Cognitive Risk Framework for Cybersecurity: Bounded Rationality: Executive Summary: Part I. Issue 5 (1st November 2016)
- Record Type:
- Journal Article
- Title:
- Cognitive Risk Framework for Cybersecurity: Bounded Rationality: Executive Summary: Part I. Issue 5 (1st November 2016)
- Main Title:
- Cognitive Risk Framework for Cybersecurity: Bounded Rationality
- Authors:
- Bone, James
- Abstract:
- Abstract: Cyber risk professionals face a formidable challenge in keeping pace with the asymmetric nature of today's advanced threats in cyber security. Spending on cyber security has skyrocketed yet the threat continues to grow exponentially. This phenomenon is called the Cyber Paradox and describes what has become an entrenched battle for security professionals in defending against an increasingly sophisticated adversary that, to date, has adapted faster than defensive measures to prevent loss of data or access to sensitive information. Conventional security defenses have proven less than effective resulting in a virtual "Maginot's Line" of increased fortification by hardening the enterprise yet resulting in greater vulnerability to achieving the goals of defending the organization from cyber threats ("Maginot's Line", n.d.). This article reviews the causes of these misperceptions in security defense and explores research in decision science, intelligence and security informatics, machine learning, and the role of simplicity in shaping a cognitive risk framework. The findings conclude that the human-machine interaction is the greatest threat in cyber space yet very few, if any, security professionals are well versed in strategies to close this gap. The purpose of this article is to bring to light evolving new strategies with promising success and to reveal a few surprises in how simplicity is an under-appreciated strategy in cyber security. Complete text of "CognitiveAbstract: Cyber risk professionals face a formidable challenge in keeping pace with the asymmetric nature of today's advanced threats in cyber security. Spending on cyber security has skyrocketed yet the threat continues to grow exponentially. This phenomenon is called the Cyber Paradox and describes what has become an entrenched battle for security professionals in defending against an increasingly sophisticated adversary that, to date, has adapted faster than defensive measures to prevent loss of data or access to sensitive information. Conventional security defenses have proven less than effective resulting in a virtual "Maginot's Line" of increased fortification by hardening the enterprise yet resulting in greater vulnerability to achieving the goals of defending the organization from cyber threats ("Maginot's Line", n.d.). This article reviews the causes of these misperceptions in security defense and explores research in decision science, intelligence and security informatics, machine learning, and the role of simplicity in shaping a cognitive risk framework. The findings conclude that the human-machine interaction is the greatest threat in cyber space yet very few, if any, security professionals are well versed in strategies to close this gap. The purpose of this article is to bring to light evolving new strategies with promising success and to reveal a few surprises in how simplicity is an under-appreciated strategy in cyber security. Complete text of "Cognitive Hack: The New Battleground in Cybersecurity … the Human Mind" is available here:https://www.crcpress.com/Cognitive-Hack-The-New-Battleground-in-Cybersecurity--the-Human-Mind/Bone/p/book/9781498749817 … (more)
- Is Part Of:
- EDPACS. Volume 54:Issue 5(2016)
- Journal:
- EDPACS
- Issue:
- Volume 54:Issue 5(2016)
- Issue Display:
- Volume 54, Issue 5 (2016)
- Year:
- 2016
- Volume:
- 54
- Issue:
- 5
- Issue Sort Value:
- 2016-0054-0005-0000
- Page Start:
- 1
- Page End:
- 11
- Publication Date:
- 2016-11-01
- Subjects:
- Electronic data processing -- Auditing -- Periodicals
Computers -- Access control -- Periodicals
Electronic data processing departments -- Security measures -- Periodicals
005.8 - Journal URLs:
- http://www.tandfonline.com/toc/uedp20/current ↗
http://www.tandfonline.com/ ↗ - DOI:
- 10.1080/07366981.2016.1247564 ↗
- Languages:
- English
- ISSNs:
- 0736-6981
- Deposit Type:
- Legaldeposit
- View Content:
- Available online (eLD content is only available in our Reading Rooms) ↗
- Physical Locations:
- British Library DSC - 3661.115000
British Library DSC - BLDSS-3PM
British Library HMNTS - ELD Digital store - Ingest File:
- 1081.xml