Staff Profile

Nancy R. Mead

Nancy R. Mead

SEI Fellow, Principal Researcher

Key Responsibilities

Current responsibilities include technical leadership in survivable systems engineering and software assurance education, research in security requirements engineering, and faculty member at CMU.

Professional Background

Nancy R. Mead is a Fellow and Principal Researcher at the Software Engineering Institute (SEI).  Mead is an Adjunct Professor of Software Engineering at Carnegie Mellon University.  She is currently involved in the study of security requirements engineering and the development of software assurance curricula.  She also served as director of education for the SEI from 1991 to 1994. Her research interests are in the areas of software security, software requirements engineering, and software architectures. 
Prior to joining the SEI, Mead was a senior technical staff member at IBM Federal Systems, where she spent most of her career in the development and management of large real-time systems.  She also worked in IBM's software engineering technology area and managed IBM Federal Systems' software engineering education department.  She has developed and taught numerous courses on software engineering topics, both at universities and in professional education courses.

Mead has more than 150 publications and invited presentations, and has a biographical citation in Who’s Who in America. She is a Fellow of the Institute of Electrical and Electronic Engineers, Inc. (IEEE) and the IEEE Computer Society, and a Distinguished Member of the ACM. Mead serves on the Editorial Boards for the International Journal on Secure Software Engineering and the Requirements Engineering Journal, and is a member of numerous advisory boards and committees.

Mead received her PhD in mathematics from the Polytechnic Institute of New York, and received a BA and an MS in mathematics from New York University.

Publications (recent or significant)

  • Software Security Engineering: A Guide for Project Managers, Addison Wesley, 2008.
  • Identifying Security Requirements Using the SQUARE Method, Book Chapter, Integrating Security and Software Engineering, Editors Mouratidis and Giorgini, IGI Global, pp. 44-69, 2007.
  • Industrial Input to the Computing Curriculum, Book Chapter, Effective Learning & Teaching in Computing, Editors Alastair Irons & Sylvia Alexander, Routledge Falmer, New York, N.Y. pp. 123-135, 2004.
  • Software Assurance Competency Model (CMU/SEI-2013-TN-004). Software Engineering Institute, Carnegie Mellon University, 2013.
  • Software Assurance Curriculum Project Volume I: Master of Software Assurance Reference Curriculum (CMU/SEI-2010-TR-005). Software Engineering Institute, Carnegie Mellon University, 2010
  • Mead, N.R., Hough, E., Stehney, T. Security Quality Requirements Engineering (SQUARE) Methodology, (CMU/SEI-2005-TR-009). Software Engineering Institute, Carnegie Mellon University, 2005. http://www.sei.cmu.edu/publications/documents/05.reports/05tr009.html.
  • Making the Business Case for Software Assurance, (CMU/SEI-2009-SR-001) Software Engineering Institute, Carnegie Mellon University, April, 2009


Cyber Security Foundations 


  • PhD, Mathematics, Polytechnic Institute of New York
  • MS, Mathematics, New York University
  • BA, Mathematics, New York University

Professional Memberships

  • ACM
  • IEEE

Editorial Boards


Contact Nancy R. Mead