December 15, 2024

How to Measure Anything in Cybersecurity Risk

Listen Later

15 minutes

This is an excerpt from How to Measure Anything in Cybersecurity Risk by Douglas Hubbard and Richard Seiersen, which argues for a more quantitative approach to cybersecurity risk management. The authors contend that existing methods, such as risk matrices and risk scores, are flawed and hinder decision-making. They propose using quantitative methods to assess risk, including the assignment of probabilities and dollar impacts, and demonstrate how to apply these techniques through a series of practical examples. The book explores methods for calibrating experts, combining their estimates, and leveraging Bayesian methods to update beliefs about cybersecurity risks. It emphasizes the importance of continuous performance tracking and the use of prescriptive analytics for optimizing security investments. Ultimately, the authors aim to establish cybersecurity risk management as a strategic function, transforming it from an operational task to a data-driven discipline.

You can listen and download our episodes for free on more than 10 different platforms:
https://linktr.ee/cyber_security_summary

Get the Book now from Amazon:
https://www.amazon.com/How-Measure-Anything-Cybersecurity-Risk/dp/1119892309?&linkCode=ll1&tag=cvthunderx-20&linkId=e75f8df3d1a6a11836fa7d1c69e87d25&language=en_US&ref_=as_li_ss_tl

Discover our free courses in tech and cybersecurity, Start learning today:
https://linktr.ee/cybercode_academy

...more

View all episodes

View all episodes

Download on the App Store

Download on the App Store

Get it on Google Play

CyberSecurity Summary

By CyberSecurity Summary

2.2

55 ratings

December 15, 2024

How to Measure Anything in Cybersecurity Risk

Listen Later

15 minutes

This is an excerpt from How to Measure Anything in Cybersecurity Risk by Douglas Hubbard and Richard Seiersen, which argues for a more quantitative approach to cybersecurity risk management. The authors contend that existing methods, such as risk matrices and risk scores, are flawed and hinder decision-making. They propose using quantitative methods to assess risk, including the assignment of probabilities and dollar impacts, and demonstrate how to apply these techniques through a series of practical examples. The book explores methods for calibrating experts, combining their estimates, and leveraging Bayesian methods to update beliefs about cybersecurity risks. It emphasizes the importance of continuous performance tracking and the use of prescriptive analytics for optimizing security investments. Ultimately, the authors aim to establish cybersecurity risk management as a strategic function, transforming it from an operational task to a data-driven discipline.

You can listen and download our episodes for free on more than 10 different platforms:
https://linktr.ee/cyber_security_summary

Get the Book now from Amazon:
https://www.amazon.com/How-Measure-Anything-Cybersecurity-Risk/dp/1119892309?&linkCode=ll1&tag=cvthunderx-20&linkId=e75f8df3d1a6a11836fa7d1c69e87d25&language=en_US&ref_=as_li_ss_tl

Discover our free courses in tech and cybersecurity, Start learning today:
https://linktr.ee/cybercode_academy

...more

More shows like CyberSecurity Summary

Hacked by Hacked

Hacked

189 Listeners

SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast) by Johannes B. Ullrich

SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)

649 Listeners

CyberWire Daily by N2K Networks

CyberWire Daily

1,028 Listeners

Darknet Diaries by Jack Rhysider

Darknet Diaries

8,110 Listeners

Cybersecurity Today by Jim Love

Cybersecurity Today

176 Listeners

This Week in Linux by TuxDigital Network

This Week in Linux

36 Listeners

Defense in Depth by David Spark, Steve Zalewski, Geoff Belknap

Defense in Depth

74 Listeners

Cybersecurity Headlines by CISO Series

Cybersecurity Headlines

138 Listeners