{"product_id":"how-to-measure-anything-in-cybersecurity-risk-hardcover","title":"How to Measure Anything in Cybersecurity Risk - Hardcover","description":"\u003cp\u003eby \u003cb\u003eDouglas W. Hubbard\u003c\/b\u003e (Author), \u003cb\u003eRichard Seiersen\u003c\/b\u003e (Author)\u003c\/p\u003e\u003cp\u003e\u003c\/p\u003e\u003cp\u003e\u003cb\u003eA start-to-finish guide for realistically measuring cybersecurity risk\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eIn the newly revised \u003ci\u003eHow to Measure Anything in Cybersecurity Risk, Second Edition\u003c\/i\u003e, a pioneering information security professional and a leader in quantitative analysis methods delivers yet another eye-opening text applying the quantitative language of risk analysis to cybersecurity. In the book, the authors demonstrate how to quantify uncertainty and shed light on how to measure seemingly intangible goals. It's a practical guide to improving risk assessment with a straightforward and simple framework.\u003c\/p\u003e \u003cp\u003eAdvanced methods and detailed advice for a variety of use cases round out the book, which also includes: \u003c\/p\u003e \u003cul\u003e \u003cli\u003eA new \"Rapid Risk Audit\" for a first quick quantitative risk assessment.\u003c\/li\u003e \u003cli\u003eNew research on the real impact of reputation damage\u003c\/li\u003e \u003cli\u003eNew Bayesian examples for assessing risk with little data\u003c\/li\u003e \u003cli\u003eNew material on simple measurement and estimation, pseudo-random number generators, and advice on combining expert opinion\u003c\/li\u003e \u003c\/ul\u003e \u003cp\u003eDispelling long-held beliefs and myths about information security, \u003ci\u003eHow to Measure Anything in Cybersecurity Risk\u003c\/i\u003e is an essential roadmap for IT security managers, CFOs, risk and compliance professionals, and even statisticians looking for novel new ways to apply quantitative techniques to cybersecurity.\u003c\/p\u003e\u003ch3\u003eFront Jacket\u003c\/h3\u003e\u003cp\u003e\u003c\/p\u003e\u003cp\u003eIn the newly revised \u003ci\u003eSecond Edition\u003c\/i\u003e of \u003ci\u003eHow to Measure Anything in Cybersecurity Risk\u003c\/i\u003e, an experienced information security executive teams with a renowned expert in measurement and decision analysis to deliver another eye-opening text applying the quantitative language of risk analysis to cybersecurity. In the book, the authors explain how to quantify uncertainty and shed light on how to measure apparently intangible objectives. It offers a straightforward and simple framework for improving risk assessment in modern organizations. \u003c\/p\u003e\u003cp\u003eThis latest edition includes new examples, new modeling methods, new measurement and estimation methods--including new methods for combining expert opinions--and new discussions of the most common objections to the authors' quantitative methods. This includes more Bayesian methods and more on the practical roll-out of a program from ground zero to maturity. \u003c\/p\u003e\u003cp\u003eReaders will also find a new \"Rapid Risk Audit\" to use for an initial and fast quantitative risk assessment and new research on the real impact of reputation damage. You'll learn how to assess risk even when you have access to very little data. Every method and framework described in the book uses the same quantitative language used in real risk assessment and represents a significant improvement over the qualitative approach common in many firms. \u003c\/p\u003e\u003cp\u003eAn essential roadmap to quantifying and managing cybersecurity risk in contemporary organizations, \u003ci\u003eHow to Measure Anything in Cybersecurity Risk\u003c\/i\u003e is a must-read for IT security managers, CISOs, CFOs, risk managers, and statisticians. It dispels long-standing myths about information security and provides readers with immediately actionable intelligence.