We are the UK’s first academic Research Institute to focus on understanding the overall security of organisations, including their constituent technology, people, and processes.

News • Events • Opportunities

Call to Action: RISCS Prize Competition Entrants

Thursday 20th January 2022 Call to Action for all PhD students and early career researchers looking to enter the RISCS Prize Competition: Optimizing the use of UK Government survey data on cyber security first...

New edition of the RISCS Project Catalogue

We are pleased to share with you the December 2021 version of the RISCS Project Catalogue, as well as the accompanying Catalogue Annexe, consisting of a list of publications resulting from the listed projects. The...

Survey: Improving resilience to ransomware

As part of her RISCS Fellowship on Cybercrime, Dr Maria Bada (QMUL) is investigating organisational factors and decision making processes which aim to prevent, detect and/or mitigate ransomware attacks. The...

Research Themes

Our Research is organised by Themes.

Each Theme has a RISCS Fellow leading on it, and most have past
RISCS-funded Research Projects connected to it.


Understanding how people behave, both individually and in groups, is a central research theme for the Socio-Technical Research Group, RISCS’ partner in the NCSC. But this is mostly focused on those people whose intentions are non-malicious and who simply want to do a good job.

Digital Responsibility

As we digitise and connect more of our products and services, we need to ensure that cyber security remains inclusive and that everyone is more secure. This theme will include existing research areas such as digital inclusion, digital disadvantage, digital accessibility, and trust, through a cyber security lens.

Leadership and Culture

Cyber security is central to the health and resilience of any organisation and this places it firmly within the responsibility of the Board. But it also means that enabling and facilitating good cyber security practices spans the whole of an organisation and is not simply the remit of the IT or technical teams.

Anticipation and Futures Literacy

How we, as individuals, organisations, and societies across different time periods, have approached thinking about the future has varied greatly. Today, when we think about predicting the future, we can easily dismiss it as the realm of crystal balls.

Secure Development Practices

Secure by Design is extremely high on HMG’s list of priorities, whether that is to facilitate secure by default IoT commodity products for the consumer or reducing online harm by ensuring that companies have the right processes and systems in place to fulfil their obligations.

International Dimensions

The world is becoming increasingly globalised, and technology more and more defining of our social and political lives. At the intersection of these issues lie the International Dimensions of Cyber Security – a wide topic encompassing anything from cyber diplomacy to cyber regulation – which various aspects of are a top priority for stakeholders within both the business world and the government.

Quantification and Cyber Risk

How do we enable the cyber security community to use quantification to best effect in understanding cyber risk and enabling effective cyber security decision-making? What further tools, support or research is needed to mature this theme to the benefit of the whole cyber security community? Can quantification play a role in bridging the gap between cyber risk and other areas of risk such as safety?