“We can not solve our problems with the same thinking we used when we created them” Albert Einstein
Whilst I enjoy applying the skills, tools and methodologies that I have developed and learnt to help organisations manage risk to cash flow, profitability and their balance sheets , I commit a considerable amount of my time to thinking ahead.
What will be the issues that businesses, governments and society will encounter regarding information and information systems security? How can these can be surmounted and in some cases exploited to the benefit of individuals, organisations, sectors and national states? What are the political, economic, social and technical developments in society which will have an impact on information security management, threats and vulnerabilities. How can these be managed and/or exploited.
Current projects and concepts which I am investigating either on my own as part of a collaborative project include:
- Regional information security strategies to support national and international cybersecurity strategies.
- Building trust in the online economy through transparency.
- Economics of information security.
- Valuing information assets.
- Addressing the challenge of driving information security best practice amongst SMEs.
- Trusted information sharing.
- Massive multiplayer online gaming security risks.
- Marketing & sales strategies to exploit information security concerns.
- Developing an economic, legislative, regulatory and social environment to steer and support the cloud computing business model.
- Information assurance within the supply chain.
- Risk to national states prosperity in the global information economy from information security threats including economic, social and security policies.
- The development of financial products to absorb residual information security risks.
- Developing finance models to help fund national states investment in information security initiatives.
- Developing new information security risk assessments to suit global business
- New economic models enabling sovereign states to compete within the global information economy based on information security.
- Statistical models for understanding and estimating human behaviour.