Corpus ID: 15744381

A Threat-Driven Approach to Cyber Security Methodologies , Practices and Tools to Enable a Functionally Integrated Cyber Security Organization

@inproceedings{Muckin2015ATA,
  title={A Threat-Driven Approach to Cyber Security Methodologies , Practices and Tools to Enable a Functionally Integrated Cyber Security Organization},
  author={Michael Muckin},
  year={2015}
}

Michael Muckin
Published 2015
Computer Science

Contemporary cyber security risk management practices are largely driven by compliance requirements, which force organizations to focus on security controls and vulnerabilities. Risk management considers multiple facets – including assets, threats, vulnerabilities and controls – which are jointly evaluated with the variables of probability and impact. Threats cause damage to information systems. Threats utilize vulnerabilities to enact this damage, and security controls are implemented to… Expand

Share This Paper

16 Citations

Highly Influential Citations

4

Background Citations

7

Methods Citations

3

The Battle for New York: A Case Study of Applied Digital Threat Modeling at the Enterprise Level

R. Stevens, Daniel Votipka, Elissa M. Redmiles, Colin Ahern, P. Sweeney, Michelle L. Mazurek
Computer Science
USENIX Security Symposium
2018

13
PDF

Defendable Architectures Achieving Cyber Security by Designing for Intelligence Driven Defense

Scott C. Fitch
Computer Science
2015

Highly Influenced
PDF

Applying Indications and Warning Frameworks to Cyber Incidents

Bilyana Lilly, Lillian Ablon, Q. Hodgson, Adam S. Moore
Business, Computer Science
2019 11th International Conference on Cyber Conflict (CyCon)
2019

1
PDF

A REVIEW OF GAME THEORY APPROACH TO CYBER SECURITY RISK MANAGEMENT

D. A. Akinwumi, Gabriel Babatunde Iwasokun, B. K. Alese, S. Oluwadare
Engineering
2018

3
Highly Influenced
PDF

Strengthening information technology security through the failure modes and effects analysis approach

A. Asllani, A. Lari, Nasim Lari
Computer Science
2018

4

A Threat Intelligence Tool for the Security Development Lifecycle

R. Kannavara, Jacob Vangore, William Roberts, M. Lindholm, Priti Shrivastav
Computer Science
ISEC
2019

Analyzing the Interplay Between Regulatory Compliance and Cybersecurity

A. Marotta, S. Madnick
Business
2020

PDF

Security Risk Management of E-commerce Systems

Abasi-amefon Obot
Business
2018

1

Automating Threat Intelligence for SDL

R. Kannavara, Jacob Vangore, William Roberts, M. Lindholm, Priti Shrivastav
Computer Science
2018 IEEE Cybersecurity Development (SecDev)
2018

PDF

Applying a Threat Model to Cloud Computing

V. Urias, B. V. Leeuwen, W. Stout, Han Lin
Computer Science
2018 International Carnahan Conference on Security Technology (ICCST)
2018

Highly Influenced

References

SHOWING 1-10 OF 51 REFERENCES

SORT BY

Intelligence-Driven Computer Network Defense Informed by Analysis of Adversary Campaigns and Intrusion Kill Chains

E. Hutchins, Michael J. Cloppert, Rohan M. Amin
Computer Science
2010

510
Highly Influential
PDF

Security and Privacy Controls for Federal Information Systems and Organizations

J. Initiative
Computer Science
2013

300
PDF

Cyber Threat Metrics

J. N. Frye, Cynthia K. Veitch, +4 authors Scott Maruoka
Computer Science
2012

39
PDF

Common Attack Pattern Enumeration and Classification — CAPEC TM A Community Knowledge Resource for Building Secure Software

2013

80
PDF

NIST Special Publication 800-39 Managing Information Security Risk

Emmanuel Aroms
Engineering
2012

25

The Diamond Model of Intrusion Analysis

S. Caltagirone, Andrew D Pendergast, Chris Betz
Engineering
2013

96
PDF

Open Web Application Security Project

Dirk Fox
Computer Science
Datenschutz und Datensicherheit - DuD
2006

170
PDF

for Sandia National Laboratories

New Mexico.
Environmental Science
2009

117
PDF

Defendable Architectures

2015.
2015

STRIDE Chart

11 September 2007. [Online]. Available: http://blogs.microsoft.com/cybertrust/2007/09/11/stride-chart/.
2007