Emmanouil (Manos) Panaousis

Emmanouil (Manos) Panaousis

Founder and Head of the Cyber Risk Lab, Associate Professor (Reader) of Computer Science

University of Greenwich

I am the Founder and Head of the Cyber Risk Lab (CRL) at the University of Greenwich. CRL consists of students (PhD to BSc), Research fellows, as well as Visiting fellow academics and industrial experts. It works in the field of cyber risk with the goal to invent and develop new models and methods that can impact the UK society by making it more secure and resilient against cyber threats.

I also direct the Cyber Risk R&D strategy of the Internet of Things and Security Centre (ISEC). In addition, I am acting as its liaison with industrial partners.

I sit on the Conference on Decision and Game Theory for Security (GameSec) Advisory Committee panel. GameSec is a small but highly specialised conference in the intersection of cybersecurity and decision support. It attracts high quality contributions and has been instrumental in building and maintaining the community around this topic.

I am an Associate Editor of the IET Information Security journal, reviewer of numerous journals including IEEE TIFS and TDSC, and Senior member of the IEEE.

I am an Advisory Board member of the H2020 SPIDER project, member of the (EPSRC) Associate Peer Review College, and Member of the College of Peer Reviewers of the (REPHRAIN) (National Research Centre on Privacy, Harm Reduction and Adversarial Influence Online).

I have been involved, as Principal and co-Investigator, in grants in worth in excess of £20m, leading tasks, work packages, and the preparation of their bids (£2M) on the topic of cyber risk assessment, management and cybersecurity decision support. My research has been funded by the National Cyber Security Centre (NCSC), the Research Institute in Sociotechnical Cyber Security (RISCS), the Engineering and Physical Sciences Research Council (EPSRC), the European Commission (H2020), and the Greenwich Research & Enterprise (GRE).

My research involves:

  • Modelling cyber risk using threat modelling, vulnerability assessment, control-based risk assessment.
  • Studying the impact of cyber attacks in numerous use cases including healthcare, smart home, smart grid and 5G infrastructure.
  • Design and develop robust architectures as well as decision-support methods to mitigate cyber risks.
  • Modelling cybersecurity decisions using Cost-Benefit Analysis and AI techniques based on game theory and optimisation to determine optimal cyber-related behaviours subject to limited resources.

Research Areas

Cyber Security

Cyber Risk Management, IoT Security, Security Economics

Applications Domains

Healthcare, SMEs, Domestic Life, 5G

Artificial Intelligence

Optimisation, Game Theory, Machine Learning

Cyber Risk Lab

Faculty

Avatar

Emmanouil (Manos) Panaousis

Founder and Head of the Cyber Risk Lab, Associate Professor (Reader) of Computer Science

Researchers

Avatar

Rob Pell

Doctoral Researcher

5G Security, Threat Modelling, Decision support for risk management

Avatar

Emily Parsons

Doctoral Researcher

Human factors of security, IoT security, Optimal risk control

Avatar

Sakshyam Panda

Research Fellow

Cyber Risk Management, Security Economics, Game Theory and Optimisation, Threat Modelling

Avatar

Claire Stretch

Software Developer

Web application development

Avatar

Kokulan Natkunam

Research Fellow

Mathematical optimisation, Cyber security controls, Machine learning

Avatar

Andreea Firoozbakht

Business Model Analyst

Business Model Design, Pricing Framework, Lifetime Value of An Acquired Customer

Avatar

Antonia Nisioti

Doctoral Researcher

Cyber Forensics, Incident Response, Attack Reconstruction, Data-driven Cyber Security

Visiting Researchers

Avatar

Aris Farao

Doctoral Researcher

Cyber Risk, Social Attacks, Security Economics

Avatar

George Paparis

Doctoral Researcher

Cyber Risk, Social Attacks, Security Economics

Alumni

Emma Scott

Final Year Project Researcher

Security in domestic life, Human defences against adversarial AI apps

Caxton Okoh

Postdoctoral Researcher

Information Security Management, Cyber Controls

Adrian Coutsoftides

Research Engineer (Data Scientist, Enteromics)

