Oksana Kulyk

Oksana Kulyk

Associate professor at IT University of Copenhagen. Research interests focus on human and societal factors in cybersecurity and privacy

About me

I am associate professor at the IT University of Copenhagen (ITU) and a member of the Center for Information Security and Trust (CISAT). I have previously worked as a post-doc in the Security, Usability and Society (SECUSO) research group at Karlsruhe Institute of Technology (KIT), in particular, collaborating on the EU Project “Safe-Guarding Home IoT Environments with Personalised Real-time Risk Control” (GHOST), and before that, at Technische Universität Darmstadt (TUDa). I have received my doctorate from TUDa in 2017.

My research interests focus on human and societal factors in cybersecurity and privacy. This includes such topics as:

  • Cyberwarfare and effects of geopolitical tensions on cybersecurity for organisations and individuals
  • Organisational aspects of cybersecurity in tech companies and critical infrastructure
  • Effects of AI technologies on cybersecurity and privacy behavior
  • E-voting and other forms of e-participation, incl. aspects of cryptography and human factors as well as issues of coercion resistance and verifiability
  • Privacy, incl. human factors and technical solutions for privacy-enchancing technologies, privacy decision support, privacy notices, usable privacy settings, transparency
  • Cybersecurity and privacy technologies for high-risk and marginalised populations
  • Trust and acceptance of cybersecurity- and privacy-critical technologies

Potential student projects: Contact me if you are interested in doing a project, including writing a Bachelor/Master thesis, related to these interests.

Projects (selected)

Ongoing:

  • UCORV (Usable and Coercion-Resistant Voting) funded by Independent Research Fund Denmark (Inge Lehmann Program). Project goal: design and evaluate methods that allow voters to cast their votes in Internet voting systems while avoiding coercion.
  • ODC (Optimising Denmark’s Cyber Emergency) funded by National Defence Technology Center. Project goal: investigate the impact of cyberwarfare activities on critical infrastructure in Denmark and Ukraine and derive recommendations for better protection and preparedness against large-scale cyberattacks.

Past:

  • ASCD (Assessment of the Status of Cybersecurity in Denmark) funded by the Danish Centre for Cybersecurity. Project goal: investigating cybersecurity and privacy practices in Danish companies.
  • COMET (Communicating Trust in the Security of Election Technologies) funded by Velux Foundation (Villum Experiment Program). Project goal: understand how trust in election technologies is created and maintained among the voters, and how should voting systems be designed in order to facilitate this trust.

Teaching (lectures)

  • Fall 2025: Data-driven security (ITU)
  • Fall 2019-2025: Security and Privacy (ITU)
  • Spring 2025: Ethical hacking (ITU)
  • Spring 2020, 2021: Security 2 (ITU)
  • Fall 2019-2022: Advanced security, “Usable security” module (ITU)
  • Winter 2018/2019: E-Voting (KIT)
  • Summer 2018: E-Voting (KIT)