Design Considerations for a Cyber Incident Mission Impact Assessment (CIMIA) Process

Design Considerations for a Cyber Incident Mission Impact Assessment (CIMIA) Process

Virtually all modern organizations have embedded information systems and networking technologies into their core business processes as a means to increase operational efficiency, improve decision making quality, reduce delays, and/or maximize profit. Unfortunately, this dependence can place the orga...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Hauptverfasser: Grimaila, Michael R, Fortson, Larry W, Sutton, Janet L
Format: Report
Sprache:eng
Schlagworte:
Computer Systems
Computer Systems Management and Standards
CYBER DAMAGE ASSESSMENT
INCIDENT NOTIFICATION
INFORMATION ASSURANCE
INFORMATION SYSTEMS
MILITARY ORGANIZATIONS
MISSION IMPACT ASSESSMENT
RISK MANAGEMENT
SITUATIONAL AWARENESS
SYMPOSIA
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:Virtually all modern organizations have embedded information systems and networking technologies into their core business processes as a means to increase operational efficiency, improve decision making quality, reduce delays, and/or maximize profit. Unfortunately, this dependence can place the organization's mission at risk when the loss or degradation of the confidentiality, integrity, availability, non-repudiation, or authenticity of a critical information resource or flow occurs. In this paper, we motivate design considerations for an information asset-based, Cyber Incident Mission Impact Assessment (CIMIA) process whose goal is to provide decision makers with timely notification and relevant impact assessment, in terms of mission objectives, from the time an information incident is declared, until the incident is fully remediated. Presented at the International Conference on Security and Management (SAM09) held in Las Vegas, NV on 13-16 Jul 2009.