Episode 121: The Economics of Cybersecurity Decision-Making
In episode 121 of Cybersecurity Where You Are, Sean Atkinson and Tony Sager are joined by Tyler Moore, Ph.D., Chair of Cyber Studies at the University of Tulsa. Together, they discuss the role of economics in cyber risk quantification and cybersecurity decision-making.
Here are some highlights from our episode:
- 01:55. How incentives, market failures, and other economic principles intersect with cybersecurity
- 08:39. A model of translating shared information as a way to capture complexity in cybersecurity decision-making
- 13:20. Pressing issues when making decisions about cybersecurity
- 18:08. How to have enough confidence and a cyber risk quantification model that's useful
- 23:45. How rigorous recommendations can help to match modeling and techniques like minimization
- 29:23. The role of the Board in making cybersecurity decisions and how to speak its language
- 34:57. Parting thoughts about risk quantification in cybersecurity
Resources
- Episode 105: Context in Cyber Risk Quantification
- 2024 DBIR Findings & How the CIS Critical Security Controls Can Help to Mitigate Risk to Your Organization
- CIS Community Defense Model 2.0
- FAIR: A Framework for Revolutionizing Your Risk Analysis
- Society of Information Risk Analysts
If you have some feedback or an idea for an upcoming episode of Cybersecurity Where You Are, let us know by emailing [email protected].
