Module 6 Resources
The following references will help you and your organization better understand Cyber Security and the risks involved with today’s COVID-19 challenges.
NIST – Cybersecurity Framework: https://www.nist.gov/cyberframework
Description:The Framework is voluntary guidance, based on existing standards, guidelines, and practices for organizations to better manage and reduce cybersecurity risk. In addition to helping organizations manage and reduce risks, it was designed to foster risk and cybersecurity management communications amongst both internal and external organizational stakeholders.
MITRE Attack Framework: https://attack.mitre.org/
Description: MITRE ATT&CK® is a globally-accessible knowledge base of adversary tactics and techniques based on real-world observations. The ATT&CK knowledge base is used as a foundation for the development of specific threat models and methodologies in the private sector, in government, and in the cybersecurity product and service community.
With the creation of ATT&CK, MITRE is fulfilling its mission to solve problems for a safer world — by bringing communities together to develop more effective cybersecurity. ATT&CK is open and available to any person or organization for use at no charge.
Eckles, David L., Robert E. Hoyt, and Steve M. Miller. "Reprint of: The impact of enterprise risk management on the marginal cost of reducing risk: Evidence from the insurance industry." Journal of Banking & Finance 49 (2014): 409-423.
Deloitte. “Reimagine risk: Thrive in your evolving ecosystem.” Deloitte’s 2019 Survey of Risk Management
Philip E. J. Green. Enterprise Risk Management: A Common Framework for the Entire Organization. Elsevier, 2015.
The Risk Management Society (https://rims.org/)
CNBC’s television show, The Profit. “Mr. Green Tea Episode” (2013) https://www.imdb.com/title/tt3142348/