Anzeige

Crash Course: Managing Cyber Risk Using Quantitative Analysis

"Apolonio \"Apps\"" Garcia
19. Jan 2018
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis
Crash Course: Managing Cyber Risk Using Quantitative Analysis

Check these out next

4 Steps to Intelligent Risk Taking
4 Steps to Intelligent Risk Taking
PECB
Formal Risk Assessment Workshop
Formal Risk Assessment Workshop
Praveen Vackayil
Risk Assessment About Building And Risk
Risk Assessment About Building And Risk
Faheem Ul Hasan
Risk and Uncertainty
Risk and Uncertainty
Brad Stollery
Vendor Cybersecurity Governance: Scaling the risk
Vendor Cybersecurity Governance: Scaling the risk
Sarah Clarke
Risk Management 101
Risk Management 101
Barry Caplin
Risk Calculator PowerPoint Presentation Slides
Risk Calculator PowerPoint Presentation Slides
SlideTeam
Root causes
Root causes
Glen Alleman
1 von 82

Crash Course: Managing Cyber Risk Using Quantitative Analysis

19. Jan 2018
Business

3 hour lecture given at NE Ohio ISACA Meeting on Jan, 19, 2018.

"Apolonio \"Apps\"" Garcia
Anzeige
Anzeige
Anzeige

Recomendados

Introduction to FAIR - Factor Analysis of Information RiskIntroduction to FAIR - Factor Analysis of Information Risk
Introduction to FAIR - Factor Analysis of Information RiskOsama Salah8.6K Aufrufe59 Folien
Introduction to Open FAIRIntroduction to Open FAIR
Introduction to Open FAIR"Apolonio \"Apps\"" Garcia607 Aufrufe44 Folien
Executive Travel, Keeping Your Employees SafeExecutive Travel, Keeping Your Employees Safe
Executive Travel, Keeping Your Employees SafeResolver Inc.145 Aufrufe18 Folien
Economically driven Cyber Risk ManagementEconomically driven Cyber Risk Management
Economically driven Cyber Risk ManagementOsama Salah798 Aufrufe39 Folien
Measuring DDoS Risk using FAIR (Factor Analysis of Information RiskMeasuring DDoS Risk using FAIR (Factor Analysis of Information Risk
Measuring DDoS Risk using FAIR (Factor Analysis of Information RiskTony Martin-Vegue1.8K Aufrufe33 Folien
Risk Analysis WebinarRisk Analysis Webinar
Risk Analysis WebinarJody Keyser887 Aufrufe43 Folien

Más contenido relacionado

Presentaciones para ti(20)

