An Assessment Model to Improve National Cyber Security Governance

Authors

Unal Tatar, Old Dominion UniversityFollow
Bilge Karabacak
Adrian Gheorghe, Old Dominion UniversityFollow

Document Type

Conference Paper

Publication Date

2016

Publication Title

Proceedings of the 11th International Conference on Cyber Warfare and Security, ICCWS 2016, March 17-18, 2016 Boston, MA

Pages

312-319

Abstract

Today, cyber space has been embraced by individuals, organizations and nations as an indispensable instrument of daily life. Accordingly, impact of cyber threats has continuously been increasing. Critical infrastructure protection and fighting against cyber threats are crucial elements of national security agendas of governments. In this regard, governments need to assess the roles and responsibilities of public and private organizations to address the problems of current cyber protection postures and to respond with reorganization and reauthorization of these postures. A risk management approach is critical in placing these efforts in an ongoing lifecycle process. In this paper, a model is proposed to be used in national cyber security risk management processes. We argue that this model simplifies and streamlines national risk management processes. For this purpose, a matrix is created to partition the problem space. Cyber threat detection and response activities constitute one dimension of the matrix. The second dimension divides the timeline of cyber incidents into three: before, during and after incidents. The resulting matrix is then populated with responsible bodies which need to address each case. As a result, a national cyber security responsibility model is proposed for policy/decision makers and academics. We believe that the proposed model would be useful for governments in analyzing their national responsibility distribution to address gaps and conflicts in their current cyber security postures and for academics in analyzing natural cyber security systems and comparative studies.

ORCID

0000-0001-8233-9566 (Tatar), 0000-0003-2830-675X (Gheorghe)

Original Publication Citation

Tatar, U., Karabacak, B., & Gheorghe, A. (2016). An assessment model to improve national cyber security governance. In D.T. Zlateva & V.A. Greiman (Eds.), Proceedings of the 11th International Conference on Cyber Warfare and Security, ICCWS 2016 (pp. 312-319) Academic Conferences and Publishing International Limited.

Repository Citation

Tatar, Unal; Karabacak, Bilge; and Gheorghe, Adrian, "An Assessment Model to Improve National Cyber Security Governance" (2016). Engineering Management & Systems Engineering Faculty Publications. 114.
https://digitalcommons.odu.edu/emse_fac_pubs/114