U.S. Flag Official website of the Department of Homeland Security

Note: This page is part of the us-cert.gov archive.This document is part of the US-CERT website archive. These documents are no longer updated and may contain outdated information. Links may also no longer function. Please contact info@us-cert.gov if you have any questions about the US-CERT website archive.


Julia H. Allen

Julia H. Allen is a senior member of the technical staff within the CERT® Program at the Software Engineering Institute (SEI), a unit of Carnegie Mellon University in Pittsburgh, PA. In addition to her work in software security and assurance, Allen is engaged in developing and transitioning executive outreach programs in enterprise security and governance. Prior to this technical assignment, Allen served as acting Director of the SEI for an interim period of six months, as well as Deputy Director/Chief Operating Officer for three years. She formalized the SEI's relationship with industry organizations and created the Customer Relations team.

Before joining the SEI, she was a vice president at Science Applications International Corporation, responsible for starting a new software division specializing in embedded systems software. Allen led SAIC's initial efforts in software process improvement. Allen also worked at TRW (now Northrop Grumman) tackling a range of assignments from system integration, test, and field site support to managing major software development programs.

Her degrees include a Bachelor of Science in Computer Science from the University of Michigan and an MS in Electrical Engineering from the University of Southern California. She is the author of The CERT Guide to System and Network Security Practices (Addison-Wesley, June 2001) and the CERT Podcast Series: Security for Business Leaders (2006-2009). She is a co-author of Software Security Engineering: A Guide for Project Managers (Addison-Wesley, May 2008).


Namesort descending Content Areas
"Plan, Do, Check, Act" Best Practices/Deployment and Operations
Deploying and Operating Secure Systems Best Practices/Deployment and Operations
Deployment and Operations References Best Practices/Deployment and Operations
Development of a Master of Software Assurance Reference Curriculum Knowledge/Software Assurance Education
Framing Security as a Governance and Management Concern: Risks and Opportunities Best Practices/Governance and Management
Governance and Management References Best Practices/Governance and Management
How Much Security Is Enough? Best Practices/Governance and Management
Integrating Security and IT Best Practices/Deployment and Operations
Maturity of Practice Best Practices/Governance and Management
Navigating the Security Practice Landscape Best Practices/Deployment and Operations
Risk-Centered Practices Best Practices/Deployment and Operations
Security Is Not Just a Technical Issue Best Practices/Governance and Management
Software Security Engineering: A Guide for Project Managers Best Practices/Project Management
Back to Top