/

Cyber-Risk Management

Refsdal Atle Solhaug, Bjørnar Stølen, Ketil
Heftet / 2015 / Engelsk

Produktdetaljer

ISBN
9783319235691
Publisert
2015-10-12
Utgiver
Vendor
Springer International Publishing AG
Høyde
235 mm
Bredde
155 mm
Aldersnivå
Research, P, 06
Språk
Product language
Engelsk
Format
Product format
Heftet

Forfatter
Refsdal Atle
Solhaug, Bjørnar
Stølen, Ketil

Biographical note

Atle Refsdal is a senior research scientist at SINTEF ICT in Norway, where he is involved in international as well as national research projects. His research interests include formal specification and analysis, as well as model-based risk analysis. In addition to his academic background he also has several years of industrial experience from the fields of knowledge engineering and industrial automation.

Ketil Stølen has broad experience from basic research as well as applied research. He has led the development of the CORAS method since the very beginning and was the technical manager of the related EU-project. Since then, he has led several research projects funded by the Research Council of Norway which considerably refined and extended the original CORAS approach. A book on the CORAS method supported by a free tool was published in 2011.

Bjørnar Solhaug is a senior research scientist at SINTEF ICT in Norway. His research interests include risk and security management, threat and risk modelling, and formal/semi-formal techniques. He is one of the co-authors of the book on the CORAS approach to model-driven risk analysis (Springer 2011).

Cyber-Risk Management

Refsdal Atle Solhaug, Bjørnar Stølen, Ketil
Heftet / 2015 / Engelsk
Refsdal Atle Solhaug, Bjørnar Stølen, Ketil
Heftet / 2015 / Engelsk
Nettpris:
858,-
Laveste pris siste 30 dager: 858,-
På lager, sendes nå
Klikk og hent
This book provides a brief and general introduction to cybersecurity and cyber-risk assessment. Not limited to a specific approach or technique, its focus is highly pragmatic and is based on established international standards (including ISO 31000) as well as industrial best practices. It explains how cyber-risk assessment should be conducted, which techniques should be used when, what the typical challenges and problems are, and how they should be addressed.The content is divided into three parts. First, part I provides a conceptual introduction to the topic of risk management in general and to cybersecurity and cyber-risk management in particular. Next, part II presents the main stages of cyber-risk assessment from context establishment to risk treatment and acceptance, each illustrated by a running example. Finally, part III details four important challenges and how to reasonably deal with them in practice: risk measurement, risk scales, uncertainty, and low-frequency risks with high consequence. The target audience is mainly practitioners and students who are interested in the fundamentals and basic principles and techniques of security risk assessment, as well as lecturers seeking teaching material. The book provides an overview of the cyber-risk assessment process, the tasks involved, and how to complete them in practice.
Les mer
This book provides a brief and general introduction to cybersecurity and cyber-risk assessment. Finally, part III details four important challenges and how to reasonably deal with them in practice: risk measurement, risk scales, uncertainty, and low-frequency risks with high consequence.
Les mer
1 Introduction.- Part I Conceptual Introduction.- 2 Risk Management.- 3 Cyber-systems.- 4 Cybersecurity.- 5 Cyber-risk Management.- Part II Cyber-risk Assessment Exemplified.- 6 Context Establishment.- 7 Risk Identification.- 8 Risk Analysis.- 9 Risk Evaluation.- 10 Risk Treatment.- Part III Known Challenges and How to Address Them in Practice.- 11 Which Measure of Risk Level to Use?- 12 What Scales Are Best Suited Under What Conditions?- 13 How to Deal with Uncertainty?- 14 High-consequence Risk with Low Likelihood.- 15 Conclusion.- Glossary.- References.- Index.
Les mer
This book provides a brief and general introduction to cybersecurity and cyber-risk assessment. Not limited to a specific approach or technique, its focus is highly pragmatic and is based on established international standards (including ISO 31000) as well as industrial best practices. It explains how cyber-risk assessment should be conducted, which techniques should be used when, what the typical challenges and problems are, and how they should be addressed.The content is divided into three parts. First, part I provides a conceptual introduction to the topic of risk management in general and to cybersecurity and cyber-risk management in particular. Next, part II presents the main stages of cyber-risk assessment from context establishment to risk treatment and acceptance,  each illustrated by a running example. Finally, part III details four important challenges and how to reasonably deal with them in practice: risk measurement, risk scales, uncertainty, and low-frequency risks with high consequence. The target audience is mainly practitioners and students who are interested in the fundamentals and basic principles and techniques of security risk assessment, as well as lecturers seeking teaching material. The book provides an overview of the cyber-risk assessment process, the tasks involved, and how to complete them in practice.
Les mer
Shows a strong pragmatic orientation by explaining not only what security risk assessment is, but also how to do it Illustrates the various risk assessment tasks and how to conduct them using a running example Presents several typical challenges in risk analysis and how to deal with them Includes supplementary material: sn.pub/extras
Les mer

