LEADER 05310nam  22008775  450 
001 9910299201803321
005 20200701111514.0
010   $a3-319-23570-2
024 7 $a10.1007/978-3-319-23570-7
035   $a(CKB)3710000000484570
035   $a(EBL)4089852
035   $a(SSID)ssj0001584233
035   $a(PQKBManifestationID)16264406
035   $a(PQKBTitleCode)TC0001584233
035   $a(PQKBWorkID)14864724
035   $a(PQKB)11302154
035   $a(DE-He213)978-3-319-23570-7
035   $a(MiAaPQ)EBC4089852
035   $a(PPN)190522879
035   $a(EXLCZ)993710000000484570
100   $a20151001d2015      u|         0
101 0 $aeng
135   $aur|n|---|||||
181   $ctxt
182   $cc
183   $acr
200 10$aCyber-Risk Management /$fby Atle Refsdal, Bjørnar Solhaug, Ketil Stølen
205   $a1st ed. 2015.
210  1$aCham :$cSpringer International Publishing :$cImprint: Springer,$d2015.
215   $a1 online resource (146 p.)
225 1 $aSpringerBriefs in Computer Science,$x2191-5768
300   $aDescription based upon print version of record.
311   $a3-319-23569-9 
320   $aIncludes bibliographical references at the end of each chapters and index.
327   $a1 Introduction -- Part I Conceptual Introduction -- 2 Risk Management -- 3 Cyber-systems -- 4 Cybersecurity -- 5 Cyber-risk Management -- Part II Cyber-risk Assessment Exemplified -- 6 Context Establishment -- 7 Risk Identification -- 8 Risk Analysis -- 9 Risk Evaluation -- 10 Risk Treatment -- Part III Known Challenges and How to Address Them in Practice -- 11 Which Measure of Risk Level to Use?- 12 What Scales Are Best Suited Under What Conditions?- 13 How to Deal with Uncertainty?- 14 High-consequence Risk with Low Likelihood -- 15 Conclusion -- Glossary -- References -- Index.
330   $aThis book provides a brief and general introduction to cybersecurity and cyber-risk assessment. Not limited to a specific approach or technique, its focus is highly pragmatic and is based on established international standards (including ISO 31000) as well as industrial best practices. It explains how cyber-risk assessment should be conducted, which techniques should be used when, what the typical challenges and problems are, and how they should be addressed. The content is divided into three parts. First, part I provides a conceptual introduction to the topic of risk management in general and to cybersecurity and cyber-risk management in particular. Next, part II presents the main stages of cyber-risk assessment from context establishment to risk treatment and acceptance,  each illustrated by a running example. Finally, part III details four important challenges and how to reasonably deal with them in practice: risk measurement, risk scales, uncertainty, and low-frequency risks with high consequence. The target audience is mainly practitioners and students who are interested in the fundamentals and basic principles and techniques of security risk assessment, as well as lecturers seeking teaching material. The book provides an overview of the cyber-risk assessment process, the tasks involved, and how to complete them in practice.
410  0$aSpringerBriefs in Computer Science,$x2191-5768
606   $aComputer security
606   $aQuality control
606   $aReliability
606   $aIndustrial safety
606   $aManagement information systems
606   $aComputer science
606   $aMathematical statistics
606   $aManagement
606   $aIndustrial management
606   $aSystems and Data Security$3https://scigraph.springernature.com/ontologies/product-market-codes/I28060
606   $aQuality Control, Reliability, Safety and Risk$3https://scigraph.springernature.com/ontologies/product-market-codes/T22032
606   $aManagement of Computing and Information Systems$3https://scigraph.springernature.com/ontologies/product-market-codes/I24067
606   $aProbability and Statistics in Computer Science$3https://scigraph.springernature.com/ontologies/product-market-codes/I17036
606   $aInnovation/Technology Management$3https://scigraph.springernature.com/ontologies/product-market-codes/518000
615  0$aComputer security.
615  0$aQuality control.
615  0$aReliability.
615  0$aIndustrial safety.
615  0$aManagement information systems.
615  0$aComputer science.
615  0$aMathematical statistics.
615  0$aManagement.
615  0$aIndustrial management.
615 14$aSystems and Data Security.
615 24$aQuality Control, Reliability, Safety and Risk.
615 24$aManagement of Computing and Information Systems.
615 24$aProbability and Statistics in Computer Science.
615 24$aInnovation/Technology Management.
676   $a331.7610058
700   $aRefsdal$b Atle$4aut$4http://id.loc.gov/vocabulary/relators/aut$01060954
702   $aSolhaug$b Bjørnar$4aut$4http://id.loc.gov/vocabulary/relators/aut
702   $aStølen$b Ketil$4aut$4http://id.loc.gov/vocabulary/relators/aut
801  0$bMiAaPQ
801  1$bMiAaPQ
801  2$bMiAaPQ
906   $aBOOK
912   $a9910299201803321
996   $aCyber-Risk Management$92516466
997   $aUNINA