Optimal Spending on Cybersecurity Measures : Risk Management book cover
1st Edition

Optimal Spending on Cybersecurity Measures
Risk Management

ISBN 9781032061405
Published July 30, 2021 by Routledge
164 Pages 27 B/W Illustrations

FREE Standard Shipping
USD $59.95

Prices & shipping based on shipping country


Book Description

This book explores the strategic decisions made by organizations when implementing cybersecurity controls and leveraging economic models and theories from the economics of information security and risk-management frameworks.

Based on unique and distinct research completed within the field of risk-management and information security, this book provides insight into organizational risk-management processes utilized in determining cybersecurity investments. It describes how theoretical models and frameworks rely on either specific scenarios or controlled conditions and how decisions on cybersecurity spending within organizations—specifically, the funding available in comparison to the recommended security measures necessary for compliance—vary depending on stakeholders. As the trade-off between the costs of implementing a security measure and the benefit derived from the implementation of security controls is not easily measured, a business leader’s decision to fund security measures may be biased. The author presents an innovative approach to assess cybersecurity initiatives with a risk-management perspective and leverages a data-centric focus on the evolution of cyber-attacks.

This book is ideal for business school students and technology professionals with an interest in risk management.

Table of Contents

Preface; Chapter 1: Introduction; Chapter 2: Enterprise Risk Management Framework; Chapter 3: Alignment with the Enterprise Risk Management Framework; Chapter 4: Risk Management Practice – Vulnerability Management; Chapter 5: Risk Management Practice – System Development Lifecycle; Chapter 6: Risk Management Practice – Business Continuity Management; Chapter 7: Cybersecurity Risk Management Framework; Chapter 8: Case Studies; References

View More



Tara Kissoon is a multi-certified IT Risk & Security Leader with more than 20 years of experience in technology and 13 years of experience in the financial services industry. She brings continued success to technology, IT risk and information security programmes and projects within large organizations. She is acknowledged as a leader, security architect and trusted advisor with a talent for working with cross-functional teams to achieve short- and long-term business objectives.