4 Steps to Intelligent Risk Taking 4 Steps to Intelligent Risk Taking
4 Steps to Intelligent Risk Taking
PECB 1.4K Aufrufe
Formal Risk Assessment WorkshopFormal Risk Assessment Workshop
Formal Risk Assessment Workshop
Praveen Vackayil1.1K Aufrufe
Risk Assessment About Building And RiskRisk Assessment About Building And Risk
Risk Assessment About Building And Risk
Faheem Ul Hasan1.2K Aufrufe
Risk and UncertaintyRisk and Uncertainty
Risk and Uncertainty
Brad Stollery14.3K Aufrufe
Vendor Cybersecurity Governance: Scaling the riskVendor Cybersecurity Governance: Scaling the risk
Vendor Cybersecurity Governance: Scaling the risk
Sarah Clarke1K Aufrufe
Risk Management 101Risk Management 101
Risk Management 101
Barry Caplin3.9K Aufrufe
Risk Calculator PowerPoint Presentation SlidesRisk Calculator PowerPoint Presentation Slides
Risk Calculator PowerPoint Presentation Slides
SlideTeam292 Aufrufe
Root causesRoot causes
Root causes
Glen Alleman1.9K Aufrufe
Risk Management and Risk TransferRisk Management and Risk Transfer
Risk Management and Risk Transfer
CBIZ, Inc.3K Aufrufe
Risk-benefit analysisRisk-benefit analysis
Risk-benefit analysis
SKS 2.9K Aufrufe
Incentivizing Better Risk Decisions - Lessons from Rogue Actuaries - SIRAcon ...Incentivizing Better Risk Decisions - Lessons from Rogue Actuaries - SIRAcon ...
Incentivizing Better Risk Decisions - Lessons from Rogue Actuaries - SIRAcon ...
Tony Martin-Vegue458 Aufrufe
How to Do a Formal Risk AssessmentHow to Do a Formal Risk Assessment
How to Do a Formal Risk Assessment
Praveen Vackayil368 Aufrufe
Calculate the RiskCalculate the Risk
Calculate the Risk
Salih Islam992 Aufrufe
Introduction to Risk ManagementIntroduction to Risk Management
Introduction to Risk Management
FAA Safety Team Central Florida21K Aufrufe
Introduction to risk managementIntroduction to risk management
Introduction to risk management
Kannan Subbiah14.5K Aufrufe
Assessment Of Risk MitigationAssessment Of Risk Mitigation
Assessment Of Risk Mitigation
Eneni Oduwole3.2K Aufrufe
Increasing the Probability of Success with Continuous Risk ManagementIncreasing the Probability of Success with Continuous Risk Management
Increasing the Probability of Success with Continuous Risk Management
Glen Alleman9K Aufrufe
ADCB Presentation - MENA Bank Tech June 2014 v2ADCB Presentation - MENA Bank Tech June 2014 v2
ADCB Presentation - MENA Bank Tech June 2014 v2
Simon Baig, FCCA, CGEIT, MSc183 Aufrufe
Risk Management Methodology - CopyRisk Management Methodology - Copy
Risk Management Methodology - Copy
Rabah Odeh ITIL 5.0-OCP-CISA-PMP-OCP..etc1.6K Aufrufe
Risk AssessmentsRisk Assessments
Risk Assessments
JoAnna Cheshire3.7K Aufrufe

Similar a Crash Course: Managing Cyber Risk Using Quantitative Analysis(20)

Risk Management (1) (1).pptRisk Management (1) (1).ppt
Risk Management (1) (1).ppt
AjjuSingh241 Aufrufe
Logistic insurance ch1 risk conceptLogistic insurance ch1 risk concept
Logistic insurance ch1 risk concept
Narudh Cheramakara276 Aufrufe
Information Security Risk Management Information Security Risk Management
Information Security Risk Management
Ersoy AKSOY8.1K Aufrufe
Relating Risk to Vulnerability Relating Risk to Vulnerability
Relating Risk to Vulnerability
Resolver Inc.883 Aufrufe
Risk ManagementRisk Management
Risk Management
Krishna Deo Prasad1.6K Aufrufe
GolGol
Gol
Wissam Saleh934 Aufrufe
Risk and Geopolitics (Singapore - November 2009)Risk and Geopolitics (Singapore - November 2009)
Risk and Geopolitics (Singapore - November 2009)
Peter Cockcroft101 Aufrufe
07 - Risk Assessment Creating a Risk Matrix.pdf07 - Risk Assessment Creating a Risk Matrix.pdf
07 - Risk Assessment Creating a Risk Matrix.pdf
ssusere173f127 Aufrufe
Project risk analysisProject risk analysis
Project risk analysis
Nur E Alam Siddike1.2K Aufrufe
Quantifying Cyber Risk Quantifying Cyber Risk
Quantifying Cyber Risk
Phil Huggins FBCS CITP118 Aufrufe
Chapter 1 risk management (3)Chapter 1 risk management (3)
Chapter 1 risk management (3)
rafeeqameen12.6K Aufrufe
Risk management models - Core ConsultingRisk management models - Core Consulting
Risk management models - Core Consulting
CORE Consulting3.4K Aufrufe
اهم برزنتيشن لجنك2222اهم برزنتيشن لجنك2222
اهم برزنتيشن لجنك2222
nashaat algrara273 Aufrufe
Final Class Presentation on Determining Project Stakeholders & Risks.pptxFinal Class Presentation on Determining Project Stakeholders & Risks.pptx
Final Class Presentation on Determining Project Stakeholders & Risks.pptx
GeorgeKabongah25 Aufrufe
05-risk_assesment.ppt05-risk_assesment.ppt
05-risk_assesment.ppt
KareemRasmy12 Aufrufe
Enterprise risk & risk management - IEnterprise risk & risk management - I
Enterprise risk & risk management - I
Dr. Shiv S Tripathi3.1K Aufrufe
Understanding enterprise risk management and fairUnderstanding enterprise risk management and fair
Understanding enterprise risk management and fair
iaemedu407 Aufrufe
Using FMEA as a Risk Management Tool for Events SustainabilityUsing FMEA as a Risk Management Tool for Events Sustainability
Using FMEA as a Risk Management Tool for Events Sustainability
PECB 1.9K Aufrufe
Data Driven Risk ManagementData Driven Risk Management
Data Driven Risk Management
Resolver Inc.1.7K Aufrufe
INFORMATION SECURITY MANAGEMENTINFORMATION SECURITY MANAGEMENT
INFORMATION SECURITY MANAGEMENT
Ni 295 Aufrufe
Anzeige

