Cyber Risk Metrics Survey, Assessment, and Implementation Plan
Abstract
The Homeland Security Systems Engineering and Development Institute (HSSEDI) assists the Department of Homeland Security (DHS) Science and Technology Directorate (S and T) in the execution of the Next Generation Cyber Infrastructure (NGCI) Apex program. This brief summarizes a series of HSSEDI reports analyzing cybersecurity risk metrics for the NGCI Apex program. The series of reports identifies existing metrics and surveys relating to cybersecurity, as well as provides an Implementation Plan for a Confidence Survey specific to the NGCI Apex program. The series concludes with three recommendations: 1) the NGCI Apex program should develop a scalable framework for cybersecurity risk metrics, drawing on concepts from two prominent modeling approaches; 2) the NGCI Apex program should implement a Confidence Survey to continuously gather feedback regarding cybersecurity issues affecting the set of national, critical infrastructures; and 3) the Confidence Survey should serve as an initial step on the trajectory to scalable, cybersecurity risk metrics which meet the needs of the NGCI Apex program.
Document Details
- Document Type
- Technical Report
- Publication Date
- May 11, 2018
- Accession Number
- AD1108048
Entities
People
- Douglas Maughan
- Gregory Wigton
Organizations
- Homeland Security Systems Engineering and Development Institute
- MITRE Corporation