RISCS Project Catalogue

The RISCS Project Catalogue is a key publication intended to be a succinct summary of all completed and ongoing projects. It is developed and maintained by the RISCS Policy Adviser, and as such it is tailored for a policy audience. Nonetheless, the content will be of relevance to industry, academic, and general-interest readers.

 

You can download the most recent version of the Catalogue here.

UK Cyber Security Policy Making Interactive Map

This interactive map attempts to represent how cyber security is organised within the UK Government. It consists approximately 2400 nodes representing data points, along with 2000 active links out to websites.

 

You can find out more and access the map here.

Featured Publications

RISCS Anticipation and Futures Literacy – Policy Workshop Report

RISCS held an online policy workshop on 14th July 2021 with 20 participants from Government, academia, and the wider community as part of the RISCS Anticipation theme led by Fellow Professor Genevieve Liveley. The aim of this session was to generate ideas for the...

Optimising the use of UK Government survey data on cyber security – new publication and competition

The Research Institute for Sociotechnical Cyber Security (RISCS) held an online policy workshop on 22nd July 2021 with 28 participants from Government, academia, law enforcement and the cyber sector as part of the Quantification and Cyber Risk Fellowship theme led by...

New publication: Remote Working and (In)Security

We are pleased to release a new RISCS briefing exploring the impact of the COVID-19 pandemic on cyber security of organisations, created as part of the RISCS Fellowship in Leadership and Culture. Remote Working and (In)SecurityDownload Already in March 2020, it was...

Cybersecurity Investment Decision-Making: Best Practice Guide for SMEs

A new publication to guide Small and Medium-sized Enterprises (SMEs) has been published as an outcome of a RISCS-funded project Economic Metrics for Supporting Cyber Security Investment Decision-Making. There are 6 million Small and Medium-Sized Enterprises (SMEs) in...

Remote Working and Cyber Security – Literature Review

While various research strands have started exploring the impact of remote working on employees’ mental health and productivity, there is little insight on how approaches to cyber risk and resilience have been impacted through the shift. Our research objectives focus...

Emerging Insights: Cyber Security Incentives and the Role of Cyber Insurance

Flo Greatrix, RISCS Policy Impact Officer A new report by James Sullivan (RUSI) and Jason Nurse (University of Kent) has been recently published as part of their RISCS Funded project: ‘Incentivising cybersecurity through cyber insurance’. It considers the...

New RISCS Policy briefing: a framework to assess evidence quality in cyber security policy making

We are thrilled to share our new policy briefing based on the Evaluating Cyber Security Evidence for Policy Advice” (ECSEPA) project led by Professor Madeline Carr (UCL) and Professor Siraj Shaikh (Coventry University). Civil servants across the UK Government are...

Cyber Insurance and Risk Management: Challenges and Opportunities

UCL gates in March 2020 A new playground for underwriters? Corporate boards the world over are scrambling to address the unique challenges of the COVID-19 global pandemic – particularly the impact of social distancing. In addition to the obvious problems this causes...

Talking about Security with Professional Developers

Tamara Lopez, Helen Sharp, Thein Tun, Arosha Bandara (School of Computing & Communications, The Open University) and Mark Levine (Department of Psychology, University of Exeter) and Bashar Nuseibeh (Lero – The Irish Software Research Centre, University of Limerick).

An Anatomy of Security Conversations in Stack Overflow

Abstract As software-intensive digital systems become an integral part of modern life, ensuring that these systems are developed to satisfy security and privacy requirements is an increasingly important societal concern. This paper examines how secure coding practice...

All Publications

RISCS Anticipation and Futures Literacy – Policy Workshop Report

RISCS held an online policy workshop on 14th July 2021 with 20 participants from Government, academia, and the wider community as part of the RISCS Anticipation theme led by Fellow Professor Genevieve Liveley. The aim of this session was to generate ideas for the...

New publication: Remote Working and (In)Security

We are pleased to release a new RISCS briefing exploring the impact of the COVID-19 pandemic on cyber security of organisations, created as part of the RISCS Fellowship in Leadership and Culture. Remote Working and (In)SecurityDownload Already in March 2020, it was...

New RISCS Briefing: Online Victimisation

The impact on victims and implications for cybercrime prevention and response As part of her RISCS Fellowship in Cybercrime, Dr Maria Bada has taken particular interest in the impact of online crime on victims, and how such impact differs from that felt by victims of...

Remote Working and Cyber Security – Literature Review

While various research strands have started exploring the impact of remote working on employees’ mental health and productivity, there is little insight on how approaches to cyber risk and resilience have been impacted through the shift. Our research objectives focus...

Cyber Insurance and Risk Management: Challenges and Opportunities

UCL gates in March 2020 A new playground for underwriters? Corporate boards the world over are scrambling to address the unique challenges of the COVID-19 global pandemic – particularly the impact of social distancing. In addition to the obvious problems this causes...

Talking about Security with Professional Developers

Tamara Lopez, Helen Sharp, Thein Tun, Arosha Bandara (School of Computing & Communications, The Open University) and Mark Levine (Department of Psychology, University of Exeter) and Bashar Nuseibeh (Lero – The Irish Software Research Centre, University of Limerick).

RISCS Annual Report 2016

The RISCS Annual Report 2016 was released at the UK Cyber Security Research Institutes Conference in October 2016, and is available to download.

RISCS Annual Report 2017

The RISCS Annual Report 2017 was released at the UK Cyber Security Research Institutes Conference in October 2017, and is available to download here (opens PDF)

RISCS Annual Report 2018

The 2018 RISCS Annual Report was released at the UK Cyber Security Research Institutes Conference in October 2018, and is available to download here (opens PDF).

RISCS Annual Report 2019

We are delighted to present the 2019 RISCS Annual Report. The Report brings you progress updates of the RISCS projects, informs of recent changes at RISCS and shares our plans for 2020. Download the report here.

A Decision Making Model of Behavior in Information Security

Iryna Yevseyeva, Charles Morisset, Thomas Groß, Aad van Moorsel Abstract Information security decisions typically involve a trade-off between security and productivity. In practical settings, it is often the human user who is best positioned to make this trade-off...

A Formal Model for Soft Enforcement: Influencing the Decision-Maker

Charles Morisset, Iryna Yevseyeva, Thomas Groß, Aad van Moorsel Abstract We propose in this paper a formal model for soft enforcement, where a decision-maker is influenced towards a decision, rather than forced to select that decision. This novel type of enforcement...

A Tactile Visual Library To Support User Experience Storytelling

Makayla Lewis and Lizzie Coles-Kemp Abstract This paper presents an adult visual narrative stimulus (tactile visual library) that supports the reduction of physical distance between the user-centred design practitioner (maker of the visual narrative artefact) and the...