I am a Professor of Cyber Security and Head of Cyber Risk at the Internet of Things and Security Centre (ISEC). ISEC is located at the University of Greenwich, Faculty of Engineering and Science, School of Computing and Mathematical Sciences. I direct the Cyber Risk research strategy of ISEC acting also as its liaison with industrial partners.
ISEC aims at equipping the Internet of Things with the ability to adapt to the needs of human beings and self-protect against cyber security, safety and privacy threats. With 28 members of staff and PhD students and an annual budget over £2M, it specialises in security and privacy technologies for distributed digital environments where a security breach in cyber space can affect people and systems in physical space, from smart homes and smart buildings to robotics, e-commerce and corporate environments. Our members specialise in embedded system security, mathematical modelling, formal methods, optimisation and machine learning together with practitioner skills in penetration testing and digital forensics. The centre’s research strategy prioritises multidisciplinary research and the validation of theoretical grounding with laboratory and in-the-wild experimentation with end-users.
My research interests are at the intersection of security and privacy engineering, multi-agent systems and mathematical optimisation. My core expertise is designing and implementing robust cyber security defences against adversarial behaviour including threat modelling and cyber risk optimisation. One of my main goals is to invent, develop, and evaluate new models and methods that can be adopted by organisations and individuals. This is aligned with ISEC’s impact strategy to contribute to a secure UK society against cyber-physical threats.
My research has been funded by the National Cyber Security Centre (NCSC), the Research Institute in Sociotechnical Cyber Security (RISCS), the Engineering and Physical Sciences Research Council (EPSRC), the European Commission (H2020), and the Greenwich Research & Enterprise (GRE). I have been involved, as Principal and co-Investigator, in grants in worth in excess of £20m, leading tasks, work packages, and the preparation of their bids. In total, I have attracted £1.15M as P.I. and £1.08M as co-I.
Cyber Risk Management, IoT Security, Security Economics
Healthcare, SMEs, Domestic Life, 5G
Optimisation, Game Theory, Machine Learning
Internet of Things and Security Centre
Cyber-physical system and IoT security, Data-driven cyber security
Cyber risk management, Security for small businesses
Cyber risk management, AI, Security economics
IoT security, Cyber risk management
5G security, Threat Modelling, Cyber risk management
Cryptography, Blockchain, Trusted computing
Threat modelling, Cyber risk management, Security economics
AI, Cyber-physical systems, Cybersecurity
Network and Computer Security
Operations research, Real options, Security economics
Cybersecurity, AI, IoT and Wireless Networks
Information security management
Game theory, Optimisation
Cyber forensics, Attack reconstruction, Data-driven cyber security
MITRE ATT&CK framework, Threat modelling
Trust management, Intrusion detection
Smart-home security, Cyber risk management
IoT security, Game theory
Honeypots, Game theory
IoT security, Threat modelling, Security requirements engineering
5G security, Security requirements engineering