Último(20)

entrepreneurship.pptxentrepreneurship.pptx
entrepreneurship.pptx
ssuser711eb30 Aufrufe
Pennsylvania Driver license.pdfPennsylvania Driver license.pdf
Pennsylvania Driver license.pdf
lunabarajas8160 Aufrufe
Managerial Accounting: Chapter 23Managerial Accounting: Chapter 23
Managerial Accounting: Chapter 23
KevinMalouf0 Aufrufe
University of Newcastle academic record.pdfUniversity of Newcastle academic record.pdf
University of Newcastle academic record.pdf
lunabarajas8160 Aufrufe
Business strategy training courseBusiness strategy training course
Business strategy training course
Sprintify0 Aufrufe
Managerial Accounting: Chapter 24Managerial Accounting: Chapter 24
Managerial Accounting: Chapter 24
KevinMalouf0 Aufrufe
Financial Accounting: Chapter 12Financial Accounting: Chapter 12
Financial Accounting: Chapter 12
KevinMalouf0 Aufrufe
Course Outline.docxCourse Outline.docx
Course Outline.docx
AlazerTesfayeErsasuT0 Aufrufe
Product Catalog_DORS Counterfeit Detector_2023_digital.pdfProduct Catalog_DORS Counterfeit Detector_2023_digital.pdf
Product Catalog_DORS Counterfeit Detector_2023_digital.pdf
AlterFWB0 Aufrufe
Digital marketing agency in Meerut.pdfDigital marketing agency in Meerut.pdf
Digital marketing agency in Meerut.pdf
ForYouCreationsDigit0 Aufrufe
Presentation1 sm.pptxPresentation1 sm.pptx
Presentation1 sm.pptx
Manjulasingh170 Aufrufe
Managerial Accounting: Chapter 21Managerial Accounting: Chapter 21
Managerial Accounting: Chapter 21
KevinMalouf0 Aufrufe
Cleaning Hacks for Busy Professionals.pdfCleaning Hacks for Busy Professionals.pdf
Cleaning Hacks for Busy Professionals.pdf
sofacleaning10 Aufrufe
Managerial Accounting: Chapter 16Managerial Accounting: Chapter 16
Managerial Accounting: Chapter 16
KevinMalouf0 Aufrufe
managerial_Economics_supportive_material.docxmanagerial_Economics_supportive_material.docx
managerial_Economics_supportive_material.docx
AlazerTesfayeErsasuT0 Aufrufe
Product Video + Deck Product Video + Deck
Product Video + Deck
Robert Cornish0 Aufrufe
Mount Royal University degree.pdfMount Royal University degree.pdf
Mount Royal University degree.pdf
lunabarajas8160 Aufrufe
SCU diploma.pdfSCU diploma.pdf
SCU diploma.pdf
lunabarajas8160 Aufrufe
OUHK diploma.pdfOUHK diploma.pdf
OUHK diploma.pdf
lunabarajas8160 Aufrufe
Forms of Business OrganizationForms of Business Organization
Forms of Business Organization
KevinMalouf0 Aufrufe

