The focus "Security Management & Privacy" deals with two important topics, which, especially due to the General Data Protection Regulation (GDPR), intervene deeply in organizations as well as the way security has to be integrated into organizations.
Security Management

Security Management pursues the goal of effectively and efficiently implementing compliance and security requirements and coordinating information security activities. The main topics researched in this area include risk and emergency management, measurement and evaluation of information security, and approaches to aligning security strategy with corporate strategy. In addition, there is research in the field of situational awareness and providing operational security insight.

Privacy

The subject area Privacy deals with methods for the protection of personal information. Here, technologies for the protection of privacy as well as the effects of the loss of personal information are discussed. Our activities in this area include the analysis of Privacy Enhancing Technologies (PETs), such as: anonymization networks, web privacy, and cryptographic protocols. Other areas of activity include the misuse of personal information for social engineering attacks and the usability of existing privacy technologies.