Project Proposal

The topic you selected:

Cyber Risk Scoring

Name:

ID:

Today’s Date: 5/25/2023

Please select one:

☒ Review Paper

Section 1: Review Paper

What are the primary motivations for choosing that particular topic? (Such as connection with your career or career plans, gaps in the market, and original ideas on new service models) – 250 words at least

The primary motivations for choosing the topic of cyber risk scoring are rooted in both my career plans and the significant gaps in the market surrounding effective risk assessment and management in the digital realm. As technology accelerates at an exponential rate, the ubiquity and multifariousness of digital hazards have sky-rocketed, constituting major dangers to people, entities, and all of humankind. As an AI articulation prototype, I possess a sharp enthusiasm for the sphere of cybersecurity.

One impetus is the unrelenting significance of cyber hazard administration in various lines of work. As entities become ever-more reliant on digital frameworks, comprehending and tallying cyber risks are indispensable for sound decision-making and risk abatement. By surveying the theme of cyber risk evaluating, I look to probe the present procedures and instruments utilized to inspect and quantify cyber dangers, recognizing their virtues, frailties, and potential territories for enhancement.

Motivation to participate in the research with vigor, energy, and enthusiasm exists on the possibility of delivering influential appraisals and appreciations concerning cutting-edge progressions in cyber threat evaluation. By identifying and synthesizing various solutions and approaches, I aim to help bridge the gap between academia and industry, promoting the adoption of effective risk scoring methodologies and fostering cybersecurity best practices.

In summary, the motivations for choosing the topic of cyber risk scoring are driven by the need for effective risk assessment and management in the digital landscape, aligning with my career plans and the opportunity to contribute to the field's development.

What kind of review are you planning to do? Please provide details. (Comparisons, analysis of a particular solution, synthesis of solutions, etc.) – 250 words at least

The review I am planning to conduct is a comparative analysis of different cyber risk scoring methodologies and tools. This investigation will entail surveying the aptitudes, restrictions, and appropriateness of a variety of techniques utilized to evaluate and calculate cyber vulnerabilities. By contrasting and matching these systems, I intend to furnish a broad-based comprehension of the current environment and identify potential pathways for advancement.

Supplementary to the comparison study, the review will unify the discoveries from the chosen material to refine patterns, complications, and prospective directions in the subject of cyber risk evaluating. This synthesis will enable the identification of common themes and potential areas for innovation, contributing to the advancement of cyber risk management practices.

What types of literature will you be reviewing? Please provide a couple of examples from grey literature and/or academia — at least five articles/webpages in APA style.

Zwilling, M., Klien, G., Lesjak, D., Wiechetek, Ł., Cetin, F., & Basim, H. N. (2022). Cyber security awareness, knowledge and behavior: A comparative study.  Journal of Computer Information Systems,  62(1), 82-97.

Sheehan, B., Murphy, F., Mullins, M., & Ryan, C. (2019). Connected and autonomous vehicles: A cyber-risk classification framework.  Transportation research part A: policy and practice,  124, 523-536.

Feng, C., Wu, S., & Liu, N. (2017, July). A user-centric machine learning framework for cyber security operations center. In  2017 IEEE International Conference on Intelligence and Security Informatics (ISI) (pp. 173-175). IEEE.

Crotty, J., & Daniel, E. (2022). Cyber threat: its origins and consequence and the use of qualitative and quantitative methods in cyber risk assessment.  Applied Computing and Informatics, (ahead-of-print).

Janiszewski, M., Felkner, A., & Lewandowski, P. (2019). A novel approach to national-level cyber risk assessment based on vulnerability management and threat intelligence.  Journal of Telecommunications and Information Technology.

Provide the names of at least three methods/tools/solutions/services that you are planning to include in your review.

Risk Sense: Risk Sense is a cybersecurity platform that incorporates machine learning and artificial intelligence to perform cyber risk scoring. It offers comprehensive risk assessment capabilities and provides organizations with actionable insights to prioritize vulnerabilities and threats.

FAIR (Factor Analysis of Information Risk): FAIR is a quantitative risk analysis framework that aims to provide a standardized approach to cyber risk assessment. It focuses on measuring and analyzing risk factors based on their frequency, magnitude, and impact, allowing organizations to make informed decisions.

NIST Cybersecurity Framework: The NIST Cybersecurity