How to Measure Anything in Cybersecurity Risk
| Author | : | |
| Rating | : | 4.17 (516 Votes) |
| Asin | : | 1119085292 |
| Format Type | : | paperback |
| Number of Pages | : | 304 Pages |
| Publish Date | : | 2017-06-18 |
| Language | : | English |
DESCRIPTION:
A ground shaking exposé on the failure of popular cyber risk management methodsHow to Measure Anything in Cybersecurity Risk exposes the shortcomings of current "risk management" practices, and offers a series of improvement techniques that help you fill the holes and ramp up security. Hubbard opened the business world's eyes to the critical need for better measurement. This book provides solutions where they exist, and advises when to change tracks entirely.Discover the shortcomings of cybersecurity's "best practices"Learn which risk management approaches actually create riskImprove your current practices with practical alterationsLearn which methods are beyond saving, and worse than doing nothingInsightful and enlightening, this book will inspire a closer examination of your company's own risk management practices in the context of cybersecurity. The end goal is airtight data protection, so finding cracks in the vault is a positive thing—as long as you get there before the bad guys do. You'll also learn which approaches are too risky to save, and are actually more damaging than a total lack of any security. Dangerous risk management methods abound; there is no industry more critically in need of solutions than cybersecurity. This book sheds light on these blatant risks, and provides alternate techniques that can help improve your current situation. How to Measure Anything in Cybersecurity Risk is your guide to more robust protecti
HUBBARD is the inventor of Applied Information Economics (AIE), an internationally recognized expert in measurement and quantitative decision analysis, and best-selling author of How to Measure Anything, Third Edition, and The Failure of Risk Management.RICHARD SEIERSEN is general manager of Cyber Security & Privacy at GE Healthcare. DOUGLAS W. . He has more than twenty years of
Required for risk management pros Richard Johnson Absolutely essential for participants in any risk management program who want to get beyond faking things up with 3 level matrices. Quantitative risk analysis requires accuracy, but not absolute precision. This book gives great practical examples and training for getting to as much accuracy as you need for a given application. Study it, and make better decisions for your program.. "Great Read - a must for cybersecurity professionals." according to RandyB. Outstanding book. Walks you through going from qualitative assessments to applying quantitative rigor to cyber risk assessments. These methods (shown) brings cyber risk assessment and management more into conformance with standard risk management practices.. My favorite part is the discussion on Los Exceedance Curves This book is a must-read for anyone trying to understand priority in Cyber Security operations. The authors take you through the basics of measurement, how risk has been misapplied in the cyber security industry, and makes recommendations for how to improve risk communication with executives. My favorite part is the discussion on Loss Exceedance Curves.
This complete resource gets you there start to finish by: Debunking the most common arguments against using quantitative methods in cybersecurityModeling risk with a variety of simple and advanced techniques for enhancing the usefulness of data in times of great uncertainty using free, downloadable spreadsheetsDetailing a dependable, organization-wide security metrics maturity model for continuous and measurable improvementThe thought process that goes into making informed decisions with sparse data points, using the described "Lens" method to reduce estimation errors, along with the many other techniques inside, will advance how you run cybersecurity as well as how you measurably improve other types of high-stakes decisions. Regardless of your current understanding of cybersecurity or statistics, everything inside is fully accessible and equips you with a potent collect