How to measure anything in cybersecurity risk / Douglas W. Hubbard, Richard Seiersen.
By: Hubbard, Douglas W [author.]
Contributor(s): Seiersen, Richard [author.]
Language: English Publisher: Hoboken, New Jersey : Wiley, ©2023Edition: Second editionDescription: 1 online resourceContent type: text Media type: computer Carrier type: online resourceISBN: 9781119892304 ; 9781119892311; 1119892317; 9781119892328; 1119892325; 9781119892335; 1119892333Subject(s): Cyberterrorism | Cyberspace -- Security measures | Risk management | Risk ManagementAdditional physical formats: Print version:: No titleDDC classification: 658.4/78 LOC classification: HV6773.15.C97 | H835 2023Online resources: Full text available at Wiley Online Library Click here to view| Item type | Current location | Home library | Call number | Status | Date due | Barcode | Item holds |
|---|---|---|---|---|---|---|---|
EBOOK
|
COLLEGE LIBRARY | COLLEGE LIBRARY | 658.478 H8613 2023 (Browse shelf) | Available | CL-53709 |
Browsing COLLEGE LIBRARY Shelves Close shelf browser
|
|
|
|
|
|
|
||
| 658.4770202 C246 1991 Disaster management : a disaster manager's handbook / | 658.478 D3629 2020 Cybersecurity and decision makers : data security and digital trust / | 658.478 D3629 2020 Cybersecurity and decision makers : data security and digital trust / | 658.478 H8613 2023 How to measure anything in cybersecurity risk / | 658.478 M851 2021 Privacy, regulations, and cybersecurity: the essential business guide / | 658.478 N14 2011 Web commerce security : design and development / | 658.478 Sch68 2015 Information assurance handbook : effective computer security and risk management strategies / |
Table of Contents
Foreword for the Second Edition Jack Jones ix
Acknowledgments xiii
Preface xv
Introduction 1
Part I Why Cybersecurity Needs Better Measurements for Risk 5
Chapter 1 The One Patch Most Needed in Cybersecurity 7
Chapter 2 A Measurement Primer for Cybersecurity 21
Chapter 3 The Rapid Risk Audit: Starting With a Simple Quantitative Risk Model 43
Chapter 4 The Single Most Important Measurement in Cybersecurity 73
Chapter 5 Risk Matrices, Lie Factors, Misconceptions, and Other Obstacles to Measuring Risk 101
Part II Evolving the Model of Cybersecurity Risk 133
Chapter 6 Decompose It: Unpacking the Details 135
Chapter 7 Calibrated Estimates: How Much Do You Know Now? 155
Chapter 8 Reducing Uncertainty with Bayesian Methods 183
Chapter 9 Some Powerful Methods Based on Bayes 193
Part III Cybersecurity Risk Management for the Enterprise 231
Chapter 10 Toward Security Metrics Maturity 233
Chapter 11 How Well Are My Security Investments Working Together? 257
Chapter 12 A Call to Action: How to Roll Out Cybersecurity Risk Management 277
Appendix A Selected Distributions 289
Appendix B Guest Contributors 297
Index 327
In the newly revised How to Measure Anything in Cybersecurity Risk, Second Edition, a pioneering information security professional and a leader in quantitative analysis methods delivers yet another eye-opening text applying the quantitative language of risk analysis to cybersecurity. In the book, the authors demonstrate how to quantify uncertainty and shed light on how to measure seemingly intangible goals. It's a practical guide to improving risk assessment with a straightforward and simple framework.
About the Author
DOUGLAS W. HUBBARD is the inventor of the Applied Information Economics (AIE) method and the founder of Hubbard Decision Research. He is an internationally recognized expert in the area of decision analysis.
RICHARD SEIERSEN is the Chief Risk Officer of Resilience, a cyberinsurance firm. He is the former Chief Information Security Officer at LendingClub, Twilio, and GE Healthcare and Co-founder of the cloud native security company Soluble – sold to Lacework in 2021.
There are no comments for this item.