Cybersecurity Sample Assessment
The purpose of this appendix is to bring together a previously introduced hierarchy of cybersecurity assessment concepts into three worked-out numerical examples. These worked-out examples show how an enterprise can obtain an answer to the following fundamental enterprise cybersecurity questions:
- What is the enterprise quantitative effectiveness in defending itself against cyberattacks?
- How does the enterprise quantitatively improve this effectiveness?
A cybersecurity program lends itself well to performing top-down security assessments at progressively increasing levels of detail. Each assessment level ...