Tibor Pósa

Tibor Pósa is a PhD candidate at the Chair of Cyber Trust, where he previously also was a member of the scientific staff.

His PhD research activity is focusing on the topic of Cyber-security Risk Governance for corporate/enterprise entities, to develop "better practices" and practical guidelines for cyber-security risk management. His particular interest is the future oriented work environment of remote work, devices of shadow IT, social engineering techniques to compromise remote and other employees and smart devices/smart device apps utilized in a corporate setting. He's partnering with corporate and other entities to survey and research the current status of their risk govermance frameworks and propose steps to develop these.

Prior to starting his PhD research at the Chair of Cyber Trust, Tibor spent 20+ years in the corporate/business sector working as an internal auditor for multinational entities and Big 4 global consultancy companies, including 15+ years in various managerial roles. He also spent 4 years working based out of Dublin (Ireland) in the early 2000s as a software license contract compliance auditor and visited clients in almost all European countries.  His last role was Head of Internal Audit of a Germany-based multinational energy company in one if it's subsidiaries in Hungary.

Tibor is holding US-based postgraduate certificates of Certified Internal Auditor (CIA), Certified Information System Auditor (CISA), Certified Fraud Examiner (CFE). He is member of the following global professional associations: IIA (Institute of Internal Auditors), ISACA (Information Systems Audit and Control Association), and ACFE (Association of Certified Fraud Examiners).


  1. Tibor Pósa, & Jens Grossklags (2022) Work Experience as a Factor in Cyber-Security Risk Awareness: A Survey Study with University Students. Journal of Cybersecurity and Privacy, 2(3), 490-515. Publisher Version (Open Access)