Governance & Risk Management

A Better Way to Measure Cyber Risks

Consultant Benjamin Dean on Using Cyber Metrics to Help Predict Risks

CISOs are increasingly being asked by management and boards to predict what the cost of a breach or cyber incident might be. But most still need to develop good predictive metrics, says Benjamin Dean, president of Iconoclast Tech.

See Also: From Data to Decisions: Maximizing Operational Efficiency Through IT-OT Integration

Dean says CISOs actually can, with relative accuracy, estimate what the cost of a breach might be based on a number of factors, including attacker intent, data at risk and previous cyber events.

In this video interview at Information Security Media Group's 2017 Atlanta Fraud and Breach Prevention Summit about cyber metrics and contingent liabilities, Dean discusses:

  • Lessons for the cyber age from the atomic age about potential risks;
  • Why increasing network complexity leads to unanticipated system failures; and
  • Why the potential costs of cyber events need to be demonstrated to boards and management.

Dean has worked within the intersection of technology, economics and public policy for the past decade. He currently serves as a technology exchange fellow at the Center for Democracy and Technology in Washington, and previously served as a fellow for cyberecurity and internet governance at Columbia University in New York. He also spent time as a policy analyst at the Organization for Economic Cooperation and Development in Paris.


About the Author

Tracy Kitten

Tracy Kitten

Former Director of Global Events Content and Executive Editor, BankInfoSecurity & CUInfoSecurity

Kitten was director of global events content and an executive editor at ISMG. A veteran journalist with more than 20 years of experience, she covered the financial sector for over 10 years. Before joining Information Security Media Group in 2010, she covered the financial self-service industry as the senior editor of ATMmarketplace, part of Networld Media. Kitten has been a regular speaker at domestic and international conferences, and was the keynote at ATMIA's U.S. and Canadian conferences in 2009. She has been quoted by CNN.com, ABC News, Bankrate.com and MSN Money.




Around the Network

Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing healthcareinfosecurity.com, you agree to our use of cookies.