Guidelines for Current and Prospective Students

• PhD Students Guidelines
• MS Students Guidelines

---

Current Post Docs

• Ranindya "Nanin" Paramitha

---

Current Students

• Sivana Hamer (PhD)
• Md Nazmul Haque (PhD)
• Alex Klevans (PhD)
• Jill Marley (PhD)
• Tanmay Pardeshi (PhD)
• Imranur Rahman (PhD)
• Mahzabin Tamanna (PhD (co-advised with Dr. Dominik Wermke))

---

Past Post Docs

• Saikath Bhattacharya — Milwaukee School of Engineering
• Nirav Ajmeri — University of Bristol
• Ozgur Kafali — University of Kent

---

Graduated PhD Students

• Nusrat Zahan (2025) , TBD
  Dissertation: Evaluation of Security Practices Towards the Enhancement of Software Supply Chain Security
• Setu Basak (2025) , Google
  Dissertation: Towards Risk-based Secret Management in Software Artifacts
• Sarah Elder (2024) , University of Virginia
  Dissertation: Applying Software Security Assessments in Realistic Contexts
• Md Rayhanur Rahman (2024) , University of Alabama
  Dissertation: Mining Actionable Intelligence on Attack Patterns and Proactive Defense from Natural Language Artifacts
• Nasif Imtiaz (2023) , Google
  Dissertation: Toward Secure Use of Open Source Dependencies
• Rezvan Mahdavi Hazeveh (2022) , Google
  Dissertation: A Comprehensive Model of Software Configuration
• Akond Rahman (2020) , Auburn University
  Dissertation: Anti-Patterns in Infrastructure as Code
• Christopher Theisen (2018) , Microsoft
  Dissertation: Risk-Based Attack Surface Approximation
• Patrick Morrison (2017) , IBM, Duke, North Carolina State University
  Dissertation: A Security Practices Evaluation Framework
• Maria Riaz (2016) , Google
  Dissertation: Inferring Security Requirements from Natural Language Requirements Artifacts
• Jason King (2016) , NCSU Teaching Assistant Professor
  Dissertation: Measuring the Forensic-Ability of User Activity Logs
• Rahul Pandita (2015) , GitHub
  Dissertation: Inferring Semantic Information from Natural Language Software Artifacts
• John Slankas (2015) , NCSU Laboratory for Analytical Sciences
  Dissertation: Implementing Database Access Control Policy from Unconstrained Natural Language Text
• Xusheng Xiao (2014) , Arizona State University
  Dissertation: Cooperative Testing and Analysis via Informed Decision Making
  Co-advised with Tao Xie
• JeeHyun Hwang (2014) , SAS, Cary, NC
  Dissertation: Improving the Quality of Security Policies
• Ben Smith (2012) , IBM
  Dissertation: Empirically Developing a Software Security Test Pattern Catalog Using a Grounded Theory Approach
• Andy Meneely (2011) , Rochester Institute of Technology
  Dissertation: Investigating the Relationship between Developer Collaboration and Software Security
• Yonghee Shin (2010) , Goldman Sachs
  Dissertation: Exploring Complexity Metrics as Indicators of Security Vulnerability
• Michael Gegick (2009)
  Dissertation: Using Automated Static Analyzer Alerts to Predict Vulnerability- and Attack-prone Components
• Sarah Smith Heckman (2009) , North Carolina State University Teaching Associate Professor
  Dissertation: Adaptive Model for Prioritizing Code-based Static Analysis Alerts
• Chih-wei (Dright) Ho (2008) , SAS, Cary, NC, USA
  Dissertation: Performance Requirements Improvement with an Evolutionary Model
• Lucas Layman (2008) , University of North Carolina -- Wilmington
  Dissertation: Information Needs of Developers for Program Comprehension during Software Maintenance Tasks
  Co-advised by Dr. Rob St. Amant
• Mark Sherriff (2007) , University of Virginia
  Dissertation: Analyzing Software Artifacts through Singular Value Decomposition to Guide Development Decisions
• Jiang Zheng (2007) , Geico
  Dissertation: In Regression Testing without Code
• Hema Srikanth (2005) , IBM, Silicon Valley, CA, USA
  Dissertation: Value-Driven System Level Test Case Prioritization
• Nachiappan Nagappan (2005) , Meta
  Dissertation: A Software Testing and Reliability Early Warning Metric Suite

---

Graduated MS Students

• Aishwarya Seth (2022) , Microsoft
  Thesis: Comparing Effectiveness and Efficiency of Interactive Application Security Testing (IAST) and Runtime Application Self-Protection (RASP) Tools
• Monica Metro (2020) , Analog Devices, Inc.
  Thesis: An Empirical Case Study to Compare the Effectiveness and Efficiency of Vulnerability Detection Techniques
• Andrew Austin (2011) , Genesys
  Thesis: Improving the Security of Electronic Health Record Systems
• Raza Abbas Syed (2011) , SAS, Cary, NC
  Thesis: Investigating Intermittent Software Failures
• Lauren Hayward Schaefer (2009) , SugarCRM
  Thesis: Students' Perception of Distributed Pair Programming in an Upper-Level Undergraduate Software Engineering Course
• Stephen Thomas (2007) , IBM Global Services, Austin, TX
  Thesis: Using Automated Fix Generation to Mitigate SQL Injection Vulnerabilities
• David Palmieri (2005) , IBM, Research Triangle Park, NC
  Thesis: Knowledge Management Through Pair Programming
• Prashant Baheti (2004) , Google, Silicon Valley, CA
  Thesis: Evaluating a Software Engineering Knowledge Base
• Michael Gegick (2004) , PhD Student, NCSU
  Thesis: Analyzing Security Attacks to Generate Signatures from Vulnerable Architectural Patterns
• Neha Katira (2004) , eWeb Designs, Raleigh, NC
  Thesis: Understanding the Compatibility of Pair Programmers
• Dylan Wilson (2004) , Becton Dickinson, Research Triangle Park, NC
  Thesis: An Empirical Study of the Tacit Knowledge Management Potential of Pair Programming
• Boby George (2002) , KenSci
  Thesis: Analysis and Quantification of Test Driven Development Approach
• Vinay Ramachandran (2002)
  Thesis: An Extreme Programming (XP) Process Analysis and Project Management Tool
• Anuja Shukla (2002) , Google
  Thesis: Pair Programming and the Factors Affecting Brooks' Law
• Harmanpreet Singh (2002) , WizIQ
  Thesis: Developing an E-learning Model for an Industrial Enterprise
• Kai Yang (2002) , Washington, DC
  Thesis: Pair Learning in Undergraduate Computer Science Education

---