000 04025nam a22006135i 4500
001 978-3-319-23570-7
003 DE-He213
005 20200421112223.0
007 cr nn 008mamaa
008 151001s2015 gw | s |||| 0|eng d
020 _a9783319235707
_9978-3-319-23570-7
024 7 _a10.1007/978-3-319-23570-7
_2doi
050 4 _aQA76.9.A25
072 7 _aUR
_2bicssc
072 7 _aUTN
_2bicssc
072 7 _aCOM053000
_2bisacsh
082 0 4 _a005.8
_223
100 1 _aRefsdal, Atle.
_eauthor.
245 1 0 _aCyber-Risk Management
_h[electronic resource] /
_cby Atle Refsdal, Bj�rnar Solhaug, Ketil St�len.
264 1 _aCham :
_bSpringer International Publishing :
_bImprint: Springer,
_c2015.
300 _aXI, 145 p. 32 illus.
_bonline resource.
336 _atext
_btxt
_2rdacontent
337 _acomputer
_bc
_2rdamedia
338 _aonline resource
_bcr
_2rdacarrier
347 _atext file
_bPDF
_2rda
490 1 _aSpringerBriefs in Computer Science,
_x2191-5768
505 0 _a1 Introduction -- Part I Conceptual Introduction -- 2 Risk Management -- 3 Cyber-systems -- 4 Cybersecurity -- 5 Cyber-risk Management -- Part II Cyber-risk Assessment Exemplified -- 6 Context Establishment -- 7 Risk Identification -- 8 Risk Analysis -- 9 Risk Evaluation -- 10 Risk Treatment -- Part III Known Challenges and How to Address Them in Practice -- 11 Which Measure of Risk Level to Use?- 12 What Scales Are Best Suited Under What Conditions?- 13 How to Deal with Uncertainty?- 14 High-consequence Risk with Low Likelihood -- 15 Conclusion -- Glossary -- References -- Index.
520 _aThis book provides a brief and general introduction to cybersecurity and cyber-risk assessment. Not limited to a specific approach or technique, its focus is highly pragmatic and is based on established international standards (including ISO 31000) as well as industrial best practices. It explains how cyber-risk assessment should be conducted, which techniques should be used when, what the typical challenges and problems are, and how they should be addressed. The content is divided into three parts. First, part I provides a conceptual introduction to the topic of risk management in general and to cybersecurity and cyber-risk management in particular. Next, part II presents the main stages of cyber-risk assessment from context establishment to risk treatment and acceptance,  each illustrated by a running example. Finally, part III details four important challenges and how to reasonably deal with them in practice: risk measurement, risk scales, uncertainty, and low-frequency risks with high consequence. The target audience is mainly practitioners and students who are interested in the fundamentals and basic principles and techniques of security risk assessment, as well as lecturers seeking teaching material. The book provides an overview of the cyber-risk assessment process, the tasks involved, and how to complete them in practice.
650 0 _aComputer science.
650 0 _aManagement.
650 0 _aIndustrial management.
650 0 _aComputer security.
650 0 _aMathematical statistics.
650 0 _aManagement information systems.
650 0 _aQuality control.
650 0 _aReliability.
650 0 _aIndustrial safety.
650 1 4 _aComputer Science.
650 2 4 _aSystems and Data Security.
650 2 4 _aQuality Control, Reliability, Safety and Risk.
650 2 4 _aManagement of Computing and Information Systems.
650 2 4 _aProbability and Statistics in Computer Science.
650 2 4 _aInnovation/Technology Management.
700 1 _aSolhaug, Bj�rnar.
_eauthor.
700 1 _aSt�len, Ketil.
_eauthor.
710 2 _aSpringerLink (Online service)
773 0 _tSpringer eBooks
776 0 8 _iPrinted edition:
_z9783319235691
830 0 _aSpringerBriefs in Computer Science,
_x2191-5768
856 4 0 _uhttp://dx.doi.org/10.1007/978-3-319-23570-7
912 _aZDB-2-SCS
942 _cEBK
999 _c57506
_d57506