EPSRC Centre for Doctoral Training in Cyber Security

Year 2 Student - 2023 Cohort - Cohort 5

My academic background lies in computer science, with a particular focus on information systems management (MSc), information systems (BSc) and applied cryptography (BASc). Before joining the Centre for Doctoral Training in Cyber Security, I held a position in the public sector agency, where I assisted organizations in critical sectors understand today’s cyber threat landscape, analyse the cyber risks associated with the sector/industry, and initiate risk-informed cyber security programs. I have previously developed extensive professional qualifications in the operational and technical domains of cyber security, maintaining certifications such as CISSP, ISO 27001 LA, and several EC-Council-based certifications.

Whilst my primary focus during the PhD is to enhance our capability in understanding the threat landscape through cyber situational awareness, I also develop interest in research areas within network security, threat modelling, risk assessment, and the use of AI in cybersecurity.

PhD Project: Adversary Emulation for Improving Cyber Situational Awareness

My research project is aimed to improve situational awareness in cyber security through adversary emulation exercises. Whilst adversary emulation empowers organizations by combining offensive and defensive assessment approaches, it also generates detailed, contextual data - including security telemetry, real-world adversary tactics and detailed procedures, and evaluations of existing security control effectiveness. Transforming these data into the right metrics, along with other valuable attributes, will not only improve results of emulation exercises, but also provide a foundation for enhancing cyber situational awareness.

This research empirically investigates the metrics and attributes of effective adversary emulation, and explore how these data-driven insights can be integrated into security operations to improve overall cyber situational awareness. Additionally, the research seeks to develop mechanisms for projecting future states of cyber security (e.g. potential threat scenarios, attack impact, or incident) based on adversary emulation data, combined analytical models, and threat intelligence.

The research takes ideas and concepts developed within the cybersecurity practices (e.g. adversary-centric security assessment), where proactive security are important to protect critical services, and timely awareness about the situation or potential threats contributes to reducing the likelihood of attacks on critical infrastructures.

Supervisor: Dr Joseph Gardiner

• June 2024: Joint CDT Summer School: Cyber Secure Futures - https://www.bristol.ac.uk/cdt/cyber-security/joint-summer-schools/
• August 2024: Mastering AI in Cybersecurity: From Theory to Practice - https://socradar.io/training/mastering-ai-in-cybersecurity-from-theory-to-practice
• December 2024: ITS-Nabu Cyber Range Workshop - University of Cardiff

• Dr Joseph Gardiner - Cyber Situational Awareness in Operational Technology
• Airbus - AI and Cybersecurity in Industrial Systems: Insights from Airbus Cyber Innovation