Crash Course: Managing Cyber Risk Using Quantitative Analysis

  1. Northeast Ohio Chapter
  2. Crash Course: Managing Cyber Risk Using Quantitative Analysis
  3. Disclaimer: I am not a lawyer This is not legal advice
  4. Cost of cyber crime by 2019 – Juniper Networks
  5. $231.94 Billion Cyber Security Market by 2022
  6. Houston, we DON’T have an IT
  7. Objective
  8. Agenda Part 1 – Case Study Part 2 – Concepts and Theory Part 3 – Application of Concepts
  9. Part 1 – Case Study:
  10. Part 2 – Concepts and Theory
  11. Concepts • Risk & Uncertainty • Risk Management • Risk Analysis
  12. Risk & Uncertainty
  13. COBIT: Risk is generally defined as the combination of the probability of an event and its consequence. FAIR: The probable frequency and magnitude of future loss. AIE/Hubbard: 1) The probability and magnitude of a loss, disaster, or other undesirable event. 2) A state of uncertainty where some of the possibilities involve a loss, catastrophe, or other undesirable outcome. Risk
  14. Measurement of Risk: A set of possibilities each with quantified probabilities, and quantified losses. For example: “we believe there is a 40% chance the proposed oil well will be dry with a loss of $12 million in exploratory drilling costs.” Risk
  15. AIE/Hubbard: The lack of complete certainty, that is, the existence of more than one possibility. The “true” outcome/state/result/value is not known. Measurement of Uncertainty: A set of probabilities assigned to a set of possibilities. For example: “there is a 60% chance this market will more than double in five years, a 30% chance it will grow at a slower rate, and a 10% chance the market will shrink in the same period”. Uncertainty
  16. Risk Management
  17. FAIR: The combination of personnel, policies, processes, and technologies that enable an organization to cost-effectively achieve an acceptable level of loss exposure. AIE/Hubbard: Long definition: The identification, assessment, and prioritization of risks followed by coordinated and economical application of resources to minimize, monitor, and control the probability and/or impact of unfortunate events Shorter definition: Being smart about taking chances Risk Management
  18. ISO Guide 73:2002: Coordinated activities to direct and control an organization with regard to risk ISACA CRISC: The coordinated activities to direct and control an enterprise with regard to risk. Risk management is the identification, assessment and prioritization of risk followed by coordinated and economical application of resources to minimize, monitor, and control the probability and/or impact of adverse events or to maximize the realization of opportunities. Risk Management
  19. • Avoid • Mitigate • Transfer • Accept • Progress • Risk Indicators • Operating Environment Risk Factors • Threat • Vulnerabilities • Impact • Issues • Tolerance / Appetite Discover Analyze TreatMonitor iskManagementProcess
  20. Risk Analysis
  21. You can’t manage what you don’t measure.
  22. Why do we measure (aka analyze) risk?
  23. Informing Decisions ● How much risk do we have? ● How much should we invest in security? ● Where should we invest? ● What are we getting for our investment?
  24. What if we measured everything like we measure cyber risk?
  25. How far? Distance rating: 6
  26. How much? Medium
  27. Mental Models Analytical Models How do we assess risk?
  28. Analytical Methods Source: NIST 800-30r1 – Guide for Conducting Risk Assessments
  29. Qualitative Analysis
  30. Semi-Quantitative Analysis Risk Rating: 20.781
  31. Quantitative Analysis
  32. Math on Ordinal Scales
  33. Quantitative risk analysis: How do we do it?
  34. Risk Analysis Basics 1. Risk Scenarios 2. Risk Models 3. Simulations
  35. Risk Scenario Scenarios are a powerful tool in a risk manager’s armory— they help professionals ask the right questions and prepare for the unexpected. Scenario analysis has become a ‘new’ and best practice in enterprise risk management (ERM) (Source: isaca.org)
  36. Example Risk Scenario Statement Risk scenario statement: What is the risk associated with PHI being exposed via a lost/stolen laptop?
