Safe and Secure: Mutually Supporting Safety and Security Analyses with Model-Based Suggestions

Kruck, Bastian; Munk, Peter; Angermeier, Daniel

doi:10.1109/issrew53611.2021.00061

Cited by 3 publications

(2 citation statements)

References 12 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…They presented a conceptual model to manage the identity of the database of a public organization [23]. They present a prototype of a tool for security analysis and protection of organizations by joining component fault tree models and attack trees [24].…”

Section: Methodsmentioning

confidence: 99%

“…Within any strategic management it is important to know the current state of cybersecurity of the organization, to know what we must improve, always with the support of senior management, creating an organizational culture of security that includes all staff [26]. [17,18,20,23,24] We call the other group of variables "Technology, infrastructure and resources", which are essential to operate and implement any management or project in the organization, such as human, technological, material resources, among others, as well as the physical infrastructure, networks, etc.…”

Section: Internal Factorsmentioning

confidence: 99%

See 1 more Smart Citation

Prototype to Identify the Capacity in Cybersecurity Management for a Public Organization

Izurieta¹,

Toapanta²,

Morales³

et al. 2023

Adv. sci. technol. eng. syst. j.

View full text Add to dashboard Cite

Public organizations are subjected to a complex security situation, which can be addressed by permanently strengthening and evaluating their cybersecurity capabilities. The objective of this research is to develop a model to identify the cybersecurity management capacity of public organizations. The deductive method was applied for the review and analysis of criteria, factors and variables related to cybersecurity capacity in public organizations. It resulted in a model to identify the Cybersecurity Management Capacity of public organizations, with its process to assess and categorize organizations according to their level of cybersecurity capacity. It was concluded that public organizations from developed countries in cybersecurity such as Spain have better capacities (greater than 60% CMC) than less developed countries such as Ecuador (less than 60% CMC), due to the cybersecurity context where these organizations operate. To obtain a high level of cybersecurity, public organizations must have the support of the governments of the different political divisions of a country, as well as permanent international collaboration in the field of cybersecurity.

show abstract

Section: Methodsmentioning

confidence: 99%