Loading...
Paper Type
Complete
Abstract
A survey instrument for assessing project cybersecurity risk is developed and pilot tested. The instrument uses hypothetical scenarios and a threat-vulnerability-asset framework for quantifying the risk, expressed as the product of likelihood and severity, of 18 threat-asset pairs which are then mapped into three project cybersecurity meta-phases. The results show promise for assessing the presence of cybersecurity risk in the extended project lifespan, going back as far as project conception.
Recommended Citation
Presley, Steven; Shropshire, Jordan; and Landry, Jeffrey P., "Assessing Cybersecurity Risk in the Extended Project Lifespan: A Pilot Study" (2020). AMCIS 2020 Proceedings. 26.
https://aisel.aisnet.org/amcis2020/info_security_privacy/info_security_privacy/26
Assessing Cybersecurity Risk in the Extended Project Lifespan: A Pilot Study
A survey instrument for assessing project cybersecurity risk is developed and pilot tested. The instrument uses hypothetical scenarios and a threat-vulnerability-asset framework for quantifying the risk, expressed as the product of likelihood and severity, of 18 threat-asset pairs which are then mapped into three project cybersecurity meta-phases. The results show promise for assessing the presence of cybersecurity risk in the extended project lifespan, going back as far as project conception.
When commenting on articles, please be friendly, welcoming, respectful and abide by the AIS eLibrary Discussion Thread Code of Conduct posted here.