skip to main content

T3 Webinar Overview

A Framework for Connected Vehicle Privacy

Date: Tuesday, March 10, 2020
Time: 1:00 PM – 2:30 PM ET
Cost: All T3 webinars are free of charge.
PDH: 1.5 View PDH Policy

T3 and T3e Webinars are brought to you by the Intelligent Transportation Systems (ITS) Professional Capacity Building (PCB) Program of the U.S. Department of Transportation’s (USDOT) ITS Joint Program Office (JPO). References in this webinar to any specific commercial products, processes, or services, or the use of any trade, firm, or corporation name is for the information and convenience of the public, and does not constitute endorsement, recommendation, or favoring by the USDOT.


To support the emerging deployment of connected vehicle (CV) deployments across the U.S. and to understand better the privacy risks and mitigations associated with those deployments, ITS JPO sponsored the creation of a Privacy Risk Assessment Methodology (PRAM) for CV environments. The PRAM is a tool developed by the National Institute of Standards and Technology (NIST) that helps organizations analyze, assess, and prioritize privacy risks to determine how to respond and select appropriate solutions. ITS JPO worked with NIST, the National Cybersecurity Center of Excellence (NCCoE), and MITRE to customize the PRAM for use by CV deployers. The PRAM can help drive collaboration and communication between various components of an organization, including privacy, cybersecurity, business, and IT personnel. This webinar will explain the benefits of the PRAM and how to use it.

Target Audience

The target audience includes ITS and CV practitioners and researchers; State and local departments of transportation; and others with an interest in managing privacy risks in CV deployments.

Learning Objectives

The objectives of the webinar are to provide the audience with:

  • A better understanding of the benefits to using the PRAM and other tools.
  • Guidance on how to use the PRAM for CV deployments.
  • Some background on how ITS JPO developed the PRAM for CV environments and how it relates to other privacy tools.


Melissa Wong, Program Manager, Small Business Innovation Research (SBIR) Program, Volpe National Transportation Systems Center, USDOT
Melissa Wong Ms. Wong has 25 years of experience designing, deploying, analyzing, and managing complex research initiatives across the private and public sectors. Melissa joined the USDOT’s Volpe National Transportation Systems Center in 2013. Since then, she has served as the program manager of USDOT’s Small Business Innovation Research (SBIR) Program. In addition to her work on SBIR, Melissa supports the ITS JPO on many projects that involve connected and automated vehicles, cybersecurity, privacy, environmental applications, and strategic planning.

Before joining Volpe, Melissa was a Supervisory Survey Statistician at the Census Bureau. Prior to that, she was an associate at Market Metrics, a market research firm focused on the financial services sector; an analyst for New York City’s Office of Budget; and the Director of Research at The Institute for Children, Poverty, and Homelessness.

Melissa holds a BA in History from Macalester College and an MPA from Columbia University where she focused on economics and statistics.


Katie Boeckl, Privacy Risk Strategist, National Institute of Standards and Technology (NIST)
Katie Boeckl Ms. Boeckl works to advance international privacy standards, develops privacy risk management guidance, and manages the Privacy Engineering Collaboration Space. At NIST, Katie has helped develop the NIST Privacy Framework, served on the joint task force working group for NIST Special Publication (SP) 800-37, Revision 2: Guide for Applying the Risk Management Framework to Federal Information Systems, worked to implement the National Strategy for Trusted Identities in Cyberspace (NSTIC), and contributed to NIST SP 800-63, Revision 3: Digital Identity Guidelines.

Katie has a BA in English from the University of Maryland, College Park, where she specialized in technology through a digital cultures honors program.

Julie Snyder, Principal and Privacy Domain Capability Area Lead, MITRE National Cybersecurity Federally Funded Research and Development Center (FFRDC)
Julie Snyder Ms. Snyder is a Principal and the Privacy Domain Capability Area Lead for the MITRE National Cybersecurity Federally Funded Research and Development Center (FFRDC). She provides privacy and cybersecurity risk management support to defense, intelligence community, and civilian Federal agencies and critical infrastructure industries in the U.S. as well as cybersecurity readiness support to the Government of Japan for the Tokyo 2020 Olympics. In FY18-19, Julie played a leadership role for the NCCoE team that supported the Volpe Center in developing cybersecurity and privacy guidance for CV programs.

Julie has also supported the development of government security and privacy standards, including NIST SP 800-37, Rev 2, the anticipated NIST SP 800-53, Rev 5, and NIST SP 800-150, as well as the Committee on National Security Standards (CNSS) instruction for protecting personally identifiable information (PII) in information systems (CNSSI No. 1253 Privacy Overlays), and various Cybersecurity Framework (CSF) profiles. In recent years, Julie served as a speaker at NIST’s CSF workshops and facilitator at Privacy Framework workshops.

Julie earned her BBA in Information and Operations Management (MIS) from Texas A&M University, is a member of the International Association of Privacy Professionals (IAPP) Professional Faculty, and holds the Certificate in Investment Performance Measurement (CIPM), CIPP/G (U.S. Government), CIPP/US (U.S. private sector), and Certified Information Privacy Technologist (CIPT) certifications.

Stuart Shapiro, Principal Cyber Security and Privacy Engineer, MITRE National Cybersecurity FFRDC
Stuart Shapiro At MITRE, Mr. Shapiro has supported a wide range of security and privacy activities involving, among others, critical infrastructure protection, policy frameworks, risk and control assessment, and incident response. In particular, he has led multiple research and operational efforts in the areas of privacy engineering, privacy risk management, and privacy enhancing technologies (PETs) for government sponsors, including projects focused on connected vehicles and on de-identification. He has also held several academic positions and has taught courses on the history, politics, and ethics of information and communication technologies. His professional affiliations include the International Association of Privacy Professionals (IAPP), from which he holds CIPP/US and CIPP/G certifications, the Association for Computing Machinery (ACM), and ACM’s US Technology Policy Committee (USTPC, formerly USACM), of which he is the immediate past chair.


Technical Assistance is available to Federal, State and local transportation agencies through:

ITS Peer Program - The ITS Peer-to-Peer Program puts you in touch with technical experts or experienced peers.

ITS Help Line - The ITS Help Line provides technical support by email or telephone at 866-367-7487.


go to twitter    go to Facebook    go to Instagram    go to Linkedin    go to YouTube    go to email