I am a Reader in Cyber Security at the University of Kent, the Director of Science and Research at CybSafe, a Visiting Fellow in Defence and Security at Cranfield University, and an Associate Fellow at RUSI.

My research explores the interdisciplinary nature of cyber security, privacy and trust. This especially considers the impact of new technologies on these areas. As a result of this broad remit I have the pleasure of working across various domains including computing, psychology, and computational social science. I regularly contribute to mainstream media, and have written for, or featured in, the Wall Street Journal, The BBC (and BBC Radio 4), The Washington Post, Newsweek, Wired, The Telegraph, The Independent, TRT World, Tech Radar, Raconteur, Threat Post, Infosecurity Magazine, SC Magazine, Help Net Security, The Register, ZDNet, CSO, The Record, ComputerWeekly, IT Pro, Symantec Blogs, Naked Security and The Conversation.

I am open for research collaboration opportunities, new PhD students, invited talks/presentations, and media commentary. Please contact me.

Recent news.

  • article  Jun.2025  --- New paper titled "From Security Awareness and Training to Human Risk Management in Cybersecurity" published in the 7th International Conference HCI for Cybersecurity, Privacy and Trust (27th HCI International Conference). [pdf][doi]
  • article  Jun.2025  --- New paper titled "To Patch or Not to Patch: Motivations, Challenges, and Implications for Cybersecurity" published in the 7th International Conference HCI for Cybersecurity, Privacy and Trust (27th HCI International Conference). [pdf][doi]
  • speaker  Jun.2025 --- Speaker at Infosecurity Europe 2025 (Cyber Strategies Stage): "‘Oh, Behave!’ A Global Outlook on Cyber Behaviors and the Science Behind". [link]
  • speaker  May.2025 --- Speaker at RSA Conference 2025: "‘Oh, Behave!’ A Global Outlook on Cyber Behaviors and the Science Behind". [link]
  • media  May.2025 --- Expert Contributor to Yahoo! News article: "5 signs you’re being catfished like on ITV's Fake". [link]
  • speaker  May.2025 --- Speaker at The Research Institute for Sociotechnical Cyber Security (RISCS) Annual Conference 2025. [link]
  • role  May.2025 --- Research Degree Examiner at the University of Bristol, School of Computer Science. [link]
  • speaker  May.2025 --- Speaker at International Association of Security Awareness Professionals (IASAP): "A Deep Dive into Security Attitudes and Behaviours". [link]
  • speaker  May.2025 --- Speaker and Organiser of the University of Kent's Early Career Researcher (ECR) Research Environment Session: "The PhD/ECR journey: Part 3". [link]
  • speaker  Apr.2025 --- Speaker at UK Cyber Week 2025 (Cyber and Strategy Theatre): "Understanding Cybersecurity Attitudes". [link]
  • article  Apr.2025  --- New paper titled "Investigating the experiences of providing cyber security support to small-and medium-sized enterprises" published in the Computers & Security Journal. [pdf][doi]
  • speaker  April.2025 --- Speaker and Organiser of the University of Kent's Early Career Researcher (ECR) Research Environment Session: "The PhD/ECR journey: Part 2". [link]
  • speaker  Apr.2025 --- Host and Speaker at the IMPACT USA Conference, a CybSafe conference in association with the National Cybersecurity Alliance (NCA) and MITRE. [link]
  • speaker  Mar.2025 --- Speaker at BSides Kent: "It's *not* all about the Benjamins: The real harms of ransomware attacks". [link]
  • speaker  Mar.2025 --- Host of Webinar: "Nudge nudge, wink wink: Using nudges and automation to reduce human cyber risk". [link]
  • speaker  Mar.2025 --- Guest Lecturer at Leiden University's Cyber Crisis Management and Resilience course on: "The Threat of Ransomware". [link]
  • award  Mar.2025  --- Supervised MSc Student Project on Ransomware that won the Institute of Cyber Security for Society (iCSS) prize. [link]
  • award  Mar.2025  --- Supervised BSc Student Project on Ransomware that won the School of Computing Best Poster prize. [link]
  • speaker  Mar.2025 --- Host and Speaker at the IMPACT UK Conferences, a CybSafe conference in association with the National Cybersecurity Alliance (NCA), MITRE and SASIG. [link]
