How to Measure Anything in Cybersecurity Risk 2nd Edition
Product ID: 531455329
Buy anything from 5,000+ international stores. One checkout price. No surprise fees. Join 2M+ shoppers on Desertcart.
Desertcart purchases this item on your behalf and handles shipping, customs, and support to Tunisia.
A start-to-finish guide for realistically measuring cybersecurity risk In the newly revised How to Measure Anything in Cybersecurity Risk, Second Edition , a pioneering information security professional and a leader in quantitative analysis methods delivers yet another eye-opening text applying the quantitative language of risk analysis to cybersecurity. In the book, the authors demonstrate how to quantify uncertainty and shed light on how to measure seemingly intangible goals. It's a practical guide to improving risk assessment with a straightforward and simple framework. Advanced methods and detailed advice for a variety of use cases round out the book, which also includes: A new "Rapid Risk Audit" for a first quick quantitative risk assessment. New research on the real impact of reputation damage New Bayesian examples for assessing risk with little data New material on simple measurement and estimation, pseudo-random number generators, and advice on combining expert opinion Dispelling long-held beliefs and myths about information security, How to Measure Anything in Cybersecurity Risk is an essential roadmap for IT security managers, CFOs, risk and compliance professionals, and even statisticians looking for novel new ways to apply quantitative techniques to cybersecurity. Review: Best book - amazing book good seller must buy for risk management Review: Required reading for security and risk professionals - The cybersecurity profession is rich in data and the boardroom is desperate for meaningful risk analysis, but our traditional ways of communicating risk doesn't use the data and favors vague phrases to communicate the message. This book aims to remedy this problem and does so masterfully. Many readers will need to un-learn some habits in order to embrace risk measurement, but the authors make a solid case for why the traditional qualitative risk register isn't adequate for the modern landscape. I personally had to read some sections more than once, which is a complement to the authors. Some of the best books I read involve some struggle and "How to Measure Anything in Cybersecurity Risk" is easily among the top ten books in this profession I've read. I'll further add that I'm not often a five star sort of reviewer, thinking often the truth lies in middle but this book is the exception to the rule. If you work in cybersecurity and want to improve your decision making ability this book is for you.
| Best Sellers Rank | #250,961 in Books ( See Top 100 in Books ) #187 in Econometrics & Statistics #356 in Computer Security #1,257 in Management |
| Customer Reviews | 4.5 out of 5 stars 104 Reviews |
V**L
Best book
amazing book good seller must buy for risk management
D**N
Required reading for security and risk professionals
The cybersecurity profession is rich in data and the boardroom is desperate for meaningful risk analysis, but our traditional ways of communicating risk doesn't use the data and favors vague phrases to communicate the message. This book aims to remedy this problem and does so masterfully. Many readers will need to un-learn some habits in order to embrace risk measurement, but the authors make a solid case for why the traditional qualitative risk register isn't adequate for the modern landscape. I personally had to read some sections more than once, which is a complement to the authors. Some of the best books I read involve some struggle and "How to Measure Anything in Cybersecurity Risk" is easily among the top ten books in this profession I've read. I'll further add that I'm not often a five star sort of reviewer, thinking often the truth lies in middle but this book is the exception to the rule. If you work in cybersecurity and want to improve your decision making ability this book is for you.
J**.
Covers Bayesian Statistical Analysis Applied to Cyber Security
I was hoping for some practical new ideas for methods of exploring and quantifying likelyhood and impact. This book provides a DEEP dive into Bayesian Statistical analysis, but it spends the first half of itself going into why it's needed and what is wrong with current subjective methods. I already knew what was wrong and why, that's why I bought the book. The techniques described will require a complete refit of what you are doing at a computational level, plus a complete mindshift away from normative practice. Disappointed ....
C**E
Illuminante! Chiarissimo!
The book is really interesting, with a very reader-friendly approach, as it is accessible to anyone who has the curiosity to learn more about cyber risk assessment. Reading this book was even fun for me because of the opportunity it gave me to be introduced to statistical laws.
O**A
Puede mejorar en próximas ediciones
Muchas ideas de este libro por muy innovadoras que suenen no se desarrollan a una profundidad profesional. A veces el autor evita explicar tópicos esenciales que promete el libro porque sencillamente ni él mismo domina la materia o porque le interesa que muerdas el anzuelo de consultoría.
A**H
Incredible book
One of the greatest books on this topic
Trustpilot
2 weeks ago
1 month ago