Marco PeressottiMar 6

🎉Exciting news from @acp: our PhD student Judith Kankam-Boateng just had her first lead-author paper accepted at #CHI2026 @chi

Using workshops and focus groups, Judith mapped cybersecurity mental models across stakeholders in Denmark’s defence including
• policymakers
• industry associations (policy promoters)
• SMEs implementing the policies

👉 Main insight: these groups often think about cybersecurity in fundamentally different ways and this shapes whether policies actually work

🧵1/3

Show threadMarco Peressotti

• Policymakers frame cybersecurity as strategic national resilience
• SMEs often experience it as costly compliance work
• Industry associations sit in the middle trying to translate policy into something companies can realistically implement

These misaligned mental models shape how cybersecurity policies travel from strategy to practice. Even well-designed policies can fail if stakeholders don’t share the same understanding of risks, responsibilities, and priorities.

🧵2/3

Mar 6 at 7:54amWeb
Show threadMarco PeressottiMar 6

The paper maps these gaps and discusses how user-centred cybersecurity interventions and policy communication could better align stakeholders across the three levels of the Danish defence supply chain.

Huge credit to Judith for leading this work. Thanks also to Peter Mayer for co-supervising the project with me, and to the rest of the team for their collaboration.
We are also grateful to Industriens Fond for supporting this research.

See you in Barcelona at #CHI2026

🧵3/3