We are the UK’s first academic Research Institute to focus on understanding the overall security of organisations, including their constituent technology, people, and processes.

News • Events • Opportunities

Jason’s experience of RISCS ECR away day…

RISCS held an away day for early career researchers (ECRs) in March 2022. Participants were nominated by our community to bring us together after two years of working remotely. The event aimed to provide a platform for...

New edition of the RISCS Project Catalogue

We are pleased to announce the release of the updated June 2022 version of the RISCS Project Catalogue! The RISCS project catalogue is intended to be a succinct summary of all previous RISCS-funded and affiliated...

EU Cyber Policy Workshop Report

Future directions in EU cyber security: implications for UK policy and strategy RISCS held an online policy workshop on 13th January 2022 with 30 participants from Government and academia as part of the our...

Research Themes

Our Research is organised by Themes.

Each Theme has a RISCS Fellow leading on it, and most have past
RISCS-funded Research Projects connected to it.


Understanding how people behave, both individually and in groups, is a central research theme for the Socio-Technical Research Group, RISCS’ partner in the NCSC. But this is mostly focused on those people whose intentions are non-malicious and who simply want to do a good job.

Digital Responsibility

As we digitise and connect more of our products and services, we need to ensure that cyber security remains inclusive and that everyone is more secure. This theme will include existing research areas such as digital inclusion, digital disadvantage, digital accessibility, and trust, through a cyber security lens.

Leadership and Culture

Cyber security is central to the health and resilience of any organisation and this places it firmly within the responsibility of the Board. But it also means that enabling and facilitating good cyber security practices spans the whole of an organisation and is not simply the remit of the IT or technical teams.


How we, as individuals, organisations, and societies across different time periods, have approached thinking about the future has varied greatly. Today, when we think about predicting the future, we can easily dismiss it as the realm of crystal balls.

Secure Development Practices

Secure by Design is extremely high on HMG’s list of priorities, whether that is to facilitate secure by default IoT commodity products for the consumer or reducing online harm by ensuring that companies have the right processes and systems in place to fulfil their obligations.

International Dimensions

The world is becoming increasingly globalised, and technology more and more defining of our social and political lives. At the intersection of these issues lie the International Dimensions of Cyber Security – a wide topic encompassing anything from cyber diplomacy to cyber regulation – which various aspects of are a top priority for stakeholders within both the business world and the government.

Quantification and Cyber Risk

How do we enable the cyber security community to use quantification to best effect in understanding cyber risk and enabling effective cyber security decision-making? What further tools, support or research is needed to mature this theme to the benefit of the whole cyber security community? Can quantification play a role in bridging the gap between cyber risk and other areas of risk such as safety?