Humans are evident in all cyber physical systems, from their inception to usage - and at every point in a system`s lifecycle, decisions are being made and acted upon.  My personal area of interest lies in the potential risks to both human safety and systems availability that arise from information based decision processes. 

My research looks to how these cyber security risks might be identified and mitigated through the use of human factors & ergonomics knowledge and methodology from other, mature, safety-aware industries.  Together, these practices form the basis for security ergonomics - a set of design principles for building safe and secure cyber physical systems.   Within this field my current research space looks to security cultures and the impact these have upon organisations, people and practice.  

Other Current Work

Alongside my own research interests, also I am: 

• the lead researcher for the Bristol Cyber Security Group’s portfolio of cyber physical projects.  In this I have responsibility for the design and build of our class-leading infrastructures testbed used for studying the cyber security of critical national infrastructure.  As part of this I also maintain an international research profile, and have a consistent participation within the UK’s Industrial Control Systems community.
• part of the core leadership team for the joint University of Bristol / University of Bath Cyber Security Centre for Doctoral Training In Trust, Identity, Privacy and Security of Large-Scale Infrastructures.
• actively involved in collaborative programmes with a wide range of industrial and governmental partners.