[IRIS] ECIS track on cybersecurity and privacy

Marko Ilmari Niemimaa marko.niemimaa at uia.no
Wed Sep 10 08:48:35 EDT 2025 

Please, consider submitting to the ECIS 2026 track on Cybersecurity and privacy!
https://ecis2026.it/track-descriptions/cybersecurity-and-privacy/

Deadline for submissions: 17 November 2025, 23:59 CET (Central European Time)

Track description
Cybersecurity, information security, and privacy are permanent news items and organizations are overwhelmed with emergent cyber threats, as individuals also are. The fast development and adoption of digital technologies together with rapid advancements and increased sophistication of the tools and techniques of the malicious actors leave organizations and individuals exposed to cybersecurity risks. Recently, for instance, the use of AI has shown its potential for not only effectively protecting against threats but also giving tools for cybercriminals to craft advanced and evermore convincing phishing attacks and diversions. Quantum computers will change the security game in the (near) future. Social engineering scams are costing individuals not only their money, but also their sensitive health information. In the midst of these rapid developments, employees are frequently portrayed as contributors to security risks, yet others view them as key to the solution. To address these cybersecurity and privacy challenges, we need new approaches and novel solutions for cybersecurity that not only protect the organization but respect people’s privacy and rights and empower them. As cybersecurity is not a chain but a complex network of people, technologies, and processes, the novel approaches must combine all these elements, also in different contexts and with diverse stakeholders.
We call for submissions that provide socio-technical approaches to cybersecurity and privacy in the landscape of emerging technologies and evolving threats. We welcome studies that build on different methodological approaches (e.g., qualitative, quantitative, design science) on cybersecurity, information security, and business continuity management and governance, within and across organizational boundaries. Information security policy compliance, economic perspectives, human behavior, training, and awareness as well as security culture papers are also invited. On privacy themes, relevant domains are for example privacy calculus, user behavior in the face of privacy threats as well as privacy concerns. We also welcome more traditional cybersecurity behavioral studies on security and privacy behavior.
Further, we invite submissions that address current topics and issues, such as the use of AI or machine learning for cybersecurity as well as cybersecurity in AI, cybersecurity inclusivity and accessibility for different user groups, and other emerging technologies and challenges. Additionally, we encourage researchers to critically look at the assumptions and values embedded in the current security and privacy research and approaches, which pave the future for empowering and emancipatory approaches to the human role in cybersecurity and privacy.

Track topics
Topics and questions relevant to the track include, but are not limited to:

  *   (Gen)AI/ML for cybersecurity and privacy and cybersecurity in AI
  *   Adoption and use of emerging security technologies and approaches (e.g., ZeroTrust, Security by Design) and (critical) analysis of their organizational implications
  *   Business continuity, Cyber/digital resilience, and Cyber Security Incident Response Management
  *   Security functions as high reliability organizational (HRO) units
  *   Corporate strategies, governance, and compliance in cybersecurity and privacy, within and across organizational boundaries
  *   Critical research on current cybersecurity and privacy research themes such as problematizing the current role of humans in security and privacy
  *   Cybersecurity inclusivity and accessibility
  *   Cybersecurity and privacy risk analysis and management (including standards and standardization of cybersecurity management)
  *   Design and development of cybersecurity and privacy-enhancing technologies, tools, and methods
  *   Empowering humans in security and privacy, e.g. with gamification
  *   Human behavior and user-centric cybersecurity in cybersecurity and privacy
  *   Infrastructures and cybersecurity
  *   Interdependent and group privacy
  *   Privacy calculus, privacy concerns, and identity theft and deception in online communication
  *   Security and privacy of platforms, devices, and applications
  *   Socio-technical policies and mechanisms for countering cyber threats
  *   SETA programs and information security culture, e.g. community and team approach or intrinsic and extrinsic motivation to improve security and privacy behavior






---

Dr. Marko Niemimaa

Professor
Information Systems
University of Agder
Tlf: +47 38 14 18 42
email: marko.niemimaa at uia.no
www.uia.no/en<http://www.uia.no/en>
https://www.uia.no/en/kk/profile/markoin

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.aisnet.org/pipermail/iris_lists.aisnet.org/attachments/20250910/c1d7ff31/attachment-0001.htm>

More information about the IRIS mailing list