Fast, Lightweight, and Efficient Cybersecurity Optimization for Tactical–Operational Management-Reference-Cited by-同舟云学术

Fast, Lightweight, and Efficient Cybersecurity Optimization for Tactical–Operational Management

Published:2023-05-22 Issue:10 Volume:13 Page:6327
ISSN:2076-3417
Container-title:Applied Sciences
language:en
Short-container-title:Applied Sciences

Author:

Domínguez-Dorado Manuel¹,Cortés-Polo David²^ORCID,Carmona-Murillo Javier³^ORCID,Rodríguez-Pérez Francisco J.³,Galeano-Brajones Jesús³^ORCID

Affiliation:

1. Department of Information Systems and Digital Toolkit, Public Business Entity Red.es, 28020 Madrid, Spain

2. Department of Signal Theory and Communications and Telematics Systems and Computing, Rey Juan Carlos University, 28933 Madrid, Spain

3. Department of Computing and Telematics Systems Engineering, University of Extremadura, 10003 Cáceres, Spain

Abstract

The increase in frequency and complexity of cyberattacks has heightened concerns regarding cybersecurity and created an urgent need for organizations to take action. To effectively address this challenge, a comprehensive and integrated approach is required involving a cross-functional cybersecurity workforce that spans tactical and operational levels. In this context there can be various combinations of cybersecurity actions that affect different functional domains and that allow for meeting the established requirements. In these cases, agreement will be needed, but finding high-quality combinations requires analysis from all perspectives on a case-by-case basis. With a large number of cybersecurity factors to consider, the size of the search space of potential combinations becomes unmanageable without automation. To solve this issue, we propose Fast, Lightweight, and Efficient Cybersecurity Optimization (FLECO), an adaptive, constrained, and multi-objective genetic algorithm that reduces the time required to identify sets of high-quality cybersecurity actions. FLECO enables productive discussions on viable solutions by the cross-functional cybersecurity workforce within an organization, fostering managing meetings where decisions are taken and boosting the overall cybersecurity management process. Our proposal is novel in its application of evolutionary computing to solve a managerial issue in cybersecurity and enhance the tactical–operational cybersecurity management process.

Publisher

MDPI AG

Subject

Fluid Flow and Transfer Processes,Computer Science Applications,Process Chemistry and Technology,General Engineering,Instrumentation,General Materials Science

Link

https://www.mdpi.com/2076-3417/13/10/6327/pdf

Reference37 articles.

1. ENISA (2022). ENISA Threat Landscape 2022, European Union Agency for Cybersecurity. Available online: https://www.enisa.europa.eu/publications/enisa-threat-landscape-2022.

2. CCN-CERT (2022). Ciberamenazas y tendencias-Edición 2022, CCN. Available online: https://www.ccn-cert.cni.es/informes/informes-ccn-cert-publicos/6786-ccn-cert-ia-24-22-ciberamenazas-y-tendencias-edicion-2022-1/file.html.

3. The Cybersecurity Aspects of New Entities Need a Cybernetic, Holistic Perspective;Int. J. Cyber Forensic Adv. Threat. Investig.,2021

4. NIST (2023, May 21). Framework for Improving Critical Infrastructure Cybersecurity v1.1, Available online: https://nvlpubs.nist.gov/nistpubs/CSWP/NIST.CSWP.04162018.pdf.

5. (2022). Information Security, Cybersecurity and Privacy Protection—Information Security Management Systems—Requirements (Standard No. ISO/IEC JTC 1/SC 27).

Cited by 2 articles. 订阅此论文施引文献订阅此论文施引文献，注册后可以免费订阅5篇论文的施引文献，订阅后可以查看论文全部施引文献

1. Boosting Holistic Cybersecurity Awareness with Outsourced Wide-Scope CyberSOC: A Generalization from a Spanish Public Organization Study;Information;2023-10-25

2. Leveraging Taxonomical Engineering for Security Baseline Compliance in International Regulatory Frameworks;Future Internet;2023-10-07