We are the UK’s first academic Research Institute to focus on understanding the overall security of organisations, including their constituent technology, people, and processes.

News • Events • Opportunities

We’re hiring: RISCS Communications Officer

We are recruiting for a Communications Officer to join us on a temporary basis from 10th January to 31st May 2022 in the first instance. (This may be extended further subject to approvals). The successful applicant...

Survey: Improving resilience to ransomware

As part of her RISCS Fellowship on Cybercrime, Dr Maria Bada (QMUL) is investigating organisational factors and decision making processes which aim to prevent, detect and/or mitigate ransomware attacks. The...

New publication: Remote Working and (In)Security

We are pleased to release a new RISCS briefing exploring the impact of the COVID-19 pandemic on cyber security of organisations, created as part of the RISCS Fellowship in Leadership and Culture. Remote Working and...

Research Themes

Our Research is organised by Themes.

Each Theme has a RISCS Fellow leading on it, and most have past
RISCS-funded Research Projects connected to it.

Cybercrime

Understanding how people behave, both individually and in groups, is a central research theme for the Socio-Technical Research Group, RISCS’ partner in the NCSC. But this is mostly focused on those people whose intentions are non-malicious and who simply want to do a good job.

Digital Responsibility

As we digitise and connect more of our products and services, we need to ensure that cyber security remains inclusive and that everyone is more secure. This theme will include existing research areas such as digital inclusion, digital disadvantage, digital accessibility, and trust, through a cyber security lens.

Leadership and Culture

Cyber security is central to the health and resilience of any organisation and this places it firmly within the responsibility of the Board. But it also means that enabling and facilitating good cyber security practices spans the whole of an organisation and is not simply the remit of the IT or technical teams.

Anticipation and Futures Literacy

How we, as individuals, organisations, and societies across different time periods, have approached thinking about the future has varied greatly. Today, when we think about predicting the future, we can easily dismiss it as the realm of crystal balls.

Secure Development Practices

Secure by Design is extremely high on HMG’s list of priorities, whether that is to facilitate secure by default IoT commodity products for the consumer or reducing online harm by ensuring that companies have the right processes and systems in place to fulfil their obligations.

International Dimensions

The world is becoming increasingly globalised, and technology more and more defining of our social and political lives. At the intersection of these issues lie the International Dimensions of Cyber Security – a wide topic encompassing anything from cyber diplomacy to cyber regulation – which various aspects of are a top priority for stakeholders within both the business world and the government.

Quantification and Cyber Risk

How do we enable the cyber security community to use quantification to best effect in understanding cyber risk and enabling effective cyber security decision-making? What further tools, support or research is needed to mature this theme to the benefit of the whole cyber security community? Can quantification play a role in bridging the gap between cyber risk and other areas of risk such as safety?