In this episode, IT student Jurre Cottyn talks with Aous Al Salek, a PhD researcher at the University of Skövde. Aous is studying cybersecurity economic models,  tools that help organizations figure out where to spend their security budget. They exist, but almost no one actually uses them. Too complex, too theoretical, too hard to apply in a real company. Aous breaks down why that is, how regulations like NIS2 and DORA are forcing organizations to think more carefully about security spending, and what he's building to fix the gap.