Definition of Internet of Things (IoT) Cyber Risk – Discussion on a Transformation Roadmap for Standardisation of Regulations, Risk Maturity, Strategy Design and Impact Assessment

Radanliev, Petar; Roure, David C. De; Nurse, Jason R. C.; Burnap, Pete; Anthi, Eirini; Ani, Uchenna; Maddox, La Treall; Santos, Omar; Montalvo, Rafael Mantilla

doi:10.20944/preprints201903.0080.v1

Cited by 11 publications

(8 citation statements)

References 26 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…To define a transformation roadmap for standardisation of IoT risk impact assessment, the methodology follows established approaches [122][123][124][125][126][127][128] and few recently developed design processes 122,[129][130][131][132][133][134][135][136][137] .The following section performs strengths, weaknesses, opportunities and threats (SWOT) analysis. This diversity of approaches identified in the gap analysis, presents conflict in risk assessment, e.g.…”

Section: Transformation Roadmap For Standardisation Of Iot Risk Impacmentioning

confidence: 99%

Cyber Risk Management for the Internet of Things

Radanliev¹,

D²,

Burnap³

et al. 2019

Preprint

Self Cite

View full text Add to dashboard Cite

The Internet-of-Things (IoT) enables enterprises to obtain profits from data but triggers data protection questions and new types of cyber risk. Cyber risk regulations for the IoT however do not exist. The IoT risk is not included in the cyber security assessment standards, hence, often not visible to cyber security experts. This is concerning, because companies integrating IoT devices and services need to perform a self-assessment of its IoT cyber security posture. The outcome of such self-assessment need to define a current and target state, prior to creating a transformation roadmap outlining tasks to achieve the stated target state. In this article, a comparative empirical analysis is performed of multiple cyber risk assessment approaches, to define a high-level potential target state for company integrating IoT devices and/or services. Defining a high-level potential target state represent is followed by a high-level transformation roadmap, describing how company can achieve their target state, based on their current state. The transformation roadmap is used to adapt IoT risk impact assessment with a Goal-Oriented Approach and the Internet of Things Micro Mart model. The main contributions from this paper represent a transformation roadmap for standardisation of IoT risk impact assessment; and transformation design imperatives describing how IoT companies can achieve their target state based on their current state with a Goal-Oriented approach. Verified by epistemological analysis defining a unified cyber risk assessment approach. These can be used for calculating the economic impact of cyber risk; for international cyber risk assessment approach; for quantifying cyber risk; and for planning for impact of cyber-attacks, e.g. cyber insurance. The new methods presented in this paper for applying the roadmap include: IoT Risk Analysis through Functional Dependency; Network-based Linear Dependency Modelling; IoT risk impact assessment with a Goal-Oriented Approach; and a correlation between the Goal-Oriented Approach and the IoTMM model.

show abstract

Section: Transformation Roadmap For Standardisation Of Iot Risk Impacmentioning

confidence: 99%

Cyber Risk Management for the Internet of Things

Radanliev¹,

D²,

Burnap³

et al. 2019

Preprint

Self Cite

View full text Add to dashboard Cite

show abstract

“…Unfortunately collaboration is often focused on enterprise profitability and not supply chain profitability [4], [5], [7], [17], leading to a focus on local optimization [8], [17], [18]. It is only when companies involved in the supply chain recognize the need to utilize the benefits of the supply chain for its own needs, can these companies be considered to have taken a systemic strategic supply chain focus [8][9][10], [17][18][19][20][21][22][23][24][25]. The supply chain 'effectiveness' is only achieved by synchronizing its processes and operations both internally and externally and jointly planning the execution to achieve an optimal supply chain performance for a common goal [17].…”

Section: Theory and Literature Reviewmentioning

confidence: 99%

“…Future research challenge emerging from these findings, is to design a conceptual framework for holistic supply chain formulation that would anticipate the effect of external dimensions to the business and supply chain strategies. Continuation of this research is in preparation and the aim is to publish these updates regularly 1,2,[11][12][13][14][15][16][17][18][19][20]3,[21][22][23][24][25][26][27][4][5][6][7][8][9][10] .…”

Section: Conclusion and Further Workmentioning

confidence: 99%

Green-field Architecture for Sustainable Supply Chain Strategy Formulation

Radanliev¹

2019

Preprint

Self Cite

View full text Add to dashboard Cite

The focus of this paper is on supply chain strategy formulation. A conceptual theory approach is used for investigating and identifying the relationship between multiple elements, dimensions, forces and factors that influence and affect the supply chain strategy formulation in Greenfield context, specific to the slate mining industry. The research study involved secondary data review and series of 20 qualitative interviews, followed by 2 group discussions, one with mining and transportation experts external to the supply chain and one group discussion with supply chain internal experts. Through critical analysis, a number of problems emerge and the process of addressing these problems, results in a new framework for evaluating the relationship between business and supply chain strategy, specific to Greenfield project and integration design context.

show abstract

“…Large enterprises have the recourses to control the entire supply chain [5]- [8], [41], while SME's frequently have to integrate their supply chain operations [42]- [45]. Integrating multiple SME's in the supply chain requires higher visibility and coordination between participants [21], [25], [27]. Hence, these recommendations are aimed at enabling SME's to visualise the design principles.…”

Section: How Sme's Can Integrate Modern Technological Concepts Into Tmentioning

confidence: 99%

Supply Chain Design for the Industrial Internet of Things and the Industry 4.0

Radanliev¹,

Roure²,

Nurse³

et al. 2019

Preprint

Self Cite

View full text Add to dashboard Cite

Digital technologies have changed the way supply chain operations are structured. In this article, we develop design principles to show determining factors for an Internet-of-Things approach within Supply Chain Management. From the design principles, the article derives a new model for the Industrial Internet of Things supply chains. The focus is on Small and Medium Enterprises (SMEs). This research design results in a new process of compounding knowledge from existing supply chain models and adapting the cumulative findings to the concept of supply chains in the Industrial Internet of Things. The paper outlines the design principles for developing cognition in the process of integrating SME’s digital supply chains in the Industrial Internet of Things (IIoT) and the Industry 4.0 (I4.0).

show abstract

Definition of Internet of Things (IoT) Cyber Risk – Discussion on a Transformation Roadmap for Standardisation of Regulations, Risk Maturity, Strategy Design and Impact Assessment

Cited by 11 publications

References 26 publications

Cyber Risk Management for the Internet of Things

Cyber Risk Management for the Internet of Things

Green-field Architecture for Sustainable Supply Chain Strategy Formulation

Supply Chain Design for the Industrial Internet of Things and the Industry 4.0

Contact Info

Product

Resources

About