Admission requirements
Admission only after intake, see https://www.csacademy.nl/en/education/master-s-programmes/executive-master-s-programme-cyber-security.
Elective in master’s programme Cyber Security.
Description
‘Actors and behaviour in cyberspace’ brings together a wide variety of insights into the emergence of cybersecurity incidents from the behavioural sciences, explaining the ‘human factor’ in cybersecurity. In this course we will look at the behavioural causes of cybersecurity issues, both intentional (hacking, cybercrime) and accidental ones (humans make mistakes, are unaware, or careless), on both a individual and a group level.
In the current cybersecurity landscape much effort is put into researching, detecting and remedying intentional cybersecurity risks, i.e. risks generated by individuals, groups or nation states that exploit weaknesses in the network systems of other individuals, groups or nation states. More particularly, a lot of emphasis is placed on two topics: activities that fall under the carrier concept of cybercrime, and the protection of critical infrastructures as key systems in our economies. Much less attention is paid to what Van den Berg has termed ‘cyber accidents’, to the set of cybersecurity incidents that may arise as a result of (1) human error, or (2) technical errors. The former can have myriad causes and take a wide variery of forms. The latter are largely due to the complexity of modern network technologies, which lead to inherent unpredictabilities in individuals. These unpredictabilities only exacerbate once technologies are hooked into networks. Van den Berg and Boeke argue that the realm of cyber accidents needs urgent scientific attention, because unintentional cyber risks may have signicant economic and societal impact. No consolidated attempt has been made, however, to shed light on the size, breadth and impact of this set of problems. To gain a clearer understanding of cybersecurity risks of both kinds (intentional and accidental ones), and shed light on the role of the human factor therein, Van den Berg and Boeke are currently developing new methods aimed clarifying conceptually which actors play a role in different types of incidents, what drives these actors (if anything) and what their goals are (if any). In this course we will discuss the outcomes of their (ongoing) research in this area.
Course objectives
Participants have:
Basic knowledge and understanding of the root causes of different forms of cybersecurity risks and incidents and how to categorise those.
Basic knowledge and understanding of the contributions made by the behavioural sciences (with a special focus on sociology, psychology, criminology and economics) in analysing and evaluating the role of (human) behaviour and agency in cybersecurity.
Basic knowledge and understanding of the human factor in cybercrime (profiles of cybercriminals, social engineering), in economic cybercrimes and the economic incentives in/of cybersecurity incidents.
Insight in perceptions of (cyber)security (rational actor theory, securitisation, politicking) and in cybersecurity accidents (awareness, risk perception, knowledge & skills, motivation).
Participants are able to:
- Write a research paper on a topic that fits within one of more of the themes addressed in this course.
Timetable
5 Fridays from 9.30 until 17.00, either in April/May or in June/July, to be scheduled dependant on preferences of participants
Mode of instruction
Lectures, seminars, exercises, class discussion.
Lecturers: Dr. Bibi van den Berg, Dr.Esther Keymolen, Sergei Boeke LLM.
Course Load
4 EC.
Assessment method
The grade of this assignment is composed of four elements:
a. problem identification (10%) b. scientific paper (60%) c. presentation of media campaign (30%)
No compensation is possible for assignments of 30% or more.
You can find more information about assessments and the timetable exams on the website.
Details for submitting papers (deadlines) are posted on Blackboard.
On the Public Administration front page of the E-guide you will find links to the website, uSis and Blackboard.
Resit
Students will be permitted to resit an examination if they have taken the first sit and have a mark lower than 5.5 or with permission of the Board of Examiners.
Resit written exam
Students that want to take part in a resit for a written exam, are required to register via uSis. Use the activity number that can be found on the ‘timetable exams’.
Blackboard
Yes, for posting slides of lectures, relevant literature and assignments.
Reading list
Compulsory literature and literature for further consultation will be announced via Blackboard.
Registration
Use both uSis and Blackboard to register for every course.
Register for every course and workgroup via uSis. Some courses and workgroups have a limited number of participants, so register on time (before the course starts). In uSis you can access your personal schedule and view your results. Registration in uSis is possible from four weeks before the start of the course.
Also register for every course in Blackboard. Important information about the course is posted here.
Registration Studeren à la carte and Contractonderwijs
NVT.
Contact
Dr. Bibi van den Berg
Drs. Mireille Snels, programme manager:
m.m.snels@fgga.leidenuniv.nl
Pauline Hutten MSc, programme coordinator:
p.e.hutten@fgga.leidenuniv.nl
Remarks
See https://www.csacademy.nl/en/education/master-s-programmes/executive-master-s-programme-cyber-security.