 | Marta F. Arroyabe, University of Essex RISCS Senior Fellow Dr. Marta F. Arroyabe is Deputy Director of the Institute for Analytics and Data Science and a Reader at Essex Business School. Her research explores the intersection of digitalisation, cybersecurity, and strategic decision-making in small and medium enterprises (SMEs), with a focus on enhancing cyber resilience in the context of digital transformation. She has led and contributed to several projects funded by Innovate UK, ESRC, and the Leverhulme Trust, including initiatives on cybersecurity maturity tools and the adoption of secure digital technologies in SMEs. Marta is also a member of the Eastern Cyber Resilience Centre’s Advisory Group and the Bank of England's Academic Advisory Group on Central Bank Digital Currency. Her work has been widely published in leading journals such as Computers & Security and Technological Forecasting and Social Change. |
 | Joe Burton, Lancaster University RISCS Senior Fellow Dr Joe Burton is Professor of International Security in the Department of Politics, Philosophy and Religion (PPR) at Lancaster University. He joined the university in July 2023 as part of the Security and Protection Science initiative. Prior to that he held permanent positions at the University of Nottingham and the University of St Andrews and was a Marie Curie (MSCA-IF) fellow at Université libre de Bruxelles (ULB), working on the two-year European Commission-funded project Strategic Cultures of Cyber Warfare (CYBERCULT). Joe is the author of NATO's Durability in a Post-Cold War World (SUNY Press, 2018), editor of Emerging Technologies and International Security: Machines the State and War (Routledge, 2020), and his work on Artificial Intelligence and Cyber Security has been published in a range of leading scientific journals, including International Affairs, Journal of Global Security Studies, Technology in Society, Asian Security, Defence Studies, the Cyber Defence Review, the RUSI Journal and Political Science. Dr Burton has served as a ministerial advisor in New Zealand and the UK. He is the coordinator of the CYDIPLO Jean Monnet Network on Cyber Diplomacy and a recipient of the US Department of State (DoS) SUSI Fellowship (New York, Washington D.C.), the Taiwan Fellowship (Ministry of Foreign Affairs, Taipei), and has been a visiting researcher and lecturer at the NATO Cooperative Cyber Defence Centre of Excellence (CCDCOE) in Tallinn, Estonia. Joe has implemented projects and received funding from the US Department of State, the Taiwan Ministry of Foreign Affairs (MOFA), the NATO Science for Peace and Security Programme (NATO SPS), NATO CCDCOE, the European Commission (Marie Curie program and Jean Monnet Network lead), the National Cyber Security Centre (NCSC), the Alan Turing Institute and the New Zealand Department for Prime Minister and Cabinet (DPMC). Professor Burton has extensive experience of futures methods, scenario and simulation design and implementation and has received formal NATO/EU training in this area. |
 | Lizzie Coles-Kemp, Royal Holloway, University of London RISCS Principal Fellow Lizzie Coles-Kemp is Professor of Information Security at Royal Holloway University of London and specialises in the design of accessible and inclusive security technologies, practices, and processes. She pioneered the use of creative engagement practices within the domain of information security research. In her role as Principal Fellow, Lizzie works on the topic of digital responsibility. She has a long track record of working in partnership with the UK’s National Cyber Security Centre (NCSC) and with UK government departments for science, innovation, and technology (DSIT) and for culture, media, and sport (DCMS). Lizzie is currently Head of Department for Information Security, is a former EPSRC research fellow, and is a member of the College of Experts for both DSIT and DCMS. |
 | Thomas Groß, Newcastle University RISCS Senior Fellow Thomas Groß is a Professor in System Security in the School of Computing at Newcastle University. He is the Director of Newcastle University Centre of Research Excellence in Cyber Security & Resilience, a UK Academic Centre of Excellence in Cyber Security Research (ACE-CSR). His primary research interests are in system security and privacy, where he is most active in applied cryptography, human factors and evidence-based methods of security and privacy. He was the Principal Investigator of the European Research Council (ERC) Starting Grant Confidentiality-Preserving Security Assurance (CASCAde). This research aims at achieving the certification and security assurance of system topologies and complex data structures in such a way that one can prove security properties to verifiers, without disclosing sensitive information. This research includes the creation of novel digital signature schemes, such as Monipoly, on graph data structures, called graph signature schemes, especially in a form that makes the signed graph elements (vertices, edges, and labels) available to zero-knowledge proofs of knowledge. He has also a strong interest in evidence-based methods in security and privacy as well as sound empirical research methodology. He will pursue this research agenda through his RISCS Fellowship. This research includes reviewing the evidence present in the field, evaluating reporting fidelity, statistical reliability, and meta-analyses. This research also involves the analysis of the validity and reliability of instruments in human dimensions of security and privacy research, incl. for example the well-known privacy concern scale IUIPC, and large-scale systematic analyses of human decision making, incl. for example in the adoption of privacy-enhancing technologies. |
 | Matt Spencer, University of Warwick RISCS Senior Fellow Matt's research sits at the interdisciplinary intersection of Science & Technology Studies and Cyber Security. Most broadly, he is interested in understanding the relations between digital technologies, knowledge practices, and society. He works primarily with qualitative materials, including interviews, workshops and texts. His research in recent years has been devoted to developing a sociocultural analysis of cyber security, focused in particular on exploring the kinds of reasoning and justification applied to digital infrastructures as targets of real (or hypothetical) attack. Topics he has worked on include:
|