Blockchain, Optimisation

Charalampos Xanthopoulakis

Senior Software Developer (SecurityBudget)

Data visualisation

Dmitry Fedorenko

Research Engineer (Software Developer, Hawk-Eye Innovations)

Trust Management, Intrusion Detection

George Rontidis

PhD student (Air Defence Officer, Hellenic Air Force)

IoT Security, Game Theory

Muhammad Usman

Postdoctoral Researcher (Senior Lecturer, University of South Wales)

Intrusion Detection, Reputation Management

Nadia Boumkheld

Postdoctoral Researcher

Honeypots, Game Theory

Orestis Mavropoulos

PhD student (Head of Engineering, Cyberlens)

IoT Security, Threat Modelling

Vasileios Vasilakis

Postdoctoral Researcher (Lecturer, University of York)

5G Security, Security Requirements Engineering

Projects


*
All Cyber Security Security Economics Privacy Optimisation Artificial Intelligence

SecurityBudget: Cyber Security Budget Spending Companion for SMEs

SecurityBudget will be a cyber security dashboard to support SMEs on how to protect their systems subject to a limited available budget. Budget: £12.5k. Principal Investigator: Manos Panaousis, co-Investigator: George Loukas.

CHAI: Cyber Hygiene in AI enabled domestic life

Artificial Intelligence (AI) is rapidly becoming part of people’s lives at home. Smart speakers, smart thermostats, security cameras with face recognition, and in the near future, brain-computer interfaces and elderly care companion robots can have considerable benefits to energy efficiency, comfort, and even health.

MERIT: A fraMEwoRk to Model and IncenTivise Cyber Security Investment Decisions

The MERIT addresses the challenge of how to take better cyber security investment decisions. It aims at minimising cyber security risks by optimally investing its budget for cyber controls. In a multi-disciplinary approach, it utilises both economics and cybersecurity engineering insights to significantly extend the state-of-the-art in decision support for cybersecurity spending.

Dynamic Protection Framework Against Advanced Persistent Threats in 5G Networks

The goal of this PhD is to contribute to situational awareness and alert security manager to suspicious behaviour by monitoring the virtualised and cross-correlating traffic events across different parts of the network, different network slices and different points in time on an individual user/function basis.

SECONDO: a Security ECONomics service platform for smart security investments and cyber insurance pricing in the beyonD 2020 netwOrking era

SECONDO addresses the question “How can decisions about cyber security investments and cyber insurance pricing be optimised?” SECONDO will support professionals who seek cyber security investments, developed to support human decision making, and a complete well-founded security strategy.

CUREX: seCUre and pRivate hEalth data eXchange

The Health sector’s increasing dependence on digital information and communication infrastructures renders it vulnerable to threats to privacy and cybersecurity, especially as the theft of health data has become particularly lucrative for cyber criminals.

SPEAR: Secure and PrivatE smArt gRid

Over the last decade, cyber-attacks have become increasingly sophisticated, stealthy, targeted and multi-faceted which may leverage zero-day exploits and highly creative interdisciplinary attack methods. As our society is becoming increasingly dependent on Critical INfrastructures (CIN), new technologies are needed to increase our detection and response capabilities.

Games and Abstraction: The Science of Cyber Security

This proposal addresses the challenge “How do we make better security decisions?”. Specifically we propose to develop new approaches to decision support based on mathematical game theory. Our work will support professionals who are designing secure systems and also those charged with determining if systems have an appropriate level of security – in particular, systems administrators.
Chris Hankin, Pasquale Malacaria

SESAME: Small cEllS coordinAtion for Multi-tenancy and Edge services

Over the last decade, cyber-attacks have become increasingly sophisticated, stealthy, targeted and multi-faceted which may leverage zero-day exploits and highly creative interdisciplinary attack methods. As our society is becoming increasingly dependent on Critical INfrastructures (CIN), new technologies are needed to increase our detection and response capabilities.

VISION: Visual Privacy Management in User Centric Open Environments

Public Administration (PA) authorities are working towards upgrading the level of their online services through new governance models such as the Open Government. This pushes for greater transparency, accountability and innovation aiming at increasing citizen levels of confidence and trust in PA online services.

