Blog

From Statistics to Knowledge: Turning Cybersecurity Statistics into Key Risk Indicators

Posted by Sohayla Fitzpatrick on September 9, 2016 at 14:53

What does Cyber Security Information look like?

New threats:
A Leading indicator of Risk...Threats are all around us, why count them?
- What haven't we seen before -what we don't know can hurt us
- Are new threats arriving faster?
- Is the pattern normal?
Security backlog:
Identify - Protect - Detect - Respond - Recover...Repeat!
- A workload measure - how much work is there for my security operations team?
- Is the "haystack" of events becoming overwhelming?
- How well is the capacity of my team being utilized?

Defense Effectiveness:
Bating Wire and Duct Tape...Are we treating the symptom or the cause
- What are the most persistent threats?
- Are we mitigating threats and vulnerabilities efficiently?
- Which controls work and which ones need to be retired?

Economic view of risk in IT Operations:

FAIR Ontology is a good model to use.

Bringing the Model to life by:

High Relevance
Some Relevance
Model Only

If Models are current, good and useful, they should be used for KRIs.

★

Votes: 0

E-mail me when people leave their comments –

You need to be a member of Global Risk Community to add comments!

Join Global Risk Community

Stay Ahead in GRC - Get Certified & Save with Exclusive Discounts!

Posted by Ece Karel on October 25, 2024 at 11:20

Mastering Risk Management: A Global Perspective on Minimizing Workplace Injuries

Posted by Ece Karel on August 26, 2024 at 12:16

Transforming Your Company with Operational Resilience

Posted by Ece Karel on April 4, 2024 at 11:00

The expanding scope of operational resilience regulatory requirements

Posted by Andrew Lingley on February 16, 2024 at 4:20

The Evolution of User Access Reviews and Certification

Posted by GlobalRiskCommunity on February 1, 2024 at 11:57

Operational resilience: It’s time to embrace the era of constant change

Posted by Andrew Lingley on February 1, 2024 at 6:20

The Sustainable Value Framework: Innovating for Industry Success

Posted by Mark Bridges on November 17, 2024 at 18:51

Common Pitfalls Startups Face and How to Overcome Them

Posted by Myrtle Bautista on November 16, 2024 at 15:18

Embracing Foresight: A Paradigm Shift in Risk Management

Posted by Ece Karel on November 14, 2024 at 8:32

Rare Earth Material Market Growth, Trends, Revenue, Business Challenges and Future Share 2025: MarkNtel Advisors

Posted by Sonu Bhatt on November 13, 2024 at 16:35

Reducing Spare Parts Stockouts and Overstocks with AI

Posted by Robert Wilson on November 13, 2024 at 12:24

The Unpredictable Dance of Chance: Understanding Luck and Probability in Decision Making

Posted by Ece Karel on November 12, 2024 at 12:08

About Us

The GlobalRisk Community is a thriving community of risk managers and associated service providers. Our purpose is to foster business, networking and educational explorations among members. Our goal is to be the worlds premier Risk forum and contribute to better understanding of the complex world of risk.

Useful Links

Business Partners

For companies wanting to create a greater visibility for their products and services among their prospects in the Risk market: Send your business partnership request by filling in the form here!

#xg { position:relative;top:120px; } #xn_bar { top:120px; }

Hello, you need to enable JavaScript to use Global Risk Community.

Please check your browser settings or contact your system administrator.

lead