Cyber Situational Awareness
Organizational leaders are under immense pressure to make sound cybersecurity investment choices. Cybersecurity has truly become a political, military, economic, social, information, infrastructure, physical environment, and time concern for senior leaders. Read the full paper. Cyber Situational Awareness.
The emergent and dynamic characteristics of cyberspace are a result of rapid advancements in computer and communication technologies, as well as the tight coupling of the cyberspace domain to physical operations. Military organizations have embedded cyberspace assets (information technology) into their mission processes as a means to increase operational efficiency, improve decision-making quality, and shorten the sensor-to-shooter cycle. This cyberspace asset-to-mission dependency can place an organization’s mission at risk when a cyberspace incident (e.g., the loss or manipulation of a critical information resource) occurs.
Non-military organizations typically address this type of cybersecurity risk through an introspective, enterprise-wide focused risk management program that continuously identifies, prioritizes, and documents risks so an economical set of control measures (e.g., people, processes, technology) can be selected to mitigate the risks to an acceptable level.
The explicit valuation of information and cyber resources, in terms of their ability to support the organizational mission, enables the creation of a continuity of operations plan and an incident recovery plan. Read the full paper. Cyber Situational Awareness.