SALUS: Security And InteroperabiLity in Next Generation PPDR CommUnication InfrastructureS

The main goal of PROACTIVE is to research a holistic citizen-friendly multi sensor fusion and intelligent reasoning framework enabling the prediction, detection, understanding and efficient response to terrorist interests, goals and courses of actions in an urban environment.
Christos Politis

PROACTIVE: PRedictive reasOning and multi-source fusion empowering AntiCipation of attacks and Terrorist actions In Urban EnVironmEnts

The main goal of PROACTIVE is to research a holistic citizen-friendly multi sensor fusion and intelligent reasoning framework enabling the prediction, detection, understanding and efficient response to terrorist interests, goals and courses of actions in an urban environment.
Christos Politis, Paolo Remagnino

PEACE: IP-Based Emergency Applications and ServiCes for NExt Generation Networks

The transition to next generation networks is often coupled with the vision of innovative services providing personalized and customisable services over an all-IP infrastructure. To enable a smooth transition, next generation all-IP networks need not only support more services but also support current vital services, namely emergency services.
Christos Politis, Arvind Ramrekha, Emmanouil (Manos) Panaousis, Grant Millar

Publications

Gustavo González-Granadillo, Sofia Anna Menesidou, Dimitrios Papamartzivanos, Ramon Romeu, Diana Navarro-Llobet, Caxton Okoh, Sokratis Nifakos, Christos Xenakis, Emmanouil Panaousis (2021). Automated Cyber and Privacy Risk Management Toolkit. Sensors. (IF 2020: 3.576)

PDF DOI

Antonia Nisioti, George Loukas, Stefan Rass, Emmanouil Panaousis (2021). Game-Theoretic Decision Support for Cyber Forensic Investigations. Sensors. (IF 2020: 3.576)

PDF DOI

Sokratis Nifakos, Krishna Chandramouli, Charoula Konstantina Nikolaou, Panagiotis Papachristou, Sabine Koch, Emmanouil Panaousis, Stefano Bonacina (2021). Influence of Human Factors on Cyber Security within Healthcare Organisations: A Systematic Review. Sensors. (IF 2020: 3.576)

PDF DOI

Sakshyam Panda, Aristeidis Farao, Emmanouil Panaousis, Christos Xenakis (2021). Cyber-Insurance: Past, Present and Future. 2020 ECSP.

PDF DOI

Robert Pell, Sotiris Moschoyiannis, Emmanouil Panaousis (2021). Multi-Stage Threat Modelling and Security Monitoring in 5GCN. Cyber Security Issues for Emerging Technologies.

PDF

See all publications

Academic Service

Editorial

  • Sensors, Guest editor (2021) for Special Issue “Advances in Cybersecurity in Internet of Things”
  • IET Information Security, Associate Editor (2020-present)
  • Wireless Communications and Mobile Computing, Guest Editor (2019) for Special Issue “Multi-Objective Optimization Algorithms for Wireless Sensor Networks”
  • Games, ISSN2073-4336, MDPI, Guest Editor (2017) for Special Issue “Game Theory for Security”

Expert/Memberships

  • H2020 SPIDER project, Advisory Board Member.
  • SPRITE Expect Fellow, Academic Expert Fellow, “The Security, Privacy, Identity and Trust Engagement NetworkPlus SPRITE+ HUB”
  • Gamesec, Advisory Committee Member for the Conference on Decision and Game Theory for Security
  • EPSRC, Member of the Peer Review College and Grants evaluator for the Engineering and Physical Sciences Research Council
  • RISCS, Member and Fellow of the Research Institute in Science of Cyber Security and funded Fellow (April 2020 - March 2021)
  • REPHRAIN, Member of the College of Peer Reviewers of the National Research Centre on Privacy, Harm Reduction and Adversarial Influence Online, Bristol Cyber Security Research Group, University of Bristol
  • IEEE, Senior Member

General Chair

  • Gamesec 2015 (6th Conference on Decision and Game Theory for Security, London, UK, November 2015)

