Blog

From Statistics to Knowledge: Turning Cybersecurity Statistics into Key Risk Indicators

Posted by Sohayla Fitzpatrick on September 9, 2016 at 14:53

What does Cyber Security Information look like?

New threats:
A Leading indicator of Risk...Threats are all around us, why count them?
- What haven't we seen before -what we don't know can hurt us
- Are new threats arriving faster?
- Is the pattern normal?
Security backlog:
Identify - Protect - Detect - Respond - Recover...Repeat!
- A workload measure - how much work is there for my security operations team?
- Is the "haystack" of events becoming overwhelming?
- How well is the capacity of my team being utilized?

Defense Effectiveness:
Bating Wire and Duct Tape...Are we treating the symptom or the cause
- What are the most persistent threats?
- Are we mitigating threats and vulnerabilities efficiently?
- Which controls work and which ones need to be retired?

Economic view of risk in IT Operations:

FAIR Ontology is a good model to use.

Bringing the Model to life by:

High Relevance
Some Relevance
Model Only

If Models are current, good and useful, they should be used for KRIs.

★

Votes: 0

E-mail me when people leave their comments –

You need to be a member of Global Risk Community to add comments!

Join Global Risk Community

Transforming Your Company with Operational Resilience

Posted by Ece Karel on April 4, 2024 at 11:00

The expanding scope of operational resilience regulatory requirements

Posted by Andrew Lingley on February 16, 2024 at 4:20

The Evolution of User Access Reviews and Certification

Posted by GlobalRiskCommunity on February 1, 2024 at 11:57

Operational resilience: It’s time to embrace the era of constant change

Posted by Andrew Lingley on February 1, 2024 at 6:20

The Future of AI in Insurance Insights Report Released

Posted by Adam Miller on January 31, 2024 at 10:00

Safeguarding the future: why building resilient and responsible enterprises is essential for Boards

Posted by Andrew Lingley on January 18, 2024 at 11:20

Europe IT Training Market to Expand at a CAGR of 3.40% Over 2024-2032

Posted by RahulGautam on April 24, 2024 at 10:47

In-depth Examination: Europe's Data Center Market Trends 2024-2032

Posted by Simran Kukreja on April 23, 2024 at 7:58

Projected Growth of 14.20% CAGR in the Mexico Fintech Market from 2024 to 2032

Posted by RahulGautam on April 22, 2024 at 14:29

Creating a Framework for Post-Merger Integration and Innovation

Posted by Mark Bridges on April 20, 2024 at 23:39

Managing Global Risk through Pricing in Volatile Markets

Posted by Mark Bridges on April 19, 2024 at 14:29

Applying Kaizen to Digital Transformation: RPA, AI, Analytics

Posted by Mark Bridges on April 18, 2024 at 15:48

About Us

The GlobalRisk Community is a thriving community of risk managers and associated service providers. Our purpose is to foster business, networking and educational explorations among members. Our goal is to be the worlds premier Risk forum and contribute to better understanding of the complex world of risk.

Useful Links

Business Partners

For companies wanting to create a greater visibility for their products and services among their prospects in the Risk market: Send your business partnership request by filling in the form here!

#xg { position:relative;top:120px; } #xn_bar { top:120px; }

Hello, you need to enable JavaScript to use Global Risk Community.

Please check your browser settings or contact your system administrator.

lead