economic-impact

Economic-impact - Attacks TheGlobalPicture Chapter9 1 RiskAssessment Threats RISK Vulnerabilities Consequences 2 CSISurvey2008 Types of incidents

Info iconThis preview shows pages 1–13. Sign up to view the full content.

View Full Document Right Arrow Icon
1 The Economic Impact of Cyber  The Economic Impact of Cyber  Attacks Attacks The Global Picture The Global Picture Chapter 9 Chapter 9
Background image of page 1

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full DocumentRight Arrow Icon
2 Risk Assessment Risk Assessment RISK RISK Threats Vulnerabilities Consequences
Background image of page 2
3 CSI Survey 2008 CSI Survey 2008 Types of incidents CSI/FBI Computer Crime and Security Survey Computer Security Institute
Background image of page 3

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full DocumentRight Arrow Icon
CSI Survey 2008 CSI Survey 2008 4 CSI/FBI Computer Crime and Security Survey Computer Security Institute
Background image of page 4
CSI Survey 2008 CSI Survey 2008 5 CSI/FBI Computer Crime and Security Survey Computer Security Institute
Background image of page 5

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full DocumentRight Arrow Icon
CSI Survey 2008 CSI Survey 2008 6 CSI/FBI Computer Crime and Security Survey Computer Security Institute
Background image of page 6
7 System Security Engineering Specify System Architecture Identify Threats, Vulnerabilities, Attacks Estimate Risk Prioritize Vulnerabilities Identify and Install Safeguards Risk is acceptably low
Background image of page 7

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full DocumentRight Arrow Icon
8 Allocating Resources Allocating Resources Limited resources Acceptable level of risk Tie technical risk to business risk
Background image of page 8
9 Making a Business Case Making a Business Case Description of the problem List of possible solutions Constraints on solving the problem List of underlying assumptions Analysis of each alternative, including risks, costs, and benefits Summary of why the proposed investment is good
Background image of page 9

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full DocumentRight Arrow Icon
10 Influences on Cyber Security  Influences on Cyber Security  Investment Strategy Investment Strategy Regulatory requirements Network history or IT staff knowledge Client requirements Results of internal or external audit Response to current events Response to compromised internal security Reaction to external mandate or request
Background image of page 10
11 Determining Economic Value Determining Economic Value Many different ways to determine value Internal rate of return Return on investment Net present value Investment analysis: best way to allocate capital and human resources Accounting measures are inappropriate for evaluating information security inverstments
Background image of page 11

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full DocumentRight Arrow Icon
12 Quantifying Security Quantifying Security Difficult problem Not fully understood Limited historical data to estimate likelihood
Background image of page 12
Image of page 13
This is the end of the preview. Sign up to access the rest of the document.

This note was uploaded on 12/13/2011 for the course CSCE 522 taught by Professor Farkas during the Fall '11 term at South Carolina.

Page1 / 34

Economic-impact - Attacks TheGlobalPicture Chapter9 1 RiskAssessment Threats RISK Vulnerabilities Consequences 2 CSISurvey2008 Types of incidents

This preview shows document pages 1 - 13. Sign up to view the full document.

View Full Document Right Arrow Icon
Ask a homework question - tutors are online