The core of my research revolves around critically analyzing IT security as both a technical and socially constructed field. I explore how protective measures and security practices are, on the one hand, technically implemented and, on the other hand, discursively produced, legitimized, and stabilized, while examining the role that the construction of threat scenarios plays in this process. Central to this inquiry are the symbolic orders and narratives that shape and structure security technologies, surveillance practices, and algorithmic control.

Methodologically, I employ Natural Language Processing (NLP), particularly large language models (LLMs), to support qualitative content and discourse analyses. My focus lies on methodologically reflecting upon and further developing computer-assisted approaches to analyzing (cyber)security-related text corpora. The goal is to integrate technology-based analysis methods with interpretive research strategies in order to capture discursive dynamics both accurately and transparently.

On a practical level, my work emphasizes organizational measures such as Information Security Management Systems (ISMS) and technical IT penetration testing.