Cybersecurity Risk Assessment: A Systematic Mapping Review, Proposal, and Validation

Abstract: Incorporating technologies across all sectors has meant that cybersecurity risk assessment is now a critical step in cybersecurity risk management. However, risk assessment can be a complicated process for organizations. Therefore, many authors have attempted to automate this step using qualitative and quantitative tools. The problems with the tools and the risk assessment stage in general are (1) not considering all the sub-steps of risk assessment and (2) not identifying the variables necessary for an accura… Show more

“…Frameworks such as the NIST Cybersecurity Framework and ISO 27001 provide a structured methodology for identifying, assessing, and mitigating cyber risks [23]. Research highlights the importance of risk assessment in prioritizing security measures and resource allocation [24]. Moreover, studies delve into the significance of cybersecurity governance structures within government institutions [25].…”

Analysis of Threat Detection, Prevention Strategies, and Cyber Risk Management for Computer Network Security in Government Information Systems in Indonesia

“…Frameworks such as the NIST Cybersecurity Framework and ISO 27001 provide a structured methodology for identifying, assessing, and mitigating cyber risks [23]. Research highlights the importance of risk assessment in prioritizing security measures and resource allocation [24]. Moreover, studies delve into the significance of cybersecurity governance structures within government institutions [25].…”

Analysis of Threat Detection, Prevention Strategies, and Cyber Risk Management for Computer Network Security in Government Information Systems in Indonesia

CRAG: A Guideline to Perform a Cybersecurity Risk Audits

A CIS Controls V8.0 Scoring System using Combined Ranking-Weight Methods