Many organizational tasks are dependent on IT systems. This means that there is a need to develop support for how this type of systems can be analyzed in risk and vulnerability analyses. This will be carried out in a number of tasks. A survey of affected IT systems will be carried out, and after this a survey of IT related incidents will be conducted. Based on this, guidelines for risk and vulnerability analysis for organizations with a large degree of IT systems will be formulated and evaluated. The research is conducted in the research program PRIVAD (Program for Risk and Vulnerability Analysis Development), funded by the Swedish Civil Contingencies Agency (MSB). The research program lasts from 2011 to 2015 and the PhD student will be one of four PhD students that start simultaneously at the university in the four parts the program.
The basic eligibility for graduate studies corresponds to: an academic exam on the advanced undergraduate level and coursework corresponding to at least 240 ECTS, out of which at least 60 ECTS on advanced level, or corresponding knowledge obtained some other way in Sweden or elsewhere.