3.8 Article

On the Complexity of Cybersecurity Exercises Proportional to Preparedness

JOURNAL OF DISASTER RESEARCH (2017)

Get Full Text
Add to Collection

Journal

JOURNAL OF DISASTER RESEARCH
Volume 12, Issue 5, Pages 1081-1090

Publisher

FUJI TECHNOLOGY PRESS LTD
DOI: 10.20965/jdr.2017.p1081

Keywords

cybersecurity; exercise; maturity model; business continuity management; critical infrastructure protection

Categories

Geosciences, Multidisciplinary

Funding

  1. Ministry of Education, Science, Sports and Culture [16H01837]
  2. Grants-in-Aid for Scientific Research [16H01837] Funding Source: KAKEN

Ask authors/readers for more resources

Protocol

Community support

Reagent

Community support

The purpose of this study is to illustrate how exercises can play the role of a driving power to improve an organization's cyber security preparedness. The degree of cyber security preparedness varies significantly among organizations. This implies that training and exercises must be tailored to specific capabilities. In this paper, we review the National Institute of Standards and Technology (NIST) cybersecurity framework that formalizes the concept of tier, which measures the degree of preparedness. Subsequently, we examine the types of exercises available in the literature and propose guidelines that assign specific exercise types, aims, and participants to each level of preparedness. The proposed guideline should facilitate the reinforcement of cybersecurity risk management practices, reduce resource misuse, and lead to a smooth improvement of capabilities.

Authors

I am an author on this paper
Click your name to claim this paper and add it to your profile.

Reviews

Primary Rating

3.8
Not enough ratings

Secondary Ratings

Novelty
-
Significance
-
Scientific rigor
-
Rate this paper

Recommended

No Data Available
No Data Available
Webinars Posters Questions Hubs Funding Journals Papers Connect Collections Reviewers About Us FAQs Mobile App Privacy Policy Terms of Use
© Peeref 2019-2024. All rights reserved.