An Economic Approach to Info Security

63 %
38 %
Information about An Economic Approach to Info Security

Published on April 16, 2012

Author: ebellis



Ed Bellis Keynote at IANS Twin Cities Security Forum.

An Economic Approach to InfoSec

Nice To Meet YouAbout Me CoFounder HoneyApps Former CISO Orbitz Contributing Author Beautiful Security CSO Magazine/Online Writer InfoSec Island BloggerAbout Risk I/O Data-Driven Vulnerability Management as a Service 16 Hot Startups - eWeek 3 Startups to Watch - Information Week

Security is a Lemons Market

Lacks Incentives

Negative Externalities

An Industry Built on FUD

A Data DrivenApproach

Example Use Case 1 DLP CMDB Vuln SIEM Mgmt

Example Use Case 2 HD Moore’s Law - Josh Corman aka Security Mendoza Line “Compute power grows at the rate of doubling about every 2 years” “Casual attacker power grows at the rate of Metasploit”

Example Use Case 3Predicting Vulnerability (or even breach) Trending Key Attributes Outcomes

Example Use Case 4CVSS &The Base credit:Rate Fallacy Jeff Lowder

Example Use Case 5CVE Trending Analysis Gunnar’s Debt Clock

Example Use Case 6 Targets of Opportunity?My(vuln posture X other threat activity) / (other vuln posture X other threat activity)

(we need more of this)

talking about our mistakes

Q&Afollow us the blog twitter @ebellis And one more thing.... @risk_io We’re Hiring!

Add a comment

Related presentations

Presentación que realice en el Evento Nacional de Gobierno Abierto, realizado los ...

In this presentation we will describe our experience developing with a highly dyna...

Presentation to the LITA Forum 7th November 2014 Albuquerque, NM

Un recorrido por los cambios que nos generará el wearabletech en el futuro

Um paralelo entre as novidades & mercado em Wearable Computing e Tecnologias Assis...

Microsoft finally joins the smartwatch and fitness tracker game by introducing the...

Related pages

The economic approach of information security | DeepDyve

Read "The economic approach of information security" on DeepDyve ... We identify that there must be an economic evaluation of security ... Info. Group ...
Read more

The Household Economy Approach. Managing the impact of ...

Managing the impact of climate change on poverty and food security in ... social and economic data to ... info/document/malawi-food-security ...
Read more

Why Information Security is Hard - An Economic Perspective

Why Information Security is Hard { An Economic Perspective ... The more subtle approach ... Why Information Security is Hard ...
Read more

An Approach for the Development of National Information ...

An Approach for the Development of National Information Security Policies ... economic, social and ... OECD principles of security “info. systems ...
Read more

Microeconomics - Wikipedia

Microeconomics (from Greek prefix ... Accordingly, individuals, with associated economic activities, ... econometric analysis of security returns, ...
Read more

Classical liberalism - Wikipedia

Classical liberalism ... and to establish comprehensive patterns of social security. ... Laissez faire was seen as the only possible economic approach, ...
Read more

NATO - Homepage

... for talks on how NATO continues to adapt to a changed security environment. ... 21 Oct. 2016 Despite economic ... Russia’s approach to ...
Read more

Security - DHL - Paket | Express

The process involves a series of security rules for picking up your DHL Express ... (Authorised Economic ... Our Approach; Contact Us; ...
Read more

Smart on Crime - DPIC

Smart on Crime: Reconsidering the Death Penalty in a Time of Economic Crisis National Poll of Police Chiefs Puts Capital Punishment
Read more