An Economic Approach to Info Security

63 %
38 %
Information about An Economic Approach to Info Security
Technology

Published on April 16, 2012

Author: ebellis

Source: slideshare.net

Description

Ed Bellis Keynote at IANS Twin Cities Security Forum.

An Economic Approach to InfoSec

Nice To Meet YouAbout Me CoFounder HoneyApps Former CISO Orbitz Contributing Author Beautiful Security CSO Magazine/Online Writer InfoSec Island BloggerAbout Risk I/O Data-Driven Vulnerability Management as a Service 16 Hot Startups - eWeek 3 Startups to Watch - Information Week

Security is a Lemons Market

Lacks Incentives

Negative Externalities

An Industry Built on FUD

A Data DrivenApproach

Example Use Case 1 DLP CMDB Vuln SIEM Mgmt

Example Use Case 2 HD Moore’s Law - Josh Corman aka Security Mendoza Line “Compute power grows at the rate of doubling about every 2 years” “Casual attacker power grows at the rate of Metasploit”

Example Use Case 3Predicting Vulnerability (or even breach) Trending Key Attributes Outcomes

Example Use Case 4CVSS &The Base credit:Rate Fallacy Jeff Lowder

Example Use Case 5CVE Trending Analysis Gunnar’s Debt Clock

Example Use Case 6 Targets of Opportunity?My(vuln posture X other threat activity) / (other vuln posture X other threat activity)

(we need more of this)

talking about our mistakes

Q&Afollow us the blog http://blog.risk.io/ twitter @ebellis And one more thing.... @risk_io We’re Hiring! https://www.risk.io/jobs

Add a comment

Related presentations

Related pages

The economic approach of information security | DeepDyve

Read "The economic approach of information security" on DeepDyve ... We identify that there must be an economic evaluation of security ... Info. Group ...
Read more

The Household Economy Approach. Managing the impact of ...

Managing the impact of climate change on poverty and food security in ... social and economic data to ... info/document/malawi-food-security ...
Read more

Why Information Security is Hard - An Economic Perspective

Why Information Security is Hard { An Economic Perspective ... The more subtle approach ... Why Information Security is Hard ...
Read more

An Approach for the Development of National Information ...

An Approach for the Development of National Information Security Policies ... economic, social and ... OECD principles of security “info. systems ...
Read more

Microeconomics - Wikipedia

Microeconomics (from Greek prefix ... Accordingly, individuals, with associated economic activities, ... econometric analysis of security returns, ...
Read more

Classical liberalism - Wikipedia

Classical liberalism ... and to establish comprehensive patterns of social security. ... Laissez faire was seen as the only possible economic approach, ...
Read more

NATO - Homepage

... for talks on how NATO continues to adapt to a changed security environment. ... 21 Oct. 2016 Despite economic ... Russia’s approach to ...
Read more

Security - DHL - Paket | Express

The process involves a series of security rules for picking up your DHL Express ... (Authorised Economic ... Our Approach; Contact Us; ...
Read more

Smart on Crime - DPIC

Smart on Crime: Reconsidering the Death Penalty in a Time of Economic Crisis National Poll of Police Chiefs Puts Capital Punishment
Read more