Relaterte produkter

This book provides a brief and general introduction to cybersecurity and cyber-risk assessment. Not limited to a specific approach or technique, its focus is highly pragmatic and is based on established international standards (including ISO 31000) as well as industrial best practices. It explains how cyber-risk assessment should be conducted, which techniques should be used when, what the typical challenges and problems are, and how they should be addressed.The content is divided into three parts. First, part I provides a conceptual introduction to the topic of risk management in general and to cybersecurity and cyber-risk management in particular. Next, part II presents the main stages of cyber-risk assessment from context establishment to risk treatment and acceptance, each illustrated by a running example. Finally, part III details four important challenges and how to reasonably deal with them in practice: risk measurement, risk scales, uncertainty, and low-frequency risks with high consequence. The target audience is mainly practitioners and students who are interested in the fundamentals and basic principles and techniques of security risk assessment, as well as lecturers seeking teaching material. The book provides an overview of the cyber-risk assessment process, the tasks involved, and how to complete them in practice.
Les mer
This book provides a brief and general introduction to cybersecurity and cyber-risk assessment. Finally, part III details four important challenges and how to reasonably deal with them in practice: risk measurement, risk scales, uncertainty, and low-frequency risks with high consequence.
Les mer
1 Introduction.- Part I Conceptual Introduction.- 2 Risk Management.- 3 Cyber-systems.- 4 Cybersecurity.- 5 Cyber-risk Management.- Part II Cyber-risk Assessment Exemplified.- 6 Context Establishment.- 7 Risk Identification.- 8 Risk Analysis.- 9 Risk Evaluation.- 10 Risk Treatment.- Part III Known Challenges and How to Address Them in Practice.- 11 Which Measure of Risk Level to Use?- 12 What Scales Are Best Suited Under What Conditions?- 13 How to Deal with Uncertainty?- 14 High-consequence Risk with Low Likelihood.- 15 Conclusion.- Glossary.- References.- Index.
Les mer
This book provides a brief and general introduction to cybersecurity and cyber-risk assessment. Not limited to a specific approach or technique, its focus is highly pragmatic and is based on established international standards (including ISO 31000) as well as industrial best practices. It explains how cyber-risk assessment should be conducted, which techniques should be used when, what the typical challenges and problems are, and how they should be addressed.The content is divided into three parts. First, part I provides a conceptual introduction to the topic of risk management in general and to cybersecurity and cyber-risk management in particular. Next, part II presents the main stages of cyber-risk assessment from context establishment to risk treatment and acceptance,  each illustrated by a running example. Finally, part III details four important challenges and how to reasonably deal with them in practice: risk measurement, risk scales, uncertainty, and low-frequency risks with high consequence. The target audience is mainly practitioners and students who are interested in the fundamentals and basic principles and techniques of security risk assessment, as well as lecturers seeking teaching material. The book provides an overview of the cyber-risk assessment process, the tasks involved, and how to complete them in practice.
Les mer
Shows a strong pragmatic orientation by explaining not only what security risk assessment is, but also how to do it Illustrates the various risk assessment tasks and how to conduct them using a running example Presents several typical challenges in risk analysis and how to deal with them Includes supplementary material: sn.pub/extras
Les mer

Produktdetaljer

ISBN
9783319235691
Publisert
2015-10-12
Utgiver
Vendor
Springer International Publishing AG
Høyde
235 mm
Bredde
155 mm
Aldersnivå
Research, P, 06
Språk
Product language
Engelsk
Format
Product format
Heftet

Forfatter
Refsdal Atle
Solhaug, Bjørnar
Stølen, Ketil

Biographical note

Atle Refsdal is a senior research scientist at SINTEF ICT in Norway, where he is involved in international as well as national research projects. His research interests include formal specification and analysis, as well as model-based risk analysis. In addition to his academic background he also has several years of industrial experience from the fields of knowledge engineering and industrial automation.

Ketil Stølen has broad experience from basic research as well as applied research. He has led the development of the CORAS method since the very beginning and was the technical manager of the related EU-project. Since then, he has led several research projects funded by the Research Council of Norway which considerably refined and extended the original CORAS approach. A book on the CORAS method supported by a free tool was published in 2011.

Bjørnar Solhaug is a senior research scientist at SINTEF ICT in Norway. His research interests include risk and security management, threat and risk modelling, and formal/semi-formal techniques. He is one of the co-authors of the book on the CORAS approach to model-driven risk analysis (Springer 2011).

Relaterte produkter