The Cyber Risk Analytics Project Review Workshop

Submitted by willirn1 on Fri, 10/22/2021 - 9:46am

Title	The Cyber Risk Analytics Project Review Workshop
Publication Type	Web Article
Year of Publication	2017
Authors	Jon Boyens
Series Title	National Institute of Standards and Technology Site
Access Year	2017
Edition	Information Technology
Access Date	October 20, 2017
Publisher	NIST
City	Gathersburg, MD
Type of Medium	Website Article
Keywords	C3E, cybersecurity, information technology, risk assessment
Abstract	The purpose of this workshop is to review with participants, sponsors, and key interested parties the findings and lessons learned from a two-year long NIST and GSA-sponsored Cyber Risk Analytics project. A team composed of professionals from the University of Maryland (UMD), Zurich Insurance, and Beecher Carlson completed the following activities: Developed and field tested, with collaboration of NIST, a secure, online self-assessment tool, based on the Cybersecurity Framework; Created a breach database for survey participants by integrating the breach datasets from Advisen, RBS , the Identity Theft Resource Center, and the Center for Business and Ethics at the University of Maryland; Conducted a rigorous statistical analysis to search for significant relationships between performance results in different areas of the self-assessment tool and frequency of breaches (disaggregated by breach type). The objective was to determine specific actions initiated by the survey participants were directly associated with a reduced frequency of breach occurrence during the study period.
URL	https://www.nist.gov/news-events/events/2017/10/cyber-risk-analytics-project-review-workshop
Citation Key	node-79924

Groups:

Computational Cybersecurity in Compromised Environments (C3E)