Skip to main content
Risk Management

Risk management

In order to maximize the benefits of digitization, we need to manage information security risks—whether as an individual, an organization, or society as a whole. The secure and reliable functioning of IT is the foundation of digitalization.

Information security risks are transboundary, systemic, and complex in nature, and therefore pose a significant challenge for risk managers. In a nutshell, risk management is the ongoing process of identifying, assessing, evaluating, and responding to risk. In practice, risk management requires constant decision-making about cost-benefit tradeoffs of security measures and a balancing of priorities.
At DSI, we research new and emerging information security risks and their impact on organizations and societies more broadly. We examine how to effectively and efficiently assess and manage information security risks at the individual, organizational, and societal levels.


Our team works on

  • Methods, tools, and processes for assessing  and managing information security risks
  • Models to map uncertainty in risk assessment and volatility of complex ICT infrastructures 
  • Management of pervasive information security risks in the internet of things
  • Multi-level risk governance processes in the fields of information security and data protection
Meet our Experts

Isabel Skierka

Researcher and Project Lead, DSI
+49 30 21231–1653

Heli Tiirmaa-Klaar

Director, DSI
+49 30 21231–1652

Dr. Henning Lahmann

Senior Researcher, DSI
+49 30 212 31-1658