Understanding the Cyber Risk Landscape: An Integrated Framework
Mark Cooke
Introduction: The Next Frontier of Risk Management: Cyber Risk
A Proposed Business-Oriented Approach to Cyber
A Practical Approach to Developing a Cybersecurity Programme
Regulations, Compliance and Cyber Risk Management
The Role of Cyber Risk in the Organisation
The Evolution of the Cyber Risk Role within the Three Lines of Defence
Quantifying Cyber Risk
Leadership and Culture: The Foundations of Cyber-Risk Management
Understanding the Cyber Risk Landscape: An Integrated Framework
The Transformation of Information Security: New Threats and Vulnerabilities
Cybersecurity Metrics: The Good, the Bad and the Ugly
Third-Party Risk Management
Cybersecurity’s Neighbourhood Watch: The Strength of Information Sharing
Cyber Risks in Business Continuity Management and Supply Chain Resilience for Financial Institutions
Cybersecurity Threats to the Critical Infrastructure
The True Meaning of Cyber Incident Response
Cyber Risk: Where We Have Been, Where We Are and Where We Are Going
One of the challenges of managing cyber risk is to be able to systematically understand the risk that cyber crime presents to the organisation across the breadth of its operations and commercial activities. For small organisations, the practices and processes can be relatively informal; the cyber champion can both foster awareness with their colleagues and work directly with their colleagues both to understand and manage the risk. However as an organisation increases in scale and complexity, these informal mechanisms are not sufficient to understand the risk, and instead an organisation has to put in place a systematic approach to understanding the risk, a framework that sets out the processes and practices to manage cyber risk.
As cyber risk is but one of the many nonfinancial risks that organisations face, with risks such as regulatory compliance, technology failure, people risks and fraud also featuring as a concern for senior management, it is likely that it will need to be incorporated into existing nonfinancial risk frameworks. The organisation’s risk framework therefore needs to enable the organisation to systematically understand the cyber risk landscape, through setting
Copyright Infopro Digital Limited. All rights reserved.
You may share this content using our article tools. Printing this content is for the sole use of the Authorised User (named subscriber), as outlined in our terms and conditions - https://www.infopro-insight.com/terms-conditions/insight-subscriptions/
If you would like to purchase additional rights please email info@risk.net
Copyright Infopro Digital Limited. All rights reserved.
You may share this content using our article tools. Copying this content is for the sole use of the Authorised User (named subscriber), as outlined in our terms and conditions - https://www.infopro-insight.com/terms-conditions/insight-subscriptions/
If you would like to purchase additional rights please email info@risk.net