Stefan Laube

Dr. Stefan Laube

mail AT stefan-laube DOT de

Works at Deloitte's Cyber Strategy & Transformation department, leading cybersecurity transformation engagements for DAX 40 companies and organizations in the automotive, manufacturing, and financial sectors. Specialises in cybersecurity strategy, risk management, and regulatory compliance — including NIS-2. Beyond advisory work, has held executive security responsibility, driving security posture improvements and regulatory alignment.

Holds a doctorate from Westfälische Wilhelms-Universität Münster under Professor Rainer Böhme, with award-winning research on the economics of cyber risk — recognised with the Lloyd's of London Science of Risk Prize in the Cyber Risk category. Teaches security management at the International School of IT Security in Bochum.

Find me on LinkedIn.

Publications

(Google Scholar)

Dissertation

  • Cyber risk information sharing with authorities.
    Stefan Laube.
    PhD thesis, Westfälische Wilhelms-Universität Münster, School of Business and Economics, Münster, Germany, 2017 [PDF]

Security Economics

  • A fundamental approach to cyber risk analysis.
    Rainer Böhme, Stefan Laube, and Markus Riek.
    Variance, 11(2), 2018
  • Strategic aspects of cyber risk information sharing.
    Stefan Laube and Rainer Böhme.
    ACM Computing Surveys, 50(5), 2017 [PDF]
  • Economics of ransomware attacks.
    Terrence August, Duy Dao, Stefan Laube, and Florin Niculescu.
    In Workshop on Information Systems and Economics (WISE), Seoul, South Korea, 2017
  • The economics of mandatory security breach reporting to authorities.
    Stefan Laube and Rainer Böhme.
    Journal of Cybersecurity, 2(1):29--41, 2016 [Publisher]
  • Mandatory security information sharing with authorities: implications on investments in internal controls.
    Stefan Laube and Rainer Böhme.
    In ACM Conference on Computer and Communication Security (ACM CCS), Workshop on Information Sharing and Collaborative Security, Denver, CO, USA, 2015
  • Meldepflichten für IT-Sicherheitsvorfälle: Ein Prinzipal-Agent-Ansatz.
    Stefan Laube and Rainer Böhme.
    In Oliver Thomas and Frank Teuteberg, editors, Tagungsband Wirtschaftsinformatik, pages 1146--1162, Osnabrück, Germany, 2015
  • The economics of mandatory security breach reporting to authorities.
    Stefan Laube and Rainer Böhme.
    In Workshop on the Economics of Information Security (WEIS), Delft University of Technology, The Netherlands, 2015
  • Das IT-Sicherheitsgesetz.
    Rainer Böhme and Stefan Laube
    In J. Baetge and H.-J. Kirsch, editors, Mittelstand im Blick: Compliance und Risikomanagement, pages 17--36, Düsseldorf, Germany, 2014. IDW

Privacy

  • Webcam covering as planned behavior.
    Dominique Machuletz, Stefan Laube, and Rainer Böhme.
    In Conference on Human Factors in Computing Systems (ACM CHI), Montreal, Canada, 2018 [Publisher]
  • Users protect their privacy if they can: determinants of webcam covering behavior.
    Dominique Machuletz, Henrik Sendt, Stefan Laube, and Rainer Böhme.
    In Proceedings of the 1st European Workshop on Usable Security (EuroUSEC), Darmstadt, Germany, 2016 [PDF]
Stefan Laube