Cybersecurity Business Goals and Stories Around Them
In this chapter we consider how business goals may interfer with and impact on the way in which cyberdefense systems are designed within organizations. We discuss major issues associated with the trade-off between business and security priorities. We then offer a practical guide explaining how business goals can be harmonized with cybersecurity tasks through our Cybersecurity Investment Prioritization methodology.
- 1.Morgan, T. (2002). Business rules and information systems: Aligning IT with business goals. New York: Addison-Wesley.Google Scholar
- 2.Tobin, D. R. (1998). The knowledge-enabled organization: Moving from “training” to “learning” to meet business goals. Amacom.Google Scholar
- 3.Chmielecki, T., Cholda, P., Pacyna, P., Potrawka, P., Rapacz, N., Stankiewicz, R., et al. (2014, September). Enterprise-oriented cybersecurity management. In 2014 Federated Conference on Computer Science and Information Systems (FedCSIS) (pp. 863–870). IEEE.Google Scholar