Close Menu

Josephine Wolff

Associate Professor of Cybersecurity Policy

Josephine Wolff

Associate Professor of Cybersecurity Policy
160 Packard Ave.
Headshot of Assistant Professor of Cybersecurity Policy at the Fletcher School, Josephine Wolff
  • Ph.D., Massachusetts Institute of Technology
  • M.S., Massachusetts Institute of Technology
  • A.B., Princeton University

Josephine Wolff is an associate professor of cybersecurity policy and has been associated with The Fletcher School at Tufts University since 2019. Her research interests include international Internet governance, cyber-insurance, security responsibilities and liability of online intermediaries, government-funded programs for cybersecurity education and workforce development, and the legal, political, and economic consequences of cybersecurity incidents. Her book "You'll See This Message When It Is Too Late: The Legal and Economic Aftermath of Cybersecurity Breaches" was published by MIT Press in 2018. Her writing on cybersecurity has also appeared in Slate, The New York Times, The Washington Post, The Atlantic, and Wired. Prior to joining Fletcher, she was an assistant professor of public policy at the Rochester Institute of Technology and a fellow at the New America Cybersecurity Initiative and Harvard's Berkman Klein Center for Internet & Society. She received received a Ph.D. in Engineering Systems and M.S. in Technology and Policy from MIT, and an A.B. in mathematics from Princeton. As a student, she also spent time at Microsoft, the Center for Democracy and Technology, the White House Office of Science and Technology Policy, and the Department of Defense.

Areas of expertise
Science & Technology Policy
Research Interests

Cybersecurity policy, economics of information security, cyber-insurance, data breaches and liability.



“You’ll See This Message When It Is Too Late: The Legal and Economic Aftermath of Cybersecurity Breaches." MIT Press, 2018.


"When Cyber Threats Loom, What Can State and Local Governments Do?" Georgetown Journal of International Affairs, Fall 2018, vol. XIX, pp. 67-75, (with William Lehr).

"What We Talk About When We Talk About Cybersecurity: Security in Internet Governance Debates," Internet Policy Review, vol. 5, no. 3, 2016.

"Perverse Effects in Defense of Computer Systems," Journal of Management Information Systems, vol. 33, no. 2, pp. 597-620, 2016.