TY - BOOK ID - 7689453 TI - Cyber-Risk Management AU - Refsdal, Atle. AU - Solhaug, Bjørnar. AU - Stølen, Ketil. PY - 2015 SN - 3319235699 3319235702 PB - Cham : Springer International Publishing : Imprint: Springer, DB - UniCat KW - Computer Science KW - Engineering & Applied Sciences KW - Computer crimes KW - Cyberspace KW - Computer security. KW - Data protection. KW - Prevention. KW - Security measures. KW - Data governance KW - Data regulation KW - Personal data protection KW - Protection, Data KW - Computer privacy KW - Computer system security KW - Computer systems KW - Computers KW - Cyber security KW - Cybersecurity KW - Electronic digital computers KW - Security of computer systems KW - Security measures KW - Protection of computer systems KW - Protection KW - Computer science. KW - Management. KW - Industrial management. KW - Mathematical statistics. KW - Management information systems. KW - Quality control. KW - Reliability. KW - Industrial safety. KW - Computer Science. KW - Systems and Data Security. KW - Quality Control, Reliability, Safety and Risk. KW - Management of Computing and Information Systems. KW - Probability and Statistics in Computer Science. KW - Innovation/Technology Management. KW - Data protection KW - Security systems KW - Hacking KW - Industrial accidents KW - Industries KW - Job safety KW - Occupational hazards, Prevention of KW - Occupational health and safety KW - Occupational safety and health KW - Prevention of industrial accidents KW - Prevention of occupational hazards KW - Safety, Industrial KW - Safety engineering KW - Safety measures KW - Safety of workers KW - Accidents KW - System safety KW - Dependability KW - Trustworthiness KW - Conduct of life KW - Factory management KW - Industrial engineering KW - Reliability (Engineering) KW - Sampling (Statistics) KW - Standardization KW - Quality assurance KW - Quality of products KW - Computer-based information systems KW - EIS (Information systems) KW - Executive information systems KW - MIS (Information systems) KW - Sociotechnical systems KW - Information resources management KW - Management KW - Mathematics KW - Statistical inference KW - Statistics, Mathematical KW - Statistics KW - Probabilities KW - Business administration KW - Business enterprises KW - Business management KW - Corporate management KW - Corporations KW - Industrial administration KW - Management, Industrial KW - Rationalization of industry KW - Scientific management KW - Business KW - Industrial organization KW - Administration KW - Industrial relations KW - Organization KW - Informatics KW - Science KW - Prevention KW - Communication systems KW - Statistical methods KW - Electronic data processing KW - Space and time KW - Telematics KW - System safety. KW - Information Systems. KW - Safety, System KW - Safety of systems KW - Systems safety KW - Industrial safety KW - Systems engineering UR - https://www.unicat.be/uniCat?func=search&query=sysid:7689453 AB - This book provides a brief and general introduction to cybersecurity and cyber-risk assessment. Not limited to a specific approach or technique, its focus is highly pragmatic and is based on established international standards (including ISO 31000) as well as industrial best practices. It explains how cyber-risk assessment should be conducted, which techniques should be used when, what the typical challenges and problems are, and how they should be addressed. The content is divided into three parts. First, part I provides a conceptual introduction to the topic of risk management in general and to cybersecurity and cyber-risk management in particular. Next, part II presents the main stages of cyber-risk assessment from context establishment to risk treatment and acceptance, each illustrated by a running example. Finally, part III details four important challenges and how to reasonably deal with them in practice: risk measurement, risk scales, uncertainty, and low-frequency risks with high consequence. The target audience is mainly practitioners and students who are interested in the fundamentals and basic principles and techniques of security risk assessment, as well as lecturers seeking teaching material. The book provides an overview of the cyber-risk assessment process, the tasks involved, and how to complete them in practice. ER -