Towards integrating insurance data into information security investment decision making
Making security investment decisions involves giving consideration to a variety of risks. However, there is little robust empirical evidence that can be used to support this process. This paper builds a road-map for incorporating cyber insurance data into existing security investment models. We prop...
| Main Authors: | , |
|---|---|
| Format: | Conference item |
| Published: |
Institute of Electrical and Electronics Engineers
2018
|
| _version_ | 1797056129034878976 |
|---|---|
| author | Woods, D Simpson, A |
| author_facet | Woods, D Simpson, A |
| author_sort | Woods, D |
| collection | OXFORD |
| description | Making security investment decisions involves giving consideration to a variety of risks. However, there is little robust empirical evidence that can be used to support this process. This paper builds a road-map for incorporating cyber insurance data into existing security investment models. We propose an approach for using this data as an input for one investment model and introduce three distinct methods for evaluating the effectiveness of a new investment. We then describe a road-map for improving the insurance data collection process that aims to improve data utility for researchers. This approach could benefit those trying to justify an investment at all levels by providing evidence for the return on security. |
| first_indexed | 2024-03-06T19:19:01Z |
| format | Conference item |
| id | oxford-uuid:1968062e-9b0d-47d0-8145-522d825edbaa |
| institution | University of Oxford |
| last_indexed | 2024-03-06T19:19:01Z |
| publishDate | 2018 |
| publisher | Institute of Electrical and Electronics Engineers |
| record_format | dspace |
| spelling | oxford-uuid:1968062e-9b0d-47d0-8145-522d825edbaa2022-03-26T10:48:55ZTowards integrating insurance data into information security investment decision makingConference itemhttp://purl.org/coar/resource_type/c_5794uuid:1968062e-9b0d-47d0-8145-522d825edbaaSymplectic Elements at OxfordInstitute of Electrical and Electronics Engineers2018Woods, DSimpson, AMaking security investment decisions involves giving consideration to a variety of risks. However, there is little robust empirical evidence that can be used to support this process. This paper builds a road-map for incorporating cyber insurance data into existing security investment models. We propose an approach for using this data as an input for one investment model and introduce three distinct methods for evaluating the effectiveness of a new investment. We then describe a road-map for improving the insurance data collection process that aims to improve data utility for researchers. This approach could benefit those trying to justify an investment at all levels by providing evidence for the return on security. |
| spellingShingle | Woods, D Simpson, A Towards integrating insurance data into information security investment decision making |
| title | Towards integrating insurance data into information security investment decision making |
| title_full | Towards integrating insurance data into information security investment decision making |
| title_fullStr | Towards integrating insurance data into information security investment decision making |
| title_full_unstemmed | Towards integrating insurance data into information security investment decision making |
| title_short | Towards integrating insurance data into information security investment decision making |
| title_sort | towards integrating insurance data into information security investment decision making |
| work_keys_str_mv | AT woodsd towardsintegratinginsurancedataintoinformationsecurityinvestmentdecisionmaking AT simpsona towardsintegratinginsurancedataintoinformationsecurityinvestmentdecisionmaking |