  • speaker  Mar.2025 --- Speaker and Organiser of the University of Kent's Early Career Researcher (ECR) Research Environment Session: "The PhD/ECR journey: Part 1". [link]
  • article  Feb.2025  --- Invited to be Section Editor in the new Palgrave Encyclopedia of Cyberpsychology. [publisher]
  • article  Feb.2025  --- New paper titled "Invisible Lines, Visible Impact: How Territorial Security Influences Russian Cyber Security Strategy" published in The RUSI Journal. [pdf][doi]
  • media  Feb.2025 --- New article in Binding Hook: "Cyber insurance is no silver bullet for cybersecurity". [link]
  • speaker  Feb.2025 --- Guest Lecturer at Kent University's Information Security Management Module on: "Cyber Insurance: Origins and Progress". [link]
  • role  Feb.2025 --- PhD Student, Enes Altuncu, at the University of Kent completes degree. [link]
  • article  Jan.2025  --- New Policy Brief titled "Unlocking Privacy Enhancing Technologies (PETs): The importance of implementing PETs for SMEs". [pdf]
  • speaker  Jan.2025 --- Invited Panelist at SASIG event: "Securing the future of data: Navigating AI, sovereignty, and cyber threats". [link]
  • speaker  Jan.2025 --- Invited Speaker at Cognitive Security Institute: "Studying your Cyber Security Attitudes and Behaviors". [link]
  • speaker  Jan.2025 --- Speaker and Organiser of the University of Kent's Early Career Researcher (ECR) Research Environment Session: "Challenges and opportunities". [link]
  • speaker  Jan.2025 --- Guest Lecturer at Cardiff University's Cybersecurity Operations Module on: "Cyber-attacks & Adversarial Behaviours". [link]
  • role  Dec.2024 --- External Examiner PhD at the University of Johannesburg, South Africa. [link]
  • media  Dec.2024 --- Expert Contributor to new ITV News articles on Fake QR codes and Black Friday scams. [link]
  • speaker  Nov.2024 --- Invited Speaker at CyberSecurity Live Conference: "The real impact of ransomware attacks on victim organisations". [link]
  • speaker  Nov.2024 --- Invited Speaker at University of Athens' Graduate Program in Cyberpsychology: "Psychology and Cyber Security". [link]
  • speaker  Nov.2024 --- Invited Speaker at iNetwork (Tameside Metropolitan Borough Council) Webinar: "Human Factor: Behavioural Insights in Cyber Security". [link]
  • speaker  Nov.2024 --- Speaker (joint) at Institute of Cyber Security for Society (iCSS) Seminar: "Does Cyber Insurance promote Cyber Security Best Practice? An Analysis based on Insurance Application Forms". [link]
  • article  Oct.2024  --- New paper titled "Assessing Cyber Security Support for Small and Medium-Sized Enterprises" published in IFIP WG 11.12 International Symposium on Human Aspects of Information Security and Assurance. [pdf][doi]
  • speaker  Oct.2024 --- Invited Speaker at ISC2 London Chapter Meeting: "The 2024 Oh Behave! The Annual Cybersecurity Attitudes and Behaviors Report". [link]
  • speaker  Oct.2024 --- Host for RUSI Webinar featuring Dr Claudia Natanson, CEO of UK Cyber Security Council: "Building a Diverse and Resilient Cyber Workforce". [link]
  • media  Oct.2024 --- Expert Contributor to new The Telegraph article: "Evil Corp: The Russian family business that cheated British taxpayers out of millions". [link]
  • article  Oct.2024  --- New paper titled "Does Cyber Insurance promote Cyber Security Best Practice? An Analysis based on Insurance Application Forms" published in ACM Digital Threats: Research and Practice Journal. [pdf][doi]
  • media  Sep.2024 --- Expert Contributor to new DarkTrace The Inference article: "Malware-as-a-Service: what you need to know about this persistent cyber threat". [link]
  • media  Sep.2024 --- Expert Contributor to new Tech Monitor article: "How to tell the world you've just been hacked". [link]
  • media  Sep.2024 --- Expert Contributor to new IT Pro article: "The importance of supply chain resilience". [link]
  • media  Sep.2024 --- Media coverage of new Oh Behave! The Annual Cybersecurity Attitudes and Behaviors Report 2024-2025. [Infosecurity Magazine][Tech Monitor][CIO News][SC Media]
