World Economic Forum – Partnering for Cyber Resilience Towards the Quantification of Cyber Threats | L' INTELLIGENCE CYBER par Jean-Paul Pinte

Publié par : pintejp | mars 30, 2015

World Economic Forum – Partnering for Cyber Resilience Towards the Quantification of Cyber Threats

World Economic Forum – Partnering for Cyber Resilience Towards the Quantification of Cyber Threats – 20 pages

Cyber risk management is an imperative to organizations today. This report outlines a “cyber value-at-risk” framework that seeks to unify all dimensions of cyberthreats and encourages organizations to create robust cyber risk models. This should help increase confidence regarding decisions to invest, distribute, offload and/or retain cyber risks.

Executive Summary 3
Background 5
Kick-off and context 5
Building awareness 6
Issuing targeted guidance 6
Proposing an assessment framework 6
Introduction 7
Cyber Value-At-Risk Foundations 8
Models used for cyber threats assessment 8
What is cyber value-at-risk? 9
Mapping to enterprise risk management frameworks 12
Quantifying assets with significant losses 13
Practical example 13
Calculating risk 13
Addressing Cyber Value-At-Risk Limitations 14
Availability of data 14
Availability of standardized maturity frameworks 14
Mitigation strategies 14
Path Forward 14