Employing Graphical Risk Models to Facilitate Cyber-Risk Monitoring - the WISER Approach

We present a method for developing machine-readable cyber-risk assessment algorithms based on graphical risk models, along with a framework that can automatically collect the input, execute the algorithms, and present the assessment results to a decision maker. This facilitates continuous monitoring of cyber-risk. The intended users of the method are professionals and practitioners interested in developing new algorithms for a specific organization, system or attack type, such as consultants or dedicated cyber-risk experts in larger organizations. For the assessment results, the intended users are decision makers in charge of countermeasure selection from an overall business perspective.Employing Graphical Risk Models to Facilitate Cyber-Risk Monitoring - the WISER ApproachacceptedVersio