Cybersecurity Risk Management (CRM) is concerned with the process of managing (reducing) potentially harmful uncertain events due to the lack of effective cybersecurity.  The key methods for managing cybersecurity risk include, but are not limited to: (1) the efficient use of resources, (2) internal controls, (3) information sharing, (4) technical improvements, (5) behavioral/ organizational improvements, and (6) cybersecurity insurance.  

In order to facilitate research related to Cybersecurity Risk Management, the CRM Research Group has been formed. This Research Group consists of a network of individuals who have a particular interest in working on research issues related to economic aspects of Cybersecurity Risk Management.  The CRM Research Group is committed to using the tools of economic analysis to better understand and improve cybersecurity.  Correspondence concerning the CRM Research Group should be sent to Dr. Lawrence A. Gordon.

The below information is provided as a resource for researchers and practitioners interested in addressing issues related to Cybersecurity Risk Management.

• Individuals concerned with issues related to Cybersecurity Risk Management can be found here.

• Organizations concerned with issues related to Cybersecurity Risk Management can be found here.

• Various outlets for publishing research related to the economic aspects of Cybersecurity Risk Management can be found here .  

• Cybersecurity Risk Management slide show can be found here.

 

      Click Back to Lawrence A. Gordon's HomePage