Program Chair

  • Gamesec 2016 (7th Conference on Decision and Game Theory for Security, New York, NY, USA, November 2-4, 2016)

Reviewer for Journals

  • ACM Transactions on Internet of Things
  • ACM Computing Surveys
  • ACM Transactions on Internet Technology
  • Ad Hoc Networks
  • Computers & Security
  • Computers Networks
  • Decision Support Systems
  • European Journal of Operational Research
  • Journal of Cybersecurity
  • IEEE Access
  • IEEE Transactions on Parallel and Distributed Systems
  • IEEE Communication Letters
  • IEEE Internet of Things Journal
  • IEEE Transactions on Dependable and Secure Computing
  • IEEE Transactions on Industrial Informatics
  • IEEE Transactions on Information Forensics and Security
  • Royal Society Open Science

Program Committee Member

  • Gamesec 2021 (12th Conference on Decision and Game Theory for Security, fully online conference, October 25-27, 2021)
  • Inscrypt 2021 (17th International Conference on Information Security and Cryptology)
  • ESORICS 2020 (25th European Symposium on Research in Computer Security, Guildford, UK, September 14–18, 2020)
  • Gamesec 2020 (11th Conference on Decision and Game Theory for Security, University of Maryland - College Park, October 26-30, 2020)
  • Gamesec 2019 (10th Conference on Decision and Game Theory for Security, Stockholm, Sweden, October 30 - November 1, 2019)
  • Gamesec 2018 (9th Conference on Decision and Game Theory for Security, Seattle, WA, USA, October 29 - 31, 2018)
  • Gamesec 2017 (8th Conference on Decision and Game Theory for Security, Vienna, Austria, October 23-25, 2017)
  • Gamesec 2016 (7th Conference on Decision and Game Theory for Security, New York, NY, USA, November 2-4, 2016)
  • Gamenets 2016 (6th International Conference on Game Theory for Networks, Kelowna, BC, Canada, May 2016)
  • Gamesec 2015 (6th Conference on Decision and Game Theory for Security, London, UK, November 2015)
  • CRiSIS 2015 (10th International Conference on Risks and Security of Internet and Systems, Mytilene, Lesvos Island, Greece, July 2015)
  • FiCloud 2015 (3rd International Conference on Future Internet of Things and Cloud, Rome, Italy, August 2015)
  • ICC 2015 (First Workshop on Security and Privacy for Internet of Things and Cyber-Physical Systems, London, UK, June 2015)
  • Gamesec 2014 (7th Conference on Decision and Game Theory for Security, Los Angeles, CA, USA, November 2014)

Teaching

Information Security

University of Greenwich 2020 Fall (BSc, level 5)
Module Leader

Information Security

University of Greenwich 2019 Fall (BSc, level 5)
Module Leader

Information Security for Business and Government

University of Surrey 2019 Spring (MSc)
Module Leader

Web and Database Systems

University of Surrey 2018 Fall (BSc, level 4)
Module Leader

Web Publishing and Databases

University of Surrey 2017 Fall (BSc, level 4)
Module Leader

System and Network Security

University of Brighton 2017 Spring (MSc)
Module Leader

Mathematics

University of Brighton 2017 Spring (BSc, level 4)
Module Leader

Network Technologies

University of Brighton 2016 Fall (BSc, level 5)
Co-lecturer

Network Management and Security

University of Brighton 2016 Fall & 2017 Spring (BSc, level 6)
Module Leader

Security and Dependability

University of Brighton 2016 Fall (MSc)
Module Leader

Mathematics

University of Brighton 2016 Spring (BSc, level 4)
Module Leader

Network Management and Security

University of Brighton 2015 Fall & 2016 Spring (BSc, level 6)
Module Leader

Network Technologies

University of Brighton 2015 Fall (BSc, level 5)
Co-lecturer

Mathematics

University of Brighton 2015 Spring (BSc, level 4)
Module Leader

Network Design and Technologies

University of Brighton 2014 Fall & 2015 Spring (BSc, level 6)
Module Leader

Distributed Systems and Security

Queen Mary University of London 2013 Fall (BSc, level 6)
Teaching Assistant

Contact