We are the UK’s first academic Research Institute to focus on understanding the overall security of organisations, including their constituent technology, people, and processes.
News • Events • Opportunities
Jason’s experience of RISCS ECR away day…
RISCS held an away day for early career researchers (ECRs) in March 2022. Participants were nominated by our community to bring us together after two years of working remotely. The event aimed to provide a platform for...
New edition of the RISCS Project Catalogue
We are pleased to announce the release of the updated June 2022 version of the RISCS Project Catalogue! The RISCS project catalogue is intended to be a succinct summary of all previous RISCS-funded and affiliated...
Call for Industry Participation! – Ransomware Workshop
Thursday 26th May, 14:00 – 16:00 (BST, online via MS Teams)Calling all industry representatives working in cyber security and ransomware attacks! RISCS is holding a workshop on 26th of May 2022 to bring together...
A Day in the Life of a Sociotechnical Researcher in the NCSC…
by Lee C4Lee C4 is a researcher in the National Cyber Security Centre (NCSC) working in the Sociotechnical Security Group (StSG). He is the NCSC theme lead for Digital Responsibility and co-theme lead for Cyber Risk...
Call for Presentations: EU Conference on Social Networks (EUSN 2022)
The 6th European Conference on Social Networks (EUSN 2022) Organised Session 16: Social Cybersecurity: Convergence of Social Network Analysis in Cyber Srinidhi Vasudevan, University of GreenwichAnna Piazza, University...
EU Cyber Policy Workshop Report
Future directions in EU cyber security: implications for UK policy and strategy RISCS held an online policy workshop on 13th January 2022 with 30 participants from Government and academia as part of the our...
Research Themes
Our Research is organised by Themes.
Each Theme has a RISCS Fellow leading on it, and most have past
RISCS-funded Research Projects connected to it.
Cybercrime
Understanding how people behave, both individually and in groups, is a central research theme for the Socio-Technical Research Group, RISCS’ partner in the NCSC. But this is mostly focused on those people whose intentions are non-malicious and who simply want to do a good job.
Digital Responsibility
As we digitise and connect more of our products and services, we need to ensure that cyber security remains inclusive and that everyone is more secure. This theme will include existing research areas such as digital inclusion, digital disadvantage, digital accessibility, and trust, through a cyber security lens.
Leadership and Culture
Cyber security is central to the health and resilience of any organisation and this places it firmly within the responsibility of the Board. But it also means that enabling and facilitating good cyber security practices spans the whole of an organisation and is not simply the remit of the IT or technical teams.
Anticipation
How we, as individuals, organisations, and societies across different time periods, have approached thinking about the future has varied greatly. Today, when we think about predicting the future, we can easily dismiss it as the realm of crystal balls.
Secure Development Practices
Secure by Design is extremely high on HMG’s list of priorities, whether that is to facilitate secure by default IoT commodity products for the consumer or reducing online harm by ensuring that companies have the right processes and systems in place to fulfil their obligations.
International Dimensions
The world is becoming increasingly globalised, and technology more and more defining of our social and political lives. At the intersection of these issues lie the International Dimensions of Cyber Security – a wide topic encompassing anything from cyber diplomacy to cyber regulation – which various aspects of are a top priority for stakeholders within both the business world and the government.
Quantification and Cyber Risk
How do we enable the cyber security community to use quantification to best effect in understanding cyber risk and enabling effective cyber security decision-making? What further tools, support or research is needed to mature this theme to the benefit of the whole cyber security community? Can quantification play a role in bridging the gap between cyber risk and other areas of risk such as safety?