Members of the discipline are leading the research, education, and innovation activities in information and cyber security within the department. The discipline is the largest unit within the department and consists of around 70 staff members: 17 permanent staff (Professors and Associate Professors), 17 PostDocs and researchers, 26 PhD students, and 8 adjunct and affiliated members (August 2022).

Members from our discipline work in these groups:

• the Critical Infrastructure Security and Resilience Group (CISaR)
• the eHealth and Welfare Security (eHWS)
• Multidisciplinary Research group on Privacy and data protEcTion (MR PET)
• Norwegian Biometrics Laboratory (NBL)
• the NTNU Digital Forensics Group
• System Security Group (S2G)

Currently, members of the discipline participate in around 33 research projects, both Norwegian and international. Also, members of the discipline have established and are leading the SFI Norwegian Centre for Cybersecurity in Critical Sectors (NORCICS). Additionally, Members of the discipline are the main responsible for operations and R&D activities within the Norwegian Cyber Range, with the focus on tactical and operational training and competence development, as well as system security testing and evaluation. Discipline members are also involved in most activities within the Center for Information and Communication Security (CCIS). Members of the discipline are also responsible for the selection, training, and participation of the Norwegian team within the Norwegian Cyber Security Challenge (NSCS), and the European Cyber Security Challenge (ECSC).

The research conducted and education offered by members of the discipline cover a wide range of areas within information security. This includes, among others, critical infrastructure security, privacy protection, biometrics, forensics, and system and software security. The research conducted by various members aims at developing advanced models, methods, tools, and processes for preparing, training, protecting, detecting, and responding to cyber-attacks in various application domains, like healthcare, law enforcement, smart cities, finance, telecommunication, transportation, education, and entertainment. We also contribute to knowledge and competence building through education, training, and exercises within information security.