Georgios Bouloukakis has been accepted to SEAMS 2025
The paper "SHIELD: Assessing Security-by-Design in Federated Data Spaces Using Attack Graphs" with Nikolaos Papadakis, Georgios Bouloukakis, Joaquin Garcia-Alfaro, Mattia Sospetti, and Kostas Magoutis has been accepted to SAC 2025
We won the best paper runner-up award from ESORICS 2024 with the paper "It is Time To Steer: A Scalable Framework for Analysis-Driven Attack Graph Generation" 🏆
The paper "How to assess measurement capabilities of a security monitoring infrastructure and plan investment through a graph-based approach" with Andrea Sorrentino and Silvia Bonomi has been published in Elsevier Expert Systems with Applications