Risk Management of Cyber-Physical
The module emphasizes the integration of legal frameworks, best practices, and case studies to develop resilient, safe, and secure cyber-physical systems.

Integrate risk assesment for resilient, safe and secure cyber-physical systems

The module emphasizes the integration of legal frameworks, best practices, and case studies to develop resilient, safe, and secure cyber-physical systems, especially in critical infrastructure. Participants will learn to perform continuous risk assessments, manage organizational and human factors, and implement strategies for business continuity and interdependent system resilience.

Module Information

The module emphasizes the integration of legal frameworks, best practices, and case studies to develop resilient, safe, and secure cyber-physical systems, especially in critical infrastructure. Participants will learn to perform continuous risk assessments, manage organizational and human factors, and implement strategies for business continuity and interdependent system resilience.

Key Details

This module is delivered in hybrid format, as a combination of online, in-person and self-learning activities. The module uses innovative hybrid learning methods that combine live (synchronous) and self-paced (asynchronous) activities, with particular focus on practical activities and real-world scenarios connected to cybersecurity. Expert tutors guide students through the material, ensuring a comprehensive learning experience.

This module aims to equip participants with a comprehensive understanding of risk assessment, management, and mitigation strategies tailored to complex cyber-physical environments. Toward this goal the module employs periodic quizzes, seminar work and practical assignments.

Time commitment:

  • Online activities: 7 hours
  • In-person activities: 7 hours
  • Self-learning: 28 hours
  • Individual, team and guided projects and activities: 58 hours
    – Total: 100 hours

Credit points: 4 ECTS

Grading:

  • Lecture quizzes: 10%
  • Seminar work: 10%
  • Assignments: 30%
  • Exam: 50% (scenario essay, practical exam)
Apply now

Subjects covered

Course introduction. Risk management concept and process. Risk-based technology selection and adoption

System safety engineering of cyber-physical systems. Risk Engineering methods

Risk Analysis of Socio-Technical systems

Cyber Risk modelling

Challenges and Advances in Industrial Cyber Risk Assessment

Cyber risk maturity models and management

Case study by practitioners: Cybersecurity Threats, Strategy and Management at IntesaSanPaolo

Case study by practitioners: Cyber and Physical Risk Management at SNAM spa

Business Continuity Management

Business Continuity Management – serious game session 1

Business Continuity Management – serious game session 2

Cybersecurity for Critical Infrastructure

Apply now

Learning objectives

Apply risk engineering methods such as FMECA, FTA, ETA, and PRA to assess and analyze vulnerabilities, failure modes, and cascading risks within cyber-physical systems.

Conduct comprehensive risk assessments of socio-technical systems, including business impact analysis, threat modeling, and scenario planning.

Develop and implement risk mitigation strategies—such as recovery plans, organizational resilience measures, and security controls—aligned with industry best practices and legal requirements.

Utilize maturity models (e.g., CMMs, DevSecOps, SBOM) and tools to evaluate and enhance an organization’s cyber risk posture.

Design continuous risk assessment frameworks and integrate them into organizational governance, security policies, and cyber resilience strategies.

Apply now

Module leaders

Alexandru Văduva is a Lecturer in the Department of Computer Science and Engineering at the National University of Science and Technology POLITEHNICA Bucharest (UNSTPB). He obtained his Ph.D. in 2020, with a specialization in Security in Automotive Linux, focusing on the security of vehicle internal architectures.

His research interests include automotive cybersecurity, host intrusion detection systems, source code and binary analysis, embedded devices, and operating systems. He has contributed to national and international research projects such as POCU/993/6/13-153178: Research Performance and Digital Twins for Complex Infrastructures and Urban Ecosystems.

He has professional experience in the automotive and telecommunications industries, having worked for companies such as Luxoft, Enea, Mentor Graphics, and Siemens. These roles enabled him to stay closely connected with cutting-edge technologies and to collaborate with major automotive OEMs.

His teaching portfolio includes courses on operating systems, computer networks, microcontroller design, computer engineering, embedded systems, and embedded systems security. He is the author of over 15 scientific articles presented at national and international conferences, two books, and is actively involved in open-source initiatives focused on standardizing secure Linux integration in automotive environments.

Apply now

Making Europe cyber-aware

Our digital world is under constant attack. Master the advanced skills to defend critical data and infrastructure. Become a sought-after expert in one of today’s most vital and in-demand career fields.

Download prospectus

newsletterStay ahead in cybersecurity

Subscribe to our newsletter for exclusive insights and breakthroughs from Digital4Security directly to your inbox

Applications Open
Hybrid Course Pathway
Application deadline:
13/09/2025
Course starts:
29/09/2025
Course duration:
2 years, 4 semesters, part-time
Course delivery:
Hybrid program
Certification:
ARACIS (Romania)-accredited masters's degree (120 ECTS)
Language:
English
contact Get in Touch
Apply now
Apply nowcontact