Explore our knowledge

Jan Lem­nitzer

Tenure Track Assistant Professor

Subjects
International law Supply chain IT Geopolitics Security Infrastructure

Primary research areas

Sup­ply Chain Cy­ber­se­cur­ity
Many com­pan­ies struggle to mon­it­or and man­age cy­ber risks in their sup­ply chains. With new rules mak­ing this com­puls­ory for crit­ic­al in­fra­struc­ture, this pro­ject designs tools and tem­plates to help small firms without cy­ber­se­cur­ity or com­pli­ance ex­pert­ise man­age and doc­u­ment these risks.
Cy­ber in­sur­ance
The cy­ber in­sur­ance in­dustry mis­un­der­stood and mis­priced the risk from ransom­ware but re­mains a po­ten­tial life­line for many com­pan­ies that fall vic­tim to cy­ber­at­tacks. A key ques­tion is: to what ex­tent can in­surers act as de facto reg­u­lat­ors and raise cy­ber­se­cur­ity stand­ards in com­pan­ies by mak­ing ex­pli­cit de­mands for grant­ing a policy?
Cy­bernorms and the geo­pol­it­ics of cy­ber­se­cur­ity
Who will rule cy­ber­space? As the United Na­tions, power­ful na­tion states and the tech gi­ants all com­pete for the right to write the rules and for con­trol of key as­sets that un­der­pin the in­ter­net, the geo­pol­it­ics of our new di­git­al­ized world are only be­gin­ning to emerge.

Cy­ber­se­cur­ity is com­plex and in­ter­dis­cip­lin­ary – my goal is to make it un­der­stand­able and ac­cess­ible

Jan Martin Lemnitzer is Assistant Professor at the Department of Digitalization, Copenhagen Business School. Coming from a background in international politics and history, his research explores the rise of cybersecurity as a national security issue. A key theme is the implementation of the NIS 2 Directive aiming to protect critical infrastructure from cyberthreats – how can the many thousands of  smaller companies facing cybersecurity regulation for the first time fulfil these new requirements? Leading a 5.6 million DKK research project funded by Industriensfond, Jan developed the SUCCESS (Supply Chain Cybersecurity for SMEs) tool that allows companies without cybersecurity or compliance expertise to assess and manage the cyber risks in their supply chain. Other research and teaching interests include general business cyber security, cyber insurance and the politics of big tech. Jan is a regular contributor to Danish and international media on cyber security and cyber conflict

Recent research projects

Cy­ber­se­cur­ity of sup­ply chains: provid­ing ac­tion­able guid­ance for SME’s

Pro­ject SUC­CESS de­vel­ops a tool to help SMEs as­sess, man­age, and doc­u­ment sup­ply chain cy­ber risks for reg­u­lat­ors and cus­tom­ers. Launch: Oct 2025.

Outside activities

JML Cyber Policy Consulting, 2020–present

Con­sult­ing and pub­lic and private lec­tures.

Geneva Dialogue on Responsible Behaviour in Cyberspace, 2022–present

Mem­ber of the Geneva Dia­logue and reg­u­lar con­trib­ut­or to work ses­sions, pub­lic­a­tions and events.
https://genevadialogue.ch/

Paris Call for Trust and Security in Cyberspace, 2021–2022

Mem­ber of work­ing groups 4 (cy­ber norms) and 6 (ICT sup­ply chain se­cur­ity)