  37. Essentially, all models are wrong, but some are useful. - George E. P. Box
  38. Risk Models Help Us: ●Decompose complex risk issues. ●Understand correlated relationships between variables/risk factors. ●Diagnose disagreements/issues. ●Bring credibility to our findings. ●Enable conversations.
  39. Simulations Two primary tools: a) Probability Distributions (PERT) b) Monte Carlo Simulation (Stochastic Modeling)
  40. Monte Carlo Simulation Computerized mathematical technique that allows people to account for risk in quantitative analysis and decision making.
  41. Pert Distibutions Form of probability distribution used to model expert data.
  42. Pert Distribution Histogram
  43. Open FAIR
  44. What is FAIR? Factor Analysis of Information Risk Published by Jack Jones in 2005 Adopted by the Open Group in 2014 ● Risk Taxonomy Standard ● Risk Analysis Standard
  45. Forms of Loss ● Productivity ● Response ● Replacement ● Fines/Judgement ● Competitive Advantage ● Reputation
  46. Loss Magnitude Risk Loss Event Frequency The probable frequency and probable magnitude of loss.
  47. Loss Event Frequency Loss Magnitude Threat Event Frequency Risk Vulnerability Contact Frequency Probability of Action Threat Capability Resistance Strength
  48. Loss Event Frequency Loss Magnitude Threat Event Frequency Risk Vulnerability Contact Frequency Probability of Action Threat Capability Resistance Strength
  49. Loss Event Frequency Loss Magnitude Threat Event Frequency Risk Vulnerability Contact Frequency Probability of Action Threat Capability Resistance Strength
  50. Loss Event Frequency Loss Magnitude Threat Event Frequency Risk Vulnerability Contact Frequency Probability of Action Threat Capability Resistance Strength
  51. Loss Event Frequency Loss Magnitude Threat Event Frequency Risk Vulnerability Contact Frequency Probability of Action Threat Capability Resistance Strength
  52. Loss Event Frequency Loss Magnitude Threat Event Frequency Risk Vulnerability Contact Frequency Probability of Action Threat Capability Resistance Strength
  53. Loss Event Frequency Loss Magnitude Threat Event Frequency Risk Vulnerability Contact Frequency Probability of Action Threat Capability Resistance Strength
  54. Loss Event Frequency Loss Magnitude Secondary Loss Factors Risk Primary Loss Factors Organizational Loss Factors External Loss Factors Asset Loss Factors Threat Loss Factors
  55. Loss Event Frequency Loss Magnitude Secondary Loss Factors Risk Primary Loss Factors Organizational Loss Factors External Loss Factors Asset Loss Factors Threat Loss Factors
  56. Loss Event Frequency Loss Magnitude Secondary Loss Factors Risk Primary Loss Factors Organizational Loss Factors External Loss Factors Asset Loss Factors Threat Loss Factors
  57. Part 3 – Exercises
  58. Exercise 1: Guess My Weight
  59. Exercise 1: Pert Distribution Guess my weight ●Min: ●Max: ●Most Likely: ●Confidence:
  60. Exercise 2: Guess My Weight…in Hot Tamales!
  61. Hot Tamale vs Plain M&M
  62. Exercise 3: Auditors report lack of laptop encryption is a “high risk” issue. Encryption will require a $200-250K investment. CFO wants to know if this is worth the investment.
  63. Laptop Theft Breach Investigation Class Action Fine Judgement 50% probability (once every 2 years) 50% prob. 0 – 100K records 5% prob. 10% prob. 10% prob. 5% prob. $50K - $4.5M $100K - $20M
  64. Primary Loss Event Frequency Min (95% CI) Most Likely Max (95% CI) LEF 0 1 5
  65. Primary Loss Magnitude Min (95% CI) Most Likely Max (95% CI) Replacement Costs $1,200 $1,750 $2,500 Response Costs $2,500 $75K $250K
  66. Secondary Loss Magnitude Min (95% CI) Most Likely Max (95% CI) Response Costs $100K $250K $8M Fines / Judgement $0 $0 $10M
  67. Simulation Output
  68. Simulation Output
  69. Simulation Output
  70. “The significant problems we face cannot be solved at the same level of thinking with which we created them.”
  71. @appsgarcia agarcia@healthguardsecurity.com 513.549.4272 Apolonio “Apps” Garcia
Anzeige