Skip to content

Check your blind spot : a new cyber-security metric for measuring incident response readiness

Research output: Chapter in Book/Report/Conference proceedingConference contribution

This paper presents some ideas on defining and implementing a new Cyber-security risk metric for measuring the readiness of organisations, in terms of the availability of their resources, in dealing with new attack incidents launched against their infrastructures whilst recovering from ongoing incidents. Our new metric, the Mean Blind Spot, is defined as the average interval between the recovery time of an existing incident and the occurrence time of a new incident. It is therefore designed to capture those time intervals where the organisation is most vulnerable due to possible lack of available resources. We present an approach for implementing our new metric using open data on security incidents available from the VERIS community dataset.
Original languageEnglish
Title of host publicationProceedings of the 4th International Workshop on Risk Assessment and Risk-driven Quality Assurance (RISK)
PublisherSpringer
Pages1-15
Number of pages16
Volume10224
StateAccepted/In press - 15 Feb 2017
Event4th International Workshop on Risk Assessment and Risk-driven Quality Assurance - Graz, Austria

Publication series

NameLecture Notes in Computer Science
ISSN (Print)0302-9743

Workshop

Workshop4th International Workshop on Risk Assessment and Risk-driven Quality Assurance
CountryAustria
CityGraz
Period18/10/16 → …

Related information

Relations Get citation (various referencing formats)

ID: 6520750