Loading...

Media is loading
 

Paper Type

Complete

Abstract

A survey instrument for assessing project cybersecurity risk is developed and pilot tested. The instrument uses hypothetical scenarios and a threat-vulnerability-asset framework for quantifying the risk, expressed as the product of likelihood and severity, of 18 threat-asset pairs which are then mapped into three project cybersecurity meta-phases. The results show promise for assessing the presence of cybersecurity risk in the extended project lifespan, going back as far as project conception.

Share

COinS
 
Aug 10th, 12:00 AM

Assessing Cybersecurity Risk in the Extended Project Lifespan: A Pilot Study

A survey instrument for assessing project cybersecurity risk is developed and pilot tested. The instrument uses hypothetical scenarios and a threat-vulnerability-asset framework for quantifying the risk, expressed as the product of likelihood and severity, of 18 threat-asset pairs which are then mapped into three project cybersecurity meta-phases. The results show promise for assessing the presence of cybersecurity risk in the extended project lifespan, going back as far as project conception.

When commenting on articles, please be friendly, welcoming, respectful and abide by the AIS eLibrary Discussion Thread Code of Conduct posted here.