Background
I'm a senior cybersecurity engineer at the MITRE Corporation, where I support and manage a range of projects alongside teams from multiple government agencies on diverse cybersecurity challenges. My work spans international cyber capacity building, risk assessment and management, threat modeling, adversary emulation, privacy engineering, and cyber deception.
Through my work, I serve as an interlocutor for engineers and policy professionals. I take technical solutions and translate them into policy, and vice versa. Check out the tabs below for more information on my work.
Professional Experience
MITRE Corporation
Cybersecurity Engineer (August 2021 - Present)
Contributing to cybersecurity projects for various U.S. government agencies, addressing a diverse set of security challenges across cybersecurity, risk assessment, and privacy research.
The Citizen Lab, University of Toronto
Cybersecurity Fellow (June 2020 - July 2021)
Researched transparency reporting practices of ISPs and Internet platforms in Canada, the US, Europe, and South America. Published reports on law enforcement data sharing policies of companies operating in these markets.
National Security Innovation Network
X-Force Fellow (June 2020 - August 2020)
Assessed the efficacy of the DoD SBIR/STTR programs' Commercialization Achievement Index for this US DoD program office that creates new communities of innovators to solve national security problems.
Electronic Frontier Foundation
Google Public Policy Fellow (June 2019 - August 2019)
Conducted research and published articles on state surveillance, online censorship, data privacy, and user protection. Coordinated with international partner organizations to analyze ISP consumer privacy practices. Drafted advocacy briefs for imprisoned bloggers and technologists.
Education
- M.A. in Law and Diplomacy - The Fletcher School, Tufts University (2020)
Specialization: Technology Policy & Security Studies
Thesis: A Comparative Analysis of Facial Recognition Technologies Used by Law Enforcement in Chicago and Nice, France
- B.A. in International Relations - Connecticut College (2016)
Minor in History
Selected Scholar: Toor Cummings Center for International Study and the Liberal Arts
Honors: Pi Sigma Alpha (National Honor Society for Political Science)
Accomplishments
The Atlantic Council - Cyber 9/12 Strategy Challenge
First Place in this cyber strategy competition responding to simulated cyber crisis (Fall 2019)
Judged three subsequent competitions (NYC 2023, Cape Town 2024, DC 2025)
PAMmie Award - Rising Star in Privacy and Cybersecurity
Recognized with a Privacy at MITRE (PAMmie) award for contributions to internally funded research and external projects, including the Department of Veterans Affairs' first privacy/cybersecurity assessment (2025)
Recognition - The MITRE Corporation
x2 Trailblazer Awards
Synergist Award
x9 Spark Awards
Skills & Credentials
Technical & Linguistic
- Cybersecurity Tools: Kali, Caldera, Wireshark, IDA, ELK Stack, SecurITree, ATT&CK Navigator
- Programming: C++, Python, HTML5, CSS, Javascript
- Data Analysis: STATA, RStudio, Gephi, NodeXL
- Threat Hunting
- Threat Modeling
- Social Network Analysis
- French: Advanced Low (ACTFL Certified)
- Spanish: Basic
Research
- Law and Policy Analysis
- Drafting Legislation
- International Security Frameworks
- Strategy Development
- Cyber Threat Intelligence
- Threat Assessment
- Risk Assessment
- Critical Infrastructure Assessment and Protection
- Project Management (Both Technical and Non-Technical Teams)
Publications
Threat Modeling with ATT&CK. Schechter, Tyler, Ben Ballard, Kyle Wallace, Courtney Hassenfeldt, and Tiffany Bergeron. CT0122, Center for Threat Informed Defense, MITRE Engenuity, 2024.
The PANOPTIC™ Privacy Threat Model. Katcher, Samantha, Ben Ballard, Cara Bloom, Katie Isaacson, Julie McEwen, Stuart Shapiro, Shelby Slotter, Mark Paes, and Ryan Xu. USENIX, 2024.
Privacy Threat Modeling for Everyone: MITRE PANOPTIC. Katcher, Samantha, Ben Ballard, Katie Isaacson, Julie McEwen, Stuart Shapiro, and Shelby Slotter. USENIX, 2024.
Privacy Threat Modeling Workshop Summary 2024. Ballard, Ben, et al. SOUPS Workshop on Privacy Threat Modeling, USENIX, 2024.
Privacy Threat Modeling Workshop Summary 2022. Bloom, Cara, Ben Ballard, et al. SOUPS Workshop on Privacy Threat Modeling, USENIX, 2022.
Mixed traditions: evaluating telecommunications transparency. Ballard, Ben, and Parsons, Christopher. Internet Policy Review 11.1 (2022). Web.
Pandemic Privacy: A Preliminary Analysis of Collection Technologies, Data Collection Laws, and Legislative Reform during COVID-19. Ballard, Ben et al. Scholaris, University of Toronto, 2021. Web.
IPANDETEC Rates Panama's ISPs in Its First "¿Quién Defiende Tus Datos?" Report. Ballard, Ben. Electronic Frontier Foundation, 13 Aug. 2019.
Chile Hears Who Has Their Data, Thanks to Years of "¿Quién Defiende Tus Datos?". Ballard, Ben. Electronic Frontier Foundation, 31 Jul. 2019.
Voter Data, Microtargeting, and the Digitization of Elections. Ballard, Ben. The Fletcher Forum of World Affairs, The Fletcher School of Law and Diplomacy, 14 Dec. 2018.
Presentations & Talks
USENIX PEPR 2025: Privacy Paradigms for Law Enforcement Response
Presented by Lukas Bundonis and Ben Ballard. Explores the role private data brokers play in the execution of law enforcement response requests and how that role has change with the advent of emerging technologies.
June 2025 | Santa Monica, CA
RSA Conference 2025: How to Create a Threat Modeling Process and use ATT&CK
Presented by Kyle Wallace and Adam Shostack. Kyle and Adam Hosted a workshop based on our work to teach attendees how to craft a threat model with MITRE ATT&CK using the framework developed by our team at CTID.
Sept 2024 | Danbury, CT
BSides CT 2024: Turn Your Threat Model into a Supermodel with ATT&CK
Hosted a workshop to teach attendees how to craft a threat model with MITRE ATT&CK using the framework developed by our team at CTID.
Sept 2024 | Danbury, CT
Securing Rural Hospitals: How to Build Cyber Resiliency with Limited Resources
Presented research on methods for building cyber resiliency in rural hospitals and clinics
June 2024 | Kearney, NE
TEDxTufts: Is Your Face Really Your Own?
A talk on facial recognition technology and its implications for privacy and civil liberties.Watch on YouTube
April 2020 | Tufts University, Medford, MA