Hubbard, Douglas W.,  1962- <br/><br/>
How to measure anything in cybersecurity risk / 
Douglas W. Hubbard, Richard Seiersen. 
 - Second edition. 
 - 1 online resource. 
<br/><br/>Table of Contents<br/>Foreword for the Second Edition Jack Jones ix<br/><br/>Acknowledgments xiii<br/><br/>Preface xv<br/><br/>Introduction 1<br/><br/>Part I Why Cybersecurity Needs Better Measurements for Risk 5<br/><br/>Chapter 1 The One Patch Most Needed in Cybersecurity 7<br/><br/>Chapter 2 A Measurement Primer for Cybersecurity 21<br/><br/>Chapter 3 The Rapid Risk Audit: Starting With a Simple Quantitative Risk Model 43<br/><br/>Chapter 4 The Single Most Important Measurement in Cybersecurity 73<br/><br/>Chapter 5 Risk Matrices, Lie Factors, Misconceptions, and Other Obstacles to Measuring Risk 101<br/><br/>Part II Evolving the Model of Cybersecurity Risk 133<br/><br/>Chapter 6 Decompose It: Unpacking the Details 135<br/><br/>Chapter 7 Calibrated Estimates: How Much Do You Know Now? 155<br/><br/>Chapter 8 Reducing Uncertainty with Bayesian Methods 183<br/><br/>Chapter 9 Some Powerful Methods Based on Bayes 193<br/><br/>Part III Cybersecurity Risk Management for the Enterprise 231<br/><br/>Chapter 10 Toward Security Metrics Maturity 233<br/><br/>Chapter 11 How Well Are My Security Investments Working Together? 257<br/><br/>Chapter 12 A Call to Action: How to Roll Out Cybersecurity Risk Management 277<br/><br/>Appendix A Selected Distributions 289<br/><br/>Appendix B Guest Contributors 297<br/><br/>Index 327 
<br/><br/> In the newly revised How to Measure Anything in Cybersecurity Risk, Second Edition, a pioneering information security professional and a leader in quantitative analysis methods delivers yet another eye-opening text applying the quantitative language of risk analysis to cybersecurity. In the book, the authors demonstrate how to quantify uncertainty and shed light on how to measure seemingly intangible goals. It's a practical guide to improving risk assessment with a straightforward and simple framework. 
<br/><br/><br/>About the Author<br/>DOUGLAS W. HUBBARD is the inventor of the Applied Information Economics (AIE) method and the founder of Hubbard Decision Research. He is an internationally recognized expert in the area of decision analysis.<br/><br/>RICHARD SEIERSEN is the Chief Risk Officer of Resilience, a cyberinsurance firm. He is the former Chief Information Security Officer at LendingClub, Twilio, and GE Healthcare and Co-founder of the cloud native security company Soluble – sold to Lacework in 2021. 
<br/><br/><label>ISBN: </label>9781119892304  9781119892311 1119892317 9781119892328 1119892325 9781119892335 1119892333 
<br/><br/><label>Source: </label>9781119892311  Wiley, US 
<br/><br/><label>Nat. Bib. No.: </label>GBC376704  bnb 
<br/><br/><label>Subjects--Topical Terms: </label><br/>Cyberterrorism.<br/>Cyberspace--Security measures.<br/>Risk management.<br/>Risk Management.
<br/><br/><label>LC Class. No.: </label>HV6773.15.C97  / H835 2023 
<br/><br/><label>Dewey Class. No.: </label>658.4/78