Threats take many forms, and reasoning about them to make organisations more resilient remains challenging given their, often, qualitative nature. For the times that security is simply not good enough, it is necessary to have mechanisms in place to cope with incidents and recover from them. Many resilience management models and standards exist, alongside many dependency modelling techniques. They help enterprises cope with and recover from harmful incidents, but are often exhaustive as comprehensive modelling of organisational dependencies is required to make suitable decisions. This research area aims to better understand how organisations can make use of novel tactics and techniques in more pragmatic and tool-centred ways (to automate certain processes where appropriate).

• Jassim Happa

• Jassim Happa. Cyber Resilience Using Self-Discrepancy Theory. In Digital Transformation, Cyber Security and Resilience of Modern Societies (book chapter). Springer. 2021.
• Jassim Happa. Analytics for Decision Support in the Arctic. In Arctic: Risk and Resilience. IOS. 2020.
• Selina Y. Cho, Jassim Happa, and Sadie Creese. Capturing tacit knowledge in security operation centers. IEEE Access. IEEE. (2020).
• Jassim Happa and Graham Fairclough. A model to facilitate discussions about cyber attacks. In Ethics and policies for cyber operations. Springer. 2017.
• Jassim Happa, Graham Fairclough, Jason RC Nurse, Ioannis Agrafiotis, Michael Goldsmith, and Sadie Creese. A pragmatic system-failure assessment and response model. ICISSP Conference on Information Systems Security and Privacy. 2016.
• Sadie Creese, Michael Goldsmith, Nick Moffat, Jassim Happa, and Ioannis Agrafiotis. Cybervis: visualizing the potential impact of cyber attacks on the wider enterprise. In IEEE International Conference on Technologies for Homeland Security (HST). IEEE. 2013.