BSW #291 - Doug Hubbard
Security Weekly Podcast Network (Audio)
00:00
Quantifying Risk in Cybersecurity
The chapter emphasizes the importance of using mathematical methods to quantify risk in cybersecurity rather than relying on shortcuts like risk matrices. It introduces the concept of 'analysis placebo' and advocates for quantitative estimates over structured methods. The discussion includes transitioning from traditional risk matrices to quantitative methods like Monte Carlo simulations and Bayesian analysis, highlighting the need for cybersecurity professionals to understand business language for effective decision-making.
Transcript
Play full episode