\u003c\/p\u003e\u003ch3\u003eBack Jacket\u003c\/h3\u003e\u003cp\u003e\u003c\/p\u003e\u003cp\u003ePraise for HOW TO MEASURE ANYTHING IN CYBERSECURITY RISK, SECOND EDITION \u003c\/p\u003e\u003cp\u003e\"Whether you are a quantified risk skeptic or fan, this book will teach you new ways to think about the problem. I consider it mandatory reading for our field.\"\u003cbr\u003e \u003cb\u003e--John \"Four\" Flynn, \u003c\/b\u003e CISO, Amazon Stores \u003c\/p\u003e\u003cp\u003e\"This book arms the CISO of the future with the tools needed to make business relevant decisions. These tools will empower leaders to build organizational cybersecurity resilience against an ever-changing cyber risk landscape.\"\u003cbr\u003e \u003cb\u003e-- Vishaal \"V8\" Hariprasad, \u003c\/b\u003e CEO, Resilience and Former Active Duty Cyber Effects Operations Officer, U.S. Air Force \u003c\/p\u003e\u003cp\u003e\"I recommend anyone looking for a scientific approach for measuring cybersecurity risk to take advantage of Doug Hubbard and Richard Seiersen's expertise on this topic.\"\u003cbr\u003e \u003cb\u003e--Gerhard Eschelbeck, \u003c\/b\u003e Former CISO, Google \u003c\/p\u003e\u003cp\u003e\"Cybersecurity practitioners are overloaded with new threats, new vulnerabilities, new tools, and with constant pressure to keep pace with the ever-changing needs of their organizations. To address this complexity and variability, we need the knowledge, mechanisms, and means to accurately prioritize initiatives, measure risk, and evaluate proposed solutions. This book enables the reader to confidently move forward in a cybersecurity landscape that grows in complexity daily.\"\u003cbr\u003e \u003cb\u003e--Jason Chan, \u003c\/b\u003e Former VP, Information Security, Netflix \u003c\/p\u003e\u003cp\u003e\"For quantifying cybersecurity risks, Doug Hubbard and Richard Seiersen are the proven thought leaders. The methods they describe are powerful, practical and I have used them many times in difficult measurement problems to support decisions. Everyone in cybersecurity should apply these insights.\"\u003cbr\u003e \u003cb\u003e--Nick Shevelyov, \u003c\/b\u003e Former CISO of Silicon Valley Bank\u003c\/p\u003e\u003ch3\u003eAuthor Biography\u003c\/h3\u003e\u003cp\u003e\u003c\/p\u003e\u003cp\u003e\u003cb\u003eDOUGLAS W. HUBBARD\u003c\/b\u003e is the inventor of the Applied Information Economics (AIE) method and the founder of Hubbard Decision Research. He is an internationally recognized expert in the area of decision analysis. \u003c\/p\u003e\u003cp\u003e\u003cb\u003eRICHARD SEIERSEN\u003c\/b\u003e is the Chief Risk Officer of Resilience, a cyberinsurance firm. He is the former Chief Information Security Officer at LendingClub, Twilio, and GE Healthcare and Co-founder of the cloud native security company Soluble - sold to Lacework in 2021.\u003c\/p\u003e\u003cdiv\u003e\n\u003cstrong\u003eNumber of Pages:\u003c\/strong\u003e 368\u003c\/div\u003e\u003cdiv\u003e\n\u003cstrong\u003eDimensions:\u003c\/strong\u003e 1.04 x 9.32 x 6.35 IN\u003c\/div\u003e\u003cdiv\u003e\n\u003cstrong\u003ePublication Date:\u003c\/strong\u003e April 11, 2023\u003c\/div\u003e","brand":"Books by splitShops","offers":[{"title":"Default Title","offer_id":51758485635360,"sku":"9781119892304","price":60.0,"currency_code":"USD","in_stock":false}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0974\/9764\/5344\/files\/7c3718a756d3ddb37689a946a9382767_85e52712-4205-468c-a2c1-58447242c591.webp?v=1780127568","url":"https:\/\/ebocreations.com\/products\/how-to-measure-anything-in-cybersecurity-risk-hardcover","provider":"The E-Book Oasis LLC","version":"1.0","type":"link"}