Dr. Elżbieta Andrukiewicz is an expert on information security management systems. Her main areas of interest are methods for information and ICT security assessments and evaluations, information security management system development and implementation, methods, development and integration of the risk management systems in organizations, information and ICT security audits.
She is a standardization expert of the ISO/IEC JTC1 Subcommittee SC27 „Information techniques – IT Security Techniques”, and editor of several International Standards for information and ICT security. Working recently for ENISA and the European Commission.
She is Project Manager of the Polish National Scheme for ICT Product Security Evaluation and Certification compliant to Common Criteria (KSO3C project).