Identifying and Assessing Risk Factors to Lower Hazards in Cyber Security Penetration Testing-Reference-Cited by-同舟云学术

Identifying and Assessing Risk Factors to Lower Hazards in Cyber Security Penetration Testing

Published:2023-11-09 Issue: Volume: Page:265-290
ISSN:1948-9730
Container-title:Advances in Information Security, Privacy, and Ethics
language:
Short-container-title:

Author:

Selvaraj Mayukha¹^ORCID,Vadivel R.¹^ORCID

Affiliation:

1. Bharathiar University, India

Abstract

Penetration testing is a rapidly growing field. In today's technological exposure to cyber-attacks, there is a need for easily understandable metrics of cyber-attacks and the impact that it causes on enterprises. The measurement metrics are significant challenges in assessing a cyber-crime incident or a penetration testing audit. There are so many factors in the cyber security field that a penetration tester must consider determining the risk of a particular event or attack. Without any measurement or metrics, there is a chance that the pentesters or penetration testing can get stuck in a bottomless pit without arriving at a defined result. A tool called CVSS attempts to calculate risk based on specific parameters. There are complex technicalities involved in arriving at a risk index to be understood by the board members of an enterprise to make an informed decision about the enterprise's cyber security plan.

Publisher

IGI Global

Reference19 articles.

1. Risk Assessment Uncertainties in Cybersecurity Investments

2. Multicriteria Decision Framework for Cybersecurity Risk Assessment and Management

3. Assessing MITRE ATT&CK Risk Using a Cyber-Security Culture Framework

4. Cyber crime, cyber threat, cyber security strategies and cyber law in Nepal.;S.Giri;Pramana Research Journal,2019

5. PRISM: a strategic decision framework for cybersecurity risk assessment