  • article  Sep.2024  --- New whitepaper titled "Oh Behave! The Annual Cybersecurity Attitudes and Behaviors Report 2024-2025" by CybSafe and the National Cybersecurity Alliance. [pdf]
  • article  Aug.2024  --- New paper titled "‘There was a bit of PTSD every time I walked through the office door’: Ransomware harms and the factors that influence the victim organization’s experience" published in the Journal of Cybersecurity. [pdf][doi]
  • article  Aug.2024  --- New paper titled "The technification of domestic abuse: Methods, tools and criminal justice responses" published in the Criminology & Criminal Justice Journal. [pdf][doi]
  • article  Aug.2024  --- New paper titled "Cyber Strategy in Practice: The Evolution of US, Russian and Ukrainian National Cyber Security Strategies through the Experience of War" published in The RUSI Journal. [pdf][doi]
  • article  Aug.2024  --- New paper titled "Unmasking hate in the pandemic: A cross-platform study of the COVID-19 infodemic" published in the Big Data Research Journal. [pdf][doi]
  • media  Jul.2024 --- Expert Contributor to new Raconteur article: "Hacking HR: how can people leaders ensure their operations are cybersecure?". [link]
  • speaker  Jul.2024 --- Speaker at The 65th London International Youth Science Forum: "Generative AI: A Catalyst for Progress or a Source of Peril?". [link]
  • media  Jul.2024 --- Expert Contributor to new Raconteur article: "Sleepless nights, PTSD and strokes: inside the human cost of ransomware". [link]
  • media  Jul.2024 --- Media coverage of new RUSI Occassional Policy Paper on "‘Your Data is Stolen and Encrypted’: The Ransomware Victim Experience" in TechXplore, and TechTimes. [TechXplore][TechTimes]
  • article  Jul.2024  --- New RUSI Occassional Policy paper titled "‘Your Data is Stolen and Encrypted’: The Ransomware Victim Experience" published in collaboration with the Royal United Services Institute for Defence and Security Studies. [pdf][link]
  • article  Jun.2024  --- New paper titled "Cybersecurity, cyber insurance and small-to-medium-sized enterprises: A systematic review" published in the Information and Computer Security Journal. [pdf][doi]
  • article  Jun.2024  --- New paper titled "Embedding Privacy in Computational Social Science and Artificial Intelligence Research" published in International AAAI Conference on Web and Social Media (ICWSM) Workshop Proceedings. [pdf][doi]
  • speaker  Jun.2024 --- Speaker at Cambridge Cybercrime Centre: Seventh Annual Cybercrime Conference: "Ransomware Harms and the Victim Experience". [link]
  • speaker  May.2024 --- Invited Speaker at The Commonwealth Telecommunications Organisation (CTO) Digital Week, CyberKeys 2024. [link]
  • media  May.2024 --- Expert Contributor to new Raconteur article: "AI worms: what your cybersecurity team needs to know". [link]
  • speaker  May.2024 --- Invited Speaker at ISC2 London Chapter Meeting: "Attitudes and Behaviours in Cyber Security: What you need to know!". [link]
  • speaker  May.2024 --- Guest Lecturer for the UK Foreign, Commonwealth and Development Office (FCDO) Chevening India, Western Balkans & Japan Cyber Security Fellowships Programme: "Cyber-attacks and Adversarial Behaviours: A human aspects perspective". [link]
  • media  May.2024 --- Expert Contributor to new FinTech Global publication: "Parents prioritise online safety education when choosing children’s banks". [link]
  • role  Apr.2024 --- Appointed to Google.org European Cybersecurity Seminars Advisory Committee, in collaboration with European Cyber Conflict Research Incubator (ECCRI). [link]
  • speaker  Apr.2024 --- Invited Speaker on the ITSPmagazine Podcast: "The Role Behavioral Science In Understanding And Improving Cybersecurity Posture In A Technological Society | Redefining Society" [link]
  • speaker  Apr.2024 --- Invited Delegate at Global Cyber Security Capacity Centre 10th Anniversary Conference. [link]
  • media  Apr.2024 --- Expert Contributor to new Fintech Times publication: "CybSafe Reveals Importance and Use of Cyber